Weekly Wrap 175: Lots of security, lots of productivity

[Update 14 October 2013, 0800 AEDT: As foreshadowed, “The Week Ahead” has been fleshed out with the current version of The Plan. However there’s evidence to suggest that this might change again later today. Update 15 October 2013, 1915 AEDT: The plan has changed again.]

Not the ASD: click to embiggenMy week Monday 7 to Sunday 13 October 2013 was relatively busy, although more on the research and information-gathering side rather than the final output side.

Podcasts

  • Corrupted Nerds: Conversations 6, being a chat with Michael Smith, head of Akamai Technologies’ computer security incident response team (CSIRT) about distributed denial of service (DDoS) attacks.

Articles

I also wrote my usual column for ZDNet Australia, The Full Tilt, but we’re currently waiting on a decision as to whether the planned headline is, um, pushing the boundaries.

Media Appearances

Corporate Largesse

  • On Wednesday I went to a lunchtime briefing by Unisys at Wolfies Restaurant at Circular Quay — apparently it doesn’t have an apostrophe — where the food was lovely and the weather was gorgeous. They paid, of course.
  • On Thursday I went to the annual conference of the Australian Information Security Association (AISA) at the Sydney Convention & Exhibition Centre, where I was fed and watered. Check Point Software Technologies Ltd gave me a branded shirt. Watchguard Technologies Inc gave me a novelty USB memory device (4GB) packed with PR material.

The Week Ahead

The exact shape of the week will depend upon news arriving overnight, so I’ll add in the details tomorrow morning.

On Monday I’ll be mapping out the coming three weeks or so, including preparing some of plan for getting to Melbourne for the Breakpoint and Ruxcon hacker conferences. On Tuesday I’ll be continuing that work towards Melbourne and writing a piece for Technology Spectator that’ll due to be published on Thursday Friday.

On Wednesday I’ll be setting up the framework for another Technology Spectator yarn, as well as writing my ZDNet Australia column for Thursday.

On Wednesday I’ll be heading to Sydney for a lunchtime briefing by Dasault Systèmes about their new SolidWorks thingo, setting up the frameworks for Technology Spectator and ZDNet Australia stories en route. I may stay in Sydney overnight, depending on several factors. If I don’t…

On Thursday itself, I’ll be heading to Sydney again for a lunchtime briefing by NEC and Telsyte, staying overnight until Friday for a tour of the Pacnet data centre and some personal stuff.

There’s more in the schedule than that, of course, but they’re the relatively fixed pegs upon which the rest of the schedule hangs.

The weekend is currently unplanned.

[Photo: Not the ASD, photographed at the annual conference of the Australian Information Security Association (AISA) in Sydney on 10 October 2013. The signage for the Australian Signals Directorate (ASD), formerly the Defence Signals Directorate (DSD), seems to have gone astray…]

Weekly Wrap 158: NSA and all the cybers, mostly

NSA Decipher Dog character: click to embiggenMy week Monday 10 to Sunday 16 June 2013 was dominated by the US National Security Agency (NSA). Well, by the news pertaining thereto. Funny world.

I can’t be arsed writing about that any further today. Here’s the links, and you can ask me questions and initiate conversation in the comments. Which I may ignore.

You post your comments, you take your chances.

Articles

Media Appearances

None.

Corporate Largesse

  • On Wednesday I attended the Sydney launch of Intel’s 4th Generation Core processors at the Museum of Contemporary Art. There was food and drink.

[Photo: NSA’s Decipher Dog character, part of the agency’s kids outreach program.]

Weekly Wrap 125: Intelligence and infection

It’s hard to believe that just two weeks ago I was dealing with snow because this week, Monday 22 to Sunday 28 October 2012, included a day of working at Manly beach.

As you’ll read in a moment, it also included a series of digs at Australia’s law enforcement and intelligence communities. And it wrapped up on Saturday with the discovery that I’ve been suffering from a rather nasty throat infection. Which explains why I was so tired and irritable.

Penicillin to the rescue!

Podcasts

Articles

Media Appearances

Corporate Largesse

None.

The Week Ahead

The week begins tonight with a midnight recording for this week’s Patch Monday podcast. Then I have to complete a story for Technology Spectator by 1000 AEDT before wrapping up Patch Monday. And then I catch the train to Sydney.

I’m then staying in Sydney overnight so I can be at Microsoft’s Tuesday morning breakfast briefing on Windows Phone 8, and after that the rest of the week is as yet unplanned. Chaos is my friend. Stand by.

[Photo: Freelancing, a picture of my working environment on Thursday. That’s the Steyne Hotel overlooking the beach at Manly in Sydney.]

ASIO’s got it easy, says terrorism expert

“ASIO don’t seem to realise how privileged they are compared to intel orgs in other Western democracies,” tweeted terrorism researcher Andrew Zammit (pictured) yesterday.

