The widely-circulated story today that Google fired an employee for reviewing the “private” files and information of users, and even harassed a user based on their “private” information might seem shocking, but it’s really only illustrating something that those of us in the industry have known for years: anything we say, type or otherwise create that goes thru a pipe or a satellite or an antenna is fully accessible by every touchpoint in the process. It is kind of like being spied on by someone looking thru a peephole: we think it is private and “ours” but in reality we are buck naked for any prying eye to see.

The example in this story is an excellent one, because it really captures the depth of penetration. The offender was accessing the victim’s Gmail and Google Voice accounts, thus able to see what they were writing and hear what they were saying. Of course, it doesn’t stop there. When they sent email from Gmail on their home Internet, let’s pretend it was Comcast cable Internet, Comcast was able to take all of those bits and bytes, too. When the call was made over the, for example, Sprint Cellular network, you’ve got a whole other infrastructure that data is exposed to. When you further consider that, in some cases, a Sprint has deals with other cellular companies to pick up your calls so you don’t drop in certain circumstances, at times even MORE cell companies potentially have your words. What about in cases where servers are being outsourced, where a smaller email provider than Google is the email provider and they are using Indian Server Farm X for storage. The email provider and software infrastructure is one risk point; the physical storage location is another. And the pipes in between still another.

Is your head spinning yet?

Reality: any time you communicate using electronic means what you write/say/do is vulnerable.

Surfing to a porn site? Bzzzzzzzz. That’s captured by the ISP, and the browser, and perhaps even servers behind the browser – not to mention the porn site itself – and can be recalled even years later. Bye bye campaign for state representative.

Spouse cheated on you and you are taking your frustration out by cursing them out in brutal, graphic language to your best buddy on IM? Bzzzzzzzz. That’s captured by the IM client, likely on a file on your computer you don’t know is there, possibly by the ISP, and likely on a file on your best buddy’s computer that they don’t know is there! There a much greater than zero chance that rant is going to get back to you and embarrass you later. As if getting cheated on isn’t embarrassment enough!

The most personal and intimate of moments are only so intimate as the people controlling the servers and software and pipes decide they will be. That veneer of protection is little solace for those who are uncomfortable: we have thousands of years of human history proving our fallibility, our character flaws. So long as humans are the mitigators there will be more stories like this. It probably won’t happen to you or me, but increasingly it will happen to people we know in ways large and small. Consider Google’s stance on it, from the above article:

“…a limited number of people will always need to access these systems, if we are to operate them properly–which is why we take any breach so seriously,” Google’s Bill Coughran, senior vice president of engineering

There are three paths we can take:

1. We can unplug, not participate, and minimize our exposure. Hardly practical given the world today, but it is an available and viable option.

2. We can accept that we could surprisingly be exposed completely beyond our control in any possible way at any given moment, embrace it, and conduct ourselves in a way that lets us live with it.

3. The system could be changed – by legislation, or programming, or some sort of third-party security software that reduces or perhaps eliminates our exposure.

With the increasing attention and investment given to security software I rather think this will be the eventual solution. There is lots of money to be made in this space, and it is a problem that will get larger and upset more people the more we shift to being an operationally digital society.

In the meantime I pick #2. I hate for the world to see me naked, but I know it could happen at any damn moment. I’m not really going to change my behaviour, rather acknowledge the risk and let it ride. I suppose it is rather like continuing to drive a car despite the potential of a life-ending accident being just around the next corner. You try not to think about it, and simply join the flow with the rest of society. Here’s hoping I stay lucky.

Tagged culture, google, hardware, predictive, security, software

I don’t use the moniker “IT” very often, typically only to talk about the internal stuff at my company that has to do with computing technology in the vaguest way. Under “IT” falls our hardware and software that runs the gamut of business technology: computers, phones, Internet connection, printers, other peripherals…everything. However, with the recent wave of unexpected and in many cases surprising mergers, it appears we may start talking more about giant “IT” conglomerates that seem to be in any and every technology related to computing and communication.

Let’s start with Intel. It was indeed a surprise when, a few weeks ago, Intel purchased McAfee. What made this move so surprising is the seeming lack of synergy: a microprocessing company purchasing a security software company. While some experts were quick to point out that Intel may be going down the road of including security software in or in installed hardware around the microprocessor it nonetheless served as a wake-up call, that past divisions in computing technologies may be starting to evaporate.

More recently HP is in the news, first with its bizarre bidding war for an unknown data storage company, 3PAR and today for purchasing little-known security software company Arcsight. Both deals are seen as grossly overpaying for the assets, which can send only one message: HP sees these particular areas in the IT space as being really important to their strategy.

On the surface that is a specious comment. This isn’t like HP buying Compaq, which was a direct competitor and makes linear, logical sense to those of us on the outside – even if the deal didn’t seem very good. These latest acquisitions speak to a future HP is envisioning, not a present that is apparent to us. Certainly these acquisitions are logical seen in a properly broad context, but that context necessarily includes HP getting involved in more markets and increased horizontal and vertical diversification than we’ve been seeing.

Which leads me to the subject of this article. Other than IBM, I can’t think of a company – and perhaps I just don’t have enough grey hairs yet – that tried to do damn near everything that falls under the umbrella of IT. Hardware, software, operating systems, printers, peripherals, consulting…you name it and, at one point, Big Blue was into it. Since then they’ve consolidated and consolidated and consolidated. They still do a whole, whole bunch of thing but it is a far cry from the monolith of the past.

Microsoft didn’t replace IBM in that way; they stuck, largely, to software. For all the industries Apple is in they really aren’t trying to be an IT company: despite their attempts to make inroads into business markets they are, at this point, a consumer products company more than anything else. Google, well…Google is trying to get into seemingly everything but they are still riding a tricycle in a lot of cases while the roadsters on the various niche industry Autobahns are passing them by…for now.

In companies like HP and Intel – coming from the hardware side, seeing the convergence of hardware and software, trying to stake critical claims in sometimes disparate areas – we are witnessing what just might be an unprecedented era of IT consolidation. Start-up companies and product concepts have clearly shown the power of cloud computing and web 2.0 and convergent technologies. All of this stuff really belongs together. And some of the bellwethers of tech over the last few decades are making unexpected, bold and decisive moves into very new parts of the industry.

I can’t figure out what IBM or HP claim to do as companies – their websites make them sound more like organizational management or green consulting firms than technology companies! But in Intel’s case they still have a very narrow, direct and clear message: “Experience smart performance with Intel’s Core processors.” The more interesting question to ask narrowly focused tech powers like Intel as well as increasingly diversified properties like HP is: what are you going to be in 5 years?

Don’t be surprised if we are bemoaning the demise of small and medium-sized tech companies thanks to the emergence of a smaller number of superpowers that suck all the air out of the room, not unlike the situation 15 years ago but perpetrated by numerous major powers as opposed to the old Evil Empire Microsoft of those perhaps now-halcyon days.

Tagged apple, google, hardware, hp, intel, it, microsoft, software