Tag Archive for Business

| January 15, 2013
Comments Off

Internet of Things

Adding computer communication to otherwise dumb devices isn’t new. As far back as the 1990s, a whole list of Internet-enabled Coke machines around the world had varying functionality. The granddaddy of them all was the Coke machine at Carnegie Mellon University, set up in the 1970s.

Smart meters vulnerable to false data injection

Smart meters vulnerable to false data injectionThe power grid delivers electricity to charge iPads and run data centers. The power grid connect users with electricity producers through interconnected transmission and distribution networks. In these networks, system monitoring is necessary to ensure reliable power grid operation. The analysis of smart meter measurements and power systems are a routine part of system monitoring.

Help Net Security reports that most energy security professionals told nCircle they did not believe smart meters are secure enough. When asked, “Do smart meter installations have enough security controls to protect against false data injection?” 61% of the 104 energy security professionals said “no”. False data injection attacks introduce arbitrary errors into state variables while bypassing existing techniques for bad measurement detection to exploit the power grid.

Patrick Miller, the founder, CEO and president of EnergySec, noted, “Smart meters vary widely in capability and many older meters were not designed to adequately protect against false data injection. It doesn’t help that some communication protocols used by the smart meter infrastructure don’t offer much protection against false data injection either.”

“… we need to make sure that all systems that process usage data, especially those that make autonomous, self-correcting, self-healing decisions, assure data integrity,” Miller added.

Related articles

Railroad Sensors Predict Derailments Wirelessly

Railroad Sensors Predict Derailments WirelesslyUnion Pacific (UNP), the nation’s largest railroad company, has deployed Internet of Things technology throughout its network. according to Dailywirless.org the IoT can predict certain kinds of derailments days or weeks before they are likely to occur. Theis will improve safety and avoid millions of dollars in damages.

According to the article, Union Pacific, which moves 900 trains a day, started using acoustic sensors 10 years ago to monitor noises from vibrations of ball bearings in train wheels. This allows the company to get trains off the track before a faulty bearing causes a derailment. More recently, the company started using visual sensors that can detect when wheels begin to flatten–another factor that can cause accidents on the rails.

Lynden Tennison, CIO at Union Pacific, told CIO Journal, that the company can now check 40 million patterns every day and can alert the train operators of any anomaly in a bearing within five minutes. “Our goal was to design a system that requires very little maintenance,” he said.

To do this, Union Pacific worked with Intel (INTC) which addressed some of the unique challenges of designing a wireless sensor network for a rail system (pdf). The blog states that to overcome the battery-life issues, Millennial Net paired its i-Bean wireless technology with “energy harvesting” technology from startup Ferro Solutions. An inductive vibration generates power to send [battery free] at 115 Kbps over a distance of 30 m,” said Tod Riedel, cofounder and vice president of business development at Millennial Net.

Related articles

Are you ready for appliances that are smarter than you?

Are you ready for appliances that are smarter than you? Stacey Higginbotham at GigaOM asks “Are you ready for appliances that are smarter than you?” She points out that LG has introduced its first connected appliance, a Smart Thinq refrigerator that knows what’s inside it. The appliance can communicate with your phone. Your kitchen is about to get a similar level of connectivity as your living room.

The Smart Thinq refrigerator got a lot of press at the Consumer Electronics Show in Las Vegas as smart appliances were all the rage. The Android-based OS that enabled the fridge to communicate with your smartphone and share information like the contents of the fridge excited the press. The idea, according to the author, was that when someone got home from the grocery store they could choose to tell the fridge what was inside using a touchscreen or they could scan a bar code on their receipt that would contain the information about their purchases.

In this ideal world, the fridge would then be able to suggest recipes for the family based on their weight goals, age, gender and whatnot. If the consumer selected a fridge-offered recipe the appliance could shoot the recipe to the Smart Thinq oven and it could preheat. All of the connectivity occurs via Wi-Fi, and controled by the phone and in the touchscreen.

