Archive for RB

| July 17, 2012
3 comments

IPv6 Compromise Smartphones Users’ Privacy

IPv6 Compromise Smartphones Users' PrivacyNow that the IPv4 address pool is depleted and the IPocalypse is at hand, wrinkles are emerging in IPv6.  One of the wrinkles is with mobile devices. Most of the cool mobiles devices have been able to handle IPv6 for a while. Apple’s (AAPL) iPhones, iPads, and iPods have been capable of handling IPv6 Since version 4 of the iOS operating system and most Google (GOOG) Android devices have been capable since version 2.1. H  Security is reporting that these mobile operating systems send information about their users to the network.

Smartphone risksA device on an IPv6 network usually determines half of their address (the “interface identifier”) themselves, but H Security says that smartphones are sloppy with this task. According to the article, smartphones simply add the same two bytes to their globally unique MAC address and use it as their identifier. As a result, they transfer a unique hardware ID whenever they communicate with an IPv6-enabled server.

The basic problem isn’t an IPv6 issue because there are other methods for generating the address. The article says that a device can generate a random interface identifier and replace it on a regular basis. This is called the Privacy Extensions method and is the factory-set option in Windows; it can also be enabled in other operating systems. The article points out that devices running Apple’s iOS or Android offer neither the option to enable Privacy Extensions nor the option to disable IPv6, anyone who uses an affected device on an IPv6-enabled wireless network will send their ID.

IPocalypseThe only thing the smartphones are lacking is a control option in the user interface, as the Privacy Extensions do come as part of their kernel. For instance, on a (jailbroken) iOS 4 device with root access, they can be enabled with the same command that enables them on a desktop device running Mac OS X:

sysctl -w net.inet6.ip6.use_tempaddr=1

The blog claims the problem is only affecting a small number of users because IPv6 is not yet in widespread use. However, more ISPs plan to offer IPv6 in addition to the old IPv4 in the future. In addition, there are routers like the Cisco (CSCO) Linksys E3000, which will automatically set up an IPv6 connection via a 6to4 conversion when their internet access is purely IPv4.

The author concludes that the issue is particularly sensitive because such devices tend to be used by one specific person. As a result, the MAC address, which is accessible to any server operator and network monitor, allows this user to be identified.

rb-

If this sounds familiar, it is I wrote about mobile apps uploading  UDID’s here.

Related articles

Ralph Bach has been in IT long enough to know better and has blogged from his Bach Seat about IT, careers, and anything else that catches his attention since 2005. You can follow him on LinkedIn, Facebook, and Twitter. Email the Bach Seat here.

Category: Uncategorized | Tags: , , , , , , , , , ,
| July 14, 2012
Comments Off on 1983 Mobile Device

1983 Mobile Device

Commodore EXECUTIVE 64 ad from Australia, could be the first mobile device. It was advertised as the first “portable” full-color computer. The Commodore EXECUTIVE 64 was introduced in 1983 and had a retail of $1,000.

Commodore EXECUTIVE 64 1983 Mobile Device

 

Ralph Bach has been in IT long enough to know better and has blogged from his Bach Seat about IT, careers, and anything else that catches his attention since 2005. You can follow him on LinkedInFacebook, and Twitter. Email the Bach Seat here.

Category: Uncategorized | Tags: , , , , , ,
| July 12, 2012
2 comments

Power Over Ethernet 802.3at

Power Over Ethernet 802.3atA client recently asked what happened to the network design rule of thumb which said do not install data cables anywhere near electrical cables? The fear of cross-talk, interference, and corruption of the data traffic seems to have disappeared with power over Ethernet. He rightly pointed out that now it seems OK to mix data and power in the same cable going to a networked device. Power over Ethernet (PoE) is similar in principle to the way that the copper wire pair that carries your POTS (Plain Old Telephone System) telephone signals into your house also carries enough electricity (48v DC) from the telco Central Office to power the phone’s core elements of the headset, dial, and ringer. The latest PoE standard is 802.3at.

See part 1 here.

can cut installation costsPoE end devices (PD) became popular with the bean-counters because these devices can cut installation costs by as much as 90% over traditional powering techniques. With cost savings comes demands for new products however, the power limitation of 802.3af  prevented full support of  “high power” devices via the industry-standard PoE. In September 2005, the IEEE launched a task force to begin reviewing new PoE specifications to enhance the IEEE 802.3af guidelines into a next-generation standard.

The IEEE ratified the new PoE standard in 2009 called IEEE 802.3at-2009 PoE standard (aka PoE+ or PoE plus). Under the new standard Power Sourcing Equipment (PSE) must provide at least 30.0 Watts at the PSE port and 25.5 watts continuous power to up to 100 meters from the PSE over Cat5e or better cable to each PD. This will allow PoE to address applications such as multi-radio wireless APs, Pan-Tilt-Zoom (PTZ) gimbal-mounted cameras, 802.16 subscriber stations, 3G/LTE femtocells, perimeter security equipment, videoconferencing products, thin clients, and even some notebooks, as well as emerging applications. The new standard also provides full backward compatibility and interoperability to existing 802.3af compliant PSE’s and PD’s.

802.11n Wi-Fi technologyThe widespread use of 802.11n Wi-Fi technology has been one of 802.3at’s drivers. The multiple-input/multiple-output (MIMO) architecture used by 802.11n technology requires more power than earlier technologies, like 802.11a and 802.11b/g.

