Trends and Insights

The Eye is the Window to the Soul | By Jeff Carter

jgarcia@eyelock.com — Thu, 10 May 2012 16:23:00 GMT

Well, tomorrow is the big day. TEDxEast kicks off in less than 24 hours. This year’s event, ”The View from In Here,” will offer an examination of multiple perspectives – the shades of grey that inhabit all aspects of life. It will be for the attendees to decide if the ideas presented are the beginning of the end or the next big thing; magnanimous or mercurial; useful or useless.

For the incredible Leonardo da Vinci, the eye was tremendously important. He believed that the eye was “the window of the soul” and the most critical of the senses by which we experience the natural world. During my talk tomorrow, I will describe the eye as the key that will unlock your world.

The convergence of one’s digital and one’s physical presence is upon us and marks the very beginning of what people like Vernor Vinge and Ray Kurzweil say will be the singularity. Technological singularity refers to the hypothetical future emergence of greater-than-human intelligence through technological means. Since the capabilities of such intelligence would be difficult for an unaided human mind to comprehend, the occurrence of a technological singularity is seen as an intellectual event horizon, beyond which events cannot be predicted or understood.

Whether or not Ray or Vernor are correct, this convergence will be transformative. To me, the most important outcome of this singularity will be the catalyst it creates for individuals to take back ownership of their privacy and identities. People will finally have the power to decide when and how the physical and digital trails that make up their being are used and monetized.

I hope you will walk away with a feeling of wonder and possibility at what you see and hear Friday. And, if you are unable to make the event, check out the live stream here: http://new.livestream.com/tedx.
More ...

Tags: TEDxEast

The TED Commandments | By Jeff Carter

jgarcia@eyelock.com — Tue, 08 May 2012 17:25:00 GMT

This Friday, May 11th, I will have the opportunity the take the stage and present at the Times Center in the New York Times building, located in the heart of Times Square, as part of the TEDxEast conference.

The ‘instructions’ from TED about the format of a TED talk are themselves pretty interesting – “you have just 18 minutes to give the talk of your life.” And they are serious about that. In fact, they’ve created Ten Commandments:

• Thou Shalt Not Simply Trot Out thy Usual Shtick
• Thou Shalt Dream a Great Dream, or Show Forth a Wondrous New Thing, Or Share Something Thou Hast Never Shared Before
• Thou Shalt Reveal thy Curiosity and Thy Passion
• Thou Shalt Tell a Story
• Thou Shalt Freely Comment on the Utterances of Other Speakers for the Sake of Blessed Connection and Exquisite Controversy
• Thou Shalt Not Flaunt thine Ego. Be Thou Vulnerable. Speak of thy Failure as well as thy Success.
• Thou Shalt Not Sell from the Stage: Neither thy Company, thy Goods, thy Writings, nor thy Desperate need for Funding; Lest Thou be Cast Aside into Outer
• Darkness.
• Thou Shalt Remember all the while: Laughter is Good.
• Thou Shalt Not Read thy Speech.
• Thou Shalt Not Steal the Time of Them that Follow Thee

As the day gets closer, I will provide even more details about the talk. For now though, I thought it would be interesting to share the preparation leading into the event. It has been a four month journey in which I:

• Created the structure of my presentation based on my concept of a convergent world
• Worked with one of the best designers in the world to craft the look and feel and all the slides
• Used the art direction and my vision to assemble a world class video with an excellent director
• Created a custom score for the grand finale video as a result of conversations with the incredible artist The Bassbin Twins
• Rehearsed for hours… and hours… and hours…

All for what I hope will be the talk of my life!
More ...

Tags: TEDxEast

Re-cap of the Telwares CIO Global Forum: Economics Is the Key to Cyber Security | By Jeff Carter

jgarcia@eyelock.com — Mon, 07 May 2012 14:18:00 GMT

Last week, Telwares held its spring CIO Global Forum in Napa, CA. I had the privilege of presenting the second day’s visionary address to an audience of approximately thirty CIOs (Chief Information Officers) from Fortune 500 companies and some of the most distinguished thought leaders in the world.

The day before my address, Larry Clinton, the President and Chief Executive Officer of the Internet Security Alliance, spoke about the importance of economics for the ultimate success of U.S. cyber security policy. Mr. Clinton is one of the clearest voices on cyber security and has discussed these issues with USA Today, CBS, Fox News, CNN, C-SPAN and CNBC, among other news outlets.

Mr. Clinton even testified about Examining the Homeland Security Impact of the Obama Administration’s Cybersecurity Proposal before the U.S. House of Representatives Committee last year. During his talk in Napa he reiterated his testimony – a somewhat contrarian position that we must integrate advanced technology with economics and public policy to create a sustainable system of cyber security.

From my perspective, Mr. Clinton’s vision is precisely the type of ‘big idea’ thinking that is required to make positive strides toward protecting the U.S. and all of our citizens. We will not make progress if we are more interested in status quo than any real change. Mr. Clinton’s vision provided the audience with great food for thought.

Special thanks to Michael Voellinger (@Michael__V) and the forum for the opportunity to speak at this event.

More ...

The Evolution of the CIO and What it Means for Cybersecurity | By Jeff Carter

jgarcia@eyelock.com — Tue, 24 Apr 2012 14:35:00 GMT

On Wednesday April 26, I will kick of the afternoon session of the CIO Global Forum in Napa, CA. It’s an honor to join some of the brightest thought leaders in world for a cross industry look into the evolving role of the Chief Information Officer.

The role of the CIO is transitioning from a technical expert to a top business executive who brings valuable technological insight and capabilities. This evolution means that every CIO will need real-time education and information about workforce management, global expansion, emerging technologies and other trends – directly from peers who share these challenges.