The article explains that other features include such as calorie counting and notifications of expiration dates. And if grocery stores take part – then the fridge could show when certain items are out and order them for home delivery.

Is Your Dishwasher Really Yearning for the Internet?

Is Your Dishwasher Really Yearning for the Internet? A startup called Ube thinks so. The firm is betting that smart devices and smartphone apps will make home automation cheap and easy.

In MIT’s Technology Review article “Is Your Dishwasher Really Yearning for the Internet?” Glen Burchers Ube’s chief marketing officer says that more and more home gadgets will ship with microprocessors, enabling the automation and remote control of everything from your lights to your laundry. Until this is a widespread reality, he’d like to sell you a wall outlet.

The wall outlet includes an ARM processor, runs Google’s Android mobile operating system, and can connect to the Internet. This means anything you plug into it can be controlled via your smartphone, and it will also track how much power your devices are consuming.

According to TR, the startup plans to sell the outlet along with a “smart” dimmer switch and plug for $60 to $70 apiece. The Austin, TX firm also plans to offer a free smartphone app that can control these and other Internet-enabled devices.

The blog reports that the Ube app will access a Wi-Fi network to scan for nearby Internet-enabled devices it can manage and lets you know what it can control. Mr. Burchers says the app can control more than 200 devices, most of which are gaming systems, set-top boxes, and TVs.

Mr. Burchers believes that Ube’s first products are just the beginning. He told TR most new electronics will be able to connect to the Web, and home builders will offer smart dimmers to new home buyers as they do granite countertops.

Related articles

 

Category: Internet of Things, Security | Tags: , , , , , ,
| August 21, 2012
Comments Off

How to Reinvent Your Personal Brand

BusinessDorie Clark of Clark Strategic Communications, recently posted an excellent article, How to Reinvent Your Personal Brand on the Harvard Business Review blog, The post offers a plan to follow if you want to reinvent yourself. I am on my third career iteration from teacher to techie to manager (I didn’t say it was for the better).

Personal brandIt happens all the time. Your path may make perfect sense to you, but how can you convince others to embrace your new brand, and take you seriously? Ms. Clark explains five steps to reinventing yourself for the business marketplace.

1. What’s Your Destination? The author says you need to develop a detailed understanding of where you want to go, and the knowledge and skills necessary to get there. If you’ve been a techie for the past decade, you may understand every new marketing toy out there, from Facebook (FB) to Foursquare. But can you effectively convey that knowledge to a non-technical audience? Learning the skills you need will help you gain the confidence necessary to start identifying (and publicizing) yourself in your new identity.

Unique Selling Proposition2. Leverage Your Points of Difference. In marketing, it’s called a USP, a “Unique Selling Proposition.” What makes you different from anyone else? That’s what people will remember, and you can use it to your advantage according to the article.

3. Develop a Narrative. Ms. Clark says it’s human nature to have many interests, to seek new experiences, and to want to develop new skills over the course of your life. Unfortunately,that makes you a dilettante. It’s unfair, but to protect your brand you need to develop a coherent narrative. This narrative should explain to people, in a nice, simple way so they can’t miss it, exactly how your past fits into the present. It’s like a job interview, you’re turning what could be perceived as a weakness into a compelling strength that people can remember (he’s got a different take on the industry because he has knowledge most other people don’t).

Reintroduce Yourself4. Reintroduce Yourself. The majority of people, regrettably, aren’t paying much attention to you the author says. That means their perceptions are probably a few years out of date, and it’s not their fault. With hundreds (or thousands) of Facebook friends and vague social connections, we can’t expect everyone to remember all the details of our lives. So we have to strategically re-educate our friends and acquaintances, because, especially if we’re launching a new business venture, they’re going to be our buyers and recommenders. That means a concerted effort to phone or email everyone on your list, individually, to let them know about your new direction and, where appropriate, ask for their help, advice, or business. (Blast emails are a start, but too often go unread.)