Zammit is a researcher at the Global Terrorism Research Centre (Monash University) and Australian Policy Online (Swinburne University), and he was responding to my blog post from yesterday, “Insulted, ASIO? That’s not really the problem, surely?” and the attached podcast.

Here are his subsequent tweets, turned into continuous prose:

CIA for example has ongoing congressional oversight (of actual operations) as opposed to our occasional parl[iamentary] inquiries, people can FOI CIA docs only a few years old (ASIO has 20-30 year exemption) and some of the CIA’s analytical roles are transparent, as in analysts will have CIA business cards whereas even an ASIO kitchen hand’s identity will be kept secret. And CIA isn’t even a domestically-focused agency. So yes, ASIO needs to be less precious about being asked questions.

I agree. From the perspective of the United States I’m a foreign national, yet I’ve spoken with officers from the FBI, NSA and the Secret Service — all of whom had business cards with their full names. The closest I’ve gotten in Australia is chatting briefly with a DSD chap, one of two attending Linux.conf.au in January this year — given names only, and I suspect that those given names were really in scare quotes.

The excuse always given is “operational security”, but I do think the world has changed. The tools and methods are surely not so different from SEKRIT agencies to private-sector security companies and even analysis in non-security realms, given that so much technology is now available off the shelf to all comers.

Surely these days OPSEC is more about protecting sources and the specific operations that are or are not being conducted?

Of course I really don’t know this stuff. I’ve never worked in this field. I’ve never even held a security clearance. I’m just an interested bystander mouthing off. But I am intrigued.

Weekly Wrap 73: The Mysteries of the Desert

A weekly summary of what I’ve been doing elsewhere on the internets — finally posted on Sunday like it’s meant to be.

On a personal note, it was great to finally get the dental work done so that my jaw is no longer infected. Now, to wait for my shoulder to heal…

Podcasts

  • Patch Monday episode 111, “Cybercrime 2016: a view of the future”. Recorded in Las Vegas, it’s mainly Michael Fey’s view of 2016. He’s McAfee’s worldwide senior vice president of advanced technologies and field engineering. Also, an explanation of how advanced persistent threats are a three-stage attack, and a chat with the bloke who taught me how to create malware and construct botnets in just one hour.

Articles

I wrote another two stories apart from these, one for CSO and one for ZDNet Australia, but they won’t be published until Monday.

Media Appearances

Corporate Largesse

  • On Tuesday I covered the ISACA conference in Sydney, so of course I got free food and drink.
  • On Friday I went to the launch of Intel’s Ultrabook standard for laptops at BAR100, The Rocks in Sydney, so naturally there was more free food and drink. They also gave me an Air-Tech Turbo Blimp radio-controlled indoor airship, which I gave away — to someone who then discovered that the blimp itself wasn’t in the box.

Elsewhere

Most of my day-to-day observations are on my high-volume Twitter stream, and random photos and other observations turn up on my Posterous stream. The photos also appear on Flickr, where I eventually add geolocation data and tags.

[Photo: A mysterious oval-shaped object in the desert somewhere between Las Vegas and Los Angeles. This might be in Death Valley, but more likely somewhere else. I wasn’t paying much attention until I saw this. Any idea what it is? You can click to embiggen. Oh, and yes this photo was taken last week, not this week, but I’m sure you can live with that.]

Links for 01 May 2009 through 07 May 2009

Stilgherrian’s links for 01 May 2009 through 07 May 2009, pubished wl late in the week for your weekend reading pleasure:

  • VideoLAN: I was surprised to discover quite a few people who didn’ know about this free open source video player. It’s very good, you know, handling both downloaded files and live streams.
  • The Iremonger Award | Allen & Unwin: A $10,000 prize for someone who was an idea for a non-fiction book which will “contribute to public debate on a contemporary Australian political, social or cultural issue”. Entries close 1 September 2009.
  • Control freaks don’t get it: the web works best in a free-for-all | The Observer: John Naughton says it all on the 50th anniversary of C P Snow’s famous meme, the mutual incomprehensible “two cultures” of science and the “literary intellectuals”. But now, the two cultures are very different.
  • Defence needs a plan for the Internet age | Tom Worthington via Link: Tom says the Australian government’s new defence white paper is deficient in not mentioning “Internet” or “web” at all. The section on cyber warfare envisages military personnel and scientists operating a “Cyber Security Operations Centre”. But without civilian support from organisations such as AusCERTt, the ADF will be vulnerable to cyber attack.
  • Mogulus Live Broadcast: I’ve been using Ustream.TV to do Stilgherrian Live. This new (?) service still officially in beta offers the full mix of live video streaming, video on demand of previous programs, and 24/7 streaming of pre-sequenced programs. I will definitely be exploring this properly soon!