A report from Beecham research on challenges in securing the IoT, my favourite quote from the press release, “Security in the Internet of Things is significantly more complex than many system designers have previously experienced...”.

I’ll be interested to see whether they put the finger on Postel’s robustness principle (RFC 793) as one of the root causes of our current internet security woes or the necessity to starve the Turing beast.

An interesting post by Mike Thicke over at Cloud Chamber on the potential use of prediction markets to predict the location of MH370. Prediction markets integrate ‘diffused’ knowledge using a market mechanism to derive a predicted likelihood, essentially market prices are assigned to various outcomes and are treated as analogs of their likelihood. Market trading then established what the market ‘thinks’ is the value of each outcome. The technique has a long and colourful history, but it does seem to work. As an aside prediction markets are still predicting a No vote in the upcoming referendum on Scottish Independence despite recent polls to the contrary.

Returning to the MH370 saga, if the ATSB is not intending to use a Bayesian search plan then one could in principle crowd source the effort through such a prediction market. One could run the market in a dynamic fashion with the market prices updating as new information comes in from the ongoing search. Any investors out there?

MH370 underwater search area map (Image source- Australian Govt)

Just saw a sound bite of our Prime Minister reiterating that we’ll spare no expense to find MH370. Throwing money is one thing, but I’m kind of hoping that the ATSB will pull it’s finger out of it’s bureaucratic ass and actually apply the best search methods to the search. Unkind? Perhaps, but then maybe the families of the lost deserve the best that we can do…

Enshrined in Australia’s current workplace health and safety legislation is the principle of ‘So Far As Is Reasonably Practical’. In essence SFAIRP requires you to eliminate or to reduce risk to a negligible level as is (surprise) reasonably practical. While there’s been a lot of commentary on the increased requirements for diligence (read industry moaning and groaning) there’s been little or no consideration of what is the ‘theory of risk’ that backs this legislative principle and how it shapes the current legislation, let alone whether for good or ill. So I thought I’d take a stab at it. :) Continue Reading…

London Science Museums Replica Difference Engine (Image source: wikipedia)

An amusing illustration of the power of metadata, Finding Paul Revere, by Kieran Healy. Clearly what the British colonial administration in America lacked was a firm grasp of the mathematical principles embodied in social network theory, Ada Lovelace on consultancy and a server park filled with Mr Babbage’s difference engines. If they had, then the American revolution might well have had a very different outcome. :)

Interesting, and a little weird. From Krebs on Security the strange tale of Loren Ipsum and Google.


Just because you can, doesn’t mean you ought

An interesting article by  and  on the moral hazard that the use of drone strikes poses and how in the debate on their use there arises a confusion of the facts with value. To say that drone strikes are effective and near consequence free, at least for the perpetrator, does not equate to the conclusion that they are ethical and that we should carry them out. Nor does the capability to safely attack with focused lethality mean that we will in fact make better ethical decisions. The moral hazard that Kaag and Krep assert is that ease of use can all to easily end up becoming the justification for use. My further prediction is that with the increasing automation and psychological distancing of the kill chain this tendency will inevitably increase. Herman Kahn is probably smiling now, wherever he is.

Continue Reading…