5. Prove Your Worth. Ms. Clarks says there’s a difference between knowing that you’ve launched a new business and trusting that you’ll do a good job. She explains that she may like you a lot, but unless she sees proof of your skills, she may hesitate to put her reputation on the line by sending you referrals. That’s where blogs, podcasts, videocasts, and other forms of social media come in. It’s critical to let potential customers see what you’re about and test drive your approach before they make a large commitment

Related articles
Category: Business | Tags: , , , , , ,
| July 19, 2012
Comments Off

Cyber Insurance

Floyd’s of Burbank Insurance policyJohn Moccia with Innovation Guard wrote good primer on what happens when a firm needs to buy cyber insurnace in a thread at Internet Evolution. The author writes that loss control/security precautions are built in to the process of acquiring cyber insurance. There are firms like NetDiligence that partner with insurers. Apparently when you buy a cyber insurance policy, the coverage is contingent upon a successful security audit performed by NetDiligence (penetration testing, ethical hack, etc).

Cyber insuranceThe article goes on to state that when a company outsources their technologies, such as with a co-hosting facility where their actual servers reside, the insurer will seek information on the Colo firm’s security protocols, protection and redundancy. In the end those companies with better procedures/protections in place will get better rates…..those with worse or no security will get higher rates – or not be afforded coverage at all.

There are first and third-party implications to Cyber insurance according to Mr. Moccia. First party = your losses….such as the cost to notify the thousands or tens of thousands of people who’s info has been compromised. Third Party = losses of others where they would seek restitution from you. A class action claim for failure to secure confidential data – defense costs, settlements, etc. This whole area is still evolving. Some insurers offer just third-party, others offer both. They have different approaches to the way they offer the coverages, too. For example while one insurer may offer you up to $250K for breach notification costs, another provides coverage for up to 2 million affected people with no specific dollar amount.

Coverage can incorporated on some insurer’s policies to address the acts of “rogue” employees/insiders.

Read the fine printThe author points out that the insurance industry  is a very old industry. It is also one that is slow to adapt it’s ways of doing business. Insurers package their policies the way they want to sell them, as opposed to the way people/businesses want to buy them. For example, the types of claims that we are discussing here are relevant and likely for any kind of company today. General Liability claims are very uncommon and unlikely (at least for vanilla office based companies, like Tech businesses and professional service co’s)….and traditional business interruption coverage doesn’t address these cyber issues. Yet, these coverages are part of the standard policy that all businesses carry. In order to get the total protection that a business needs, it has to buy several policies, usually from multiple insurers. The first progressive insurer that is willing to incorporate coverage for these modern exposures (even if they just dip their toe in the water….offer $10K or some other nominal amount!), as part of what is their standard commercial policy, will have a huge advantage on the rest of the market.

rb-

I sure that many SMB organizations have holes in the coverages when it comes to their cyber-insurance and I really doubt that they can pass the security audit. Many of the organizations I deal with have very low security postures, conversations about password polices, document retention and user account life-cycle are a big deal, even when my counter-part has come from industry to industry to education.

Related articles

 

Category: Business | Tags: , , , , ,
| May 29, 2012
Comments Off

Securely Shred Unnecessary Files

filesOrganizations often hold on to records that are no longer needed. Help Net Security points out that these records take up valuable storage space and cost money that could otherwise be saved. Adhering to a retention schedule helps businesses run more efficiently to save time, money and space.

Document retention“While it may seem easier to keep everything, this is actually a losing strategy,” Sarah Koucky, Senior Director of Security and Compliance for Cintas Document Management told the blog. “Saving unnecessary records costs both time and money. By setting retention schedules and policies, organizations will remain compliant with government regulations and can expedite the destruction of out-dated records to ensure a clutter-free system.”

The author provided the following retention schedule is a general recommended guideline for certain files and documents. Consult your legal advisor for specific retention schedules for your business and records.