Installation practices and cable type impact the ability to use PoE+ to power a PD. Installation practices are outside the scope of the IEEE 802.3at standard. The Telecommunications Industry Association (TIA) has addressed these issues in a Telecommunications Systems Bulletin (TSB). TSB-184, Guidelines for Supporting Power Delivery Over Balanced Twisted-Pair Cabling describes how the impact of environmental conditions of the installed cabling and heat dissipation profiles of the cables’ effect the telecommunications cabling capacity to support the PoE+ application.

But Wait There’s More

IEEE logoOne of the most important benefits of the IEEE 802.3at standard is it incorporates existing 802.3af PoE safety requirements. The new standard includes compliance detection features for safe powering as well as safe PD disconnection in overload, short-circuit or under-load conditions enabling fast and safe adoption of the new standard.

The definition of a powered device changed under the IEEE 802.3at-2009 standard. The new standard considers the PD to be the powered interface, as opposed to the entire device being powered. This means that one device can have two power interfaces, each taking 25.5W, inside the same box. Nothing precludes these to be connected—one over the two pairs using lines 1, 2, 3, and 6 and the other over the two pairs using lines 4, 5, 7, and 8. This is what makes it possible to double the standard 802.3at-2009 maximum of 25W and go up to 51W while fully complying with the standard. Applications that need 51W PoE are an exterior IP camera with a heater or an access control system that includes a controller, a reader, and a few door locks which can easily consume 45W of power or more.

POE PTZ cameraAnother way PoE system developers are addressing the growing device powering requirements is by employing the option in the IEEE standard to add PoE functionality over all four pairs of the Ethernet cable. This option opens the door for safely delivering 60 watts of direct current (DC) power over a single Ethernet cable, using current levels of 600 milliamps (mA) than the 1.2 Amp level of two-pair 60W midspans.

The manufacturers claim this configuration can cut power consumption by 15% compared to two-pair solutions. This could translate into savings of about $25 per year per powered device, assuming energy costs of $0.10 per kilowatt-hour.

Related articles
  • IEEE Introduces Groundbreaking Standard for Body Area Networking (sys-con.com)

 

Ralph Bach has been in IT long enough to know better and has blogged from his Bach Seat about IT, careers, and anything else that catches his attention since 2005. You can follow him on LinkedInFacebook, and Twitter. Email the Bach Seat here.

Category: Uncategorized | Tags: , , , , , , , ,
| July 10, 2012
One comment

Patent Trolls Cost the US $29 Billion

Patent Trolls Cost the US $29 BillionThe United States patent system is costing the industry more than $29 billion a year in unnecessary legal fees. A Boston University study crunched the numbers and worked out that the legal action conducted by “patent trolls” cost U.S. companies an estimated $29 billion during 2011.

United States Patent and Trademark Office (USPTO) logoFortune defines patent trolls as entities that own the intellectual rights to innovations without innovating anything themselves, so-called “non-practicing entities.” They buy patents to sue infringers. According to the study, last year, 1,150 companies defended themselves against 5,842 patent troll lawsuits. Nearly half of those companies made less than $100 million during the year, which showed the authors that patent trolls aren’t just a problem for large firms, but rather a problem for smaller firms who have less money to invest in their own research.

The result is that the companies lost $29 billion in direct costs – legal and licensing fees. The study did not estimate indirect losses for defendants in things like delays in new products, loss of market share, or the need to change products.

Study authors James Bessen and Michael Meurer also found that the patent troll costs have escalated since 2005 when the study found a total of 1,401 claims were $6.6 billion in direct costs. The authors say increasing patent litigation in the U.S. is a significant tax on investment in innovation. To put the figure into perspective the total U.S. spending on research and development is $249 billion in 2009 but it is still a big tax.

Bessen and Meurer said it was rubbish that asserting patents played a socially valuable role in enabling small inventors to realize greater profits from their ideas. The report said that the costs of defending such legal action meant these organizations had less money to invest in their own research. The report claims that patent lawsuits were a social loss and not a transfer of wealth as the trolls claim.

rb-

I have followed patent trolls for a while here, here, and here.

The ineptitude of Washington to do anything right enables patent trolls. The report concludes “The rapid growth and high cost of NPE litigation …  should set off an alarm warning [to] policymakers that the patent system still needs significant reform to make it a truly effective”

Most reasonable people should agree with the study’s recommendation to increase transparency in the patent system and that the courts should rigorously supervise patent damages awards to make sure that damages are proportional to the value of the patented technology.

Related articles
  • Patent Absurdity: Trolling the Courts for Profits (aleksandreia.com)

 

Ralph Bach has been in IT long enough to know better and has blogged from his Bach Seat about IT, careers, and anything else that catches his attention since 2005. You can follow him on LinkedInFacebook, and Twitter. Email the Bach Seat here.

Category: Uncategorized | Tags: , , , , , ,
| July 7, 2012
Comments Off on One Heck of a Commute

One Heck of a Commute

One Heck of a CommuteI drive about 55 minutes to get to work most days, now, maybe I won’t complain as much about my commute after seeing what these guys do to get to work. This seven-minute clip follows two radio transmission tower workers as they scale a 1,768 foot guided tower to work on the mast.

To put this height into perspective, this tower is almost twice the height of the Eiffel Tower in Paris. In the video, filmed using a helmet cam, and you can see these guys free-climb without safety harnesses in some sections of the tower.

Do Not Try This At Home!

Related articles

 

Ralph Bach has been in IT long enough to know better and has blogged from his Bach Seat about IT, careers, and anything else that catches his attention since 2005. You can follow him on LinkedInFacebook, and Twitter. Email the Bach Seat here.

Category: Uncategorized | Tags: , , , ,
« Older Entries   Recent Entries »