  • Accounts payable – 7 years
  • Accounts receivable – 7 years
  • Audit reports – Permanent
  • Bank reconciliations – 3 years
  • Bank statements – 7 years
  • Cancelled checks – 7 years
  • Electronic paymentrecords – 7 years
  • Employee files (ex-employees) – 7 years
  • Employment applications – 3 years
  • Employment taxes – 7 years
  • Expense reports – 7 years
  • Financial statements (annual) – Permanent
  • Insurance policies– Permanent
  • Leases/Mortgages – Permanent
  • Loan payment schedules – 7 years
  • Payroll/Labor records – 7 years
  • Purchase orders– 7 years
  • Sales records – 7 years
  • Tax returns – Permanent

It is important to safely and securely dispose of all documents that are no longer needed. With identity theft and data breaches on the rise, doing so will protect confidential information from falling into the wrong hands according to the article.

Shredded documentsMany organizations use a secure shredding service that destroys business documents on site on a scheduled basis. The author says these companies place secure storage containers in accessible and identifiable locations to make it safe and convenient for all employees to properly shred documents.

In addition, Help Net Security indicates businesses that have a large volume of records with long retention rates but limited space can consider an off-site storage and imaging provider. This will free up space and make sure all electronic and physical records live in a secure environment. All documents can be retrieved on-demand and properly destroyed if required.

rb-

I had a conversation with a client the other day about electronic and physical document retention. The client was blase about a policy until we started to talk about FOIA and eDiscovery and that fact that if they had the documents they would have to produce it for the courts. While I am not a lawyer, I have been told that if there is a policy in place and enforced prior a request to produce a document, the courts will recognize the fact that a document is not available.

Now if you look at what the State of Michigan requires K-12 to keep (PDF), some documents have to be kept for 30-50 years and others have to permanently retained. This can certainly create a real-estate as well as technical challenges.

Can these required documents be stored electronically? What happens when technologies change? In case you didn’t notice the floppy drive is dead. I noted its passing here. The UK’s National Archives says (PDF) that USB drives and CD-R’s are the least reliable long-term storage media. They recommend LTO, but what version 1, 2,3, 4, 5? This locks you into a single backup server software

Category: Security | Tags: , , , ,
| May 10, 2012
Comments Off

What Happened to the Paperless Society?

The Economist wonders whatever happened to the “paperless office”? Thirty years ago the rise of computers was hailed as the beginning of the paperless-office era. In a 1980 briefing in The Economist, “Towards the paperless office”, they recommended that businesses trying to improve productivity should “reduce the flow of paper, ultimately aiming to abolish it”.

Unfortunately not many people listened to The Economist. Since they extolled the virtue of a paperless society, global paper consumption has increased by half.

Global paper consumption

The average American uses the paper equivalent of almost six 40-foot trees a year. Gizmodo says don’t feel too bad, the EU bureaucracy in Brussels pushed the Belgian paper consumption to a whopping 8.5 trees per person, which is like taking four Rockefeller Center Christmas trees and setting them on fire.

The trend is unlikely to change if a report from ITnewsLink is to be believed. More than half of Americans think the U.S. will never go paperless. Pollster Poll Position conducted a national scientific telephone survey to see if Americans think the U.S. could ever be a paperless society.

Poll Position’s research (PDF) found that 56% of Americans said they don’t think the U.S. would ever be a paperless society, while 20% said yes, one day we’ll all go paperless. Twenty-four percent of Americans were undecided or had no opinion on the question.

Other Poll Position finding

  • 63% of the 18-29 age group said the U.S. would never be a paperless society and 23% said we could be a paperless society.
  • 56% of men and women said we could never be a paperless society.

You can still vote in their online companion poll.

rb-

I would think that in an era of computers, Amazon (AMZN) Kindle Fire and Apple (AAPL) iPad tablet computers, iPhones and Google (GOOG) Android smartphones that paper consumption would decrease. apparently it takes more than buzzwords like “paperless” and “green” to make a difference.

Related articles
Category: Green | Tags: , , , , , , , , , , ,
« Older Entries  

Switch to our mobile site