Today, every CIO faces the evolving threat of cyber disruption – the bad guys are coming. These cyber attackers are well funded, sophisticated, relentless and targeting your infrastructure and employees with the goal of gathering critical information and disrupting the business continuity. These attackers are also now empowered with additional channels for attacks such as social and mobile platforms.

CIOs are increasingly being called upon to identify points of vulnerability, invest budget dollars to protect critical systems and produce the strategies to mitigate cyber risks for the organization.

In order to compete in this rapidly accelerating world, CIOs must harness the power waves occurring underneath their feet. By mobilizing the strength of their incumbent positions, they can turn the tables on disruptors and innovators. With this new perspective, a CIO must leverage mobile, social and identity to drive down costs, keep their customers safe and outperform the competition.

See you in Napa!

More ...

MintChip: The End of Banking As We Know It | By Jeff Carter

jgarcia@eyelock.com — Mon, 16 Apr 2012 19:35:00 GMT

New currency reinforces the need to secure banking infrastructure

The Canadian government just announced its own version of BitCoin (a virtual currency), called the MintChip, to replace the penny. In my opinion, this is the end of banking as we currently know it.

According to the Fast Company piece that shed light on this story:

"The news comes only days after RCM's chief financial officer Marc Brule criticized Bitcoin's solution. The problem, he told Reuters, was that Bitcoin was not backed by a credible source. ‘The system we would bring in would be backed by a fund,’ Brule said. ‘Bitcoin may work for the small group of people that believe in its value, but that could change very suddenly."

The banking system is already extremely vulnerable – an issue that has become even more clear in the past few months. This type of currency, and the transition from cash to a digital currency, could make financial institutions (and others using this currency) susceptible to pandemic style attacks on the banking industry.

How will Canada protect its financial infrastructure? It is clear that the security is needed; this is an issue that the Canadian Finance Minister should take very seriously.
More ...

Cyber Strategy: Not up to the task? Sounds familiar all across the U.S. | By Jeff Carter

jgarcia@eyelock.com — Sun, 01 Apr 2012 02:49:00 GMT

Shawn Henry, the FBI's executive assistant director in charge of cybersecurity, recently told The Wall Street Journal that the government and private companies aren't up to the task of defending sensitive data from would-be hackers. Mr. Henry said:

"I don't see how we ever come out of this without changes in technology or changes in behavior, because with the status quo, it's an unsustainable model. Unsustainable in that you never get ahead, never become secure, never have a reasonable expectation of privacy or security.”

His comments were directed at Congress regarding their consideration of two competing measures designed to secure the networks for critical U.S. infrastructure; an issue that has become very political. Nobody disagrees that there is a great need for security improvements, but pro-business advocates maintain that the new regulations are not likely to better protect computer networks.

Everyone is right on this matter. The U.S. does need advanced research, development and investment. And regulation will neither fix the core issues, nor damage the business outlook. Furthermore, what is typically missed time and time again is accurately identified by Mr. Henry: if we don’t change the fundamental approach to security we will end up with more breaches and an insecure perimeter.

We are sitting on a ticking time bomb but there are ways in which we can address these issues. I plan to put forward some new thinking surrounding these topics for people to consider at TEDxEast, May 11 in NYC.
More ...

Tags: Cybersecurity,TEDxEast

Speaking at TEDxEast | By Jeff Carter

jgarcia@eyelock.com — Wed, 28 Mar 2012 19:09:00 GMT

When I was invited to speak at TEDxEast in New York on May 11, my mind raced with 1,000 possibilities. For the last 10 years of my life, I’ve been fortunate to be surrounded by outstanding people who have given me their time, expertise and insight. At the core of these relationships has been a communal search into the complexity of shared information, privacy and the coming singularity.

What I am speaking about at TED is a complex idea – how to secure our physical and digital worlds while protecting privacy. To bring clarity to my talk and help move the audience beyond one dimensional, singular thinking – I am giving them a visual feast in addition to the verbal explanation. A brilliant designer, Takao Umehara, of Creativity is Everywhere in NYC, has created splendid visuals to help explain and enlighten the issues that will be addressed in my presentation.

Speaking at a prestigious TED event requires that a person give the talk of his or her life in 18 minutes or less. My hope is that in my allotted time, I will captivate the audience and open their minds to possibilities they never considered before. I look forward to sharing this experience with those who attend TEDxEast and those who view it later online for years to come.
More ...

Tags: TEDxEast

iTunes - As Safe as a Bank? | By Jeff Carter

jgarcia@eyelock.com — Tue, 20 Mar 2012 14:36:00 GMT

In the Friday New York Times, Brian X. Chen and Evelyn M. Rusli reported that “Consumers are beginning to complain that Apple’s iTunes Store, and in particular its App Store, which the company portrays as the safest of shopping environments, is not so secure.”

This report has created quite the stir. It is chaos within the blogosphere with fans of Apple issuing complaints that “their accounts have been hijacked” and application developers saying sternly, “they are having to deal with fraudulent purchases that drain their time and resources.” All of this seems very scary and in the hysteria that surrounds our cyber security pandemic, could it be that Apple is the mother lode of fraud?

The truth is no. Facts speak loudly: iTunes now costs $1.3 billion a year to run, it has 225 million accounts – more than Bank of America and Wells Fargo put together – and it claims more than 30 billion downloads. Their fraud rates are modest at best for this transactional volume.

It wasn’t that long ago that the banking industry bemoaned PayPal and attacked it viciously. However, with a total annual value of transactions exceeding $90 billion, they report fraud rates of just 0.17% against their total volume. This is best in class and equates to just over $151million in annual losses. The banking industry would love a year with only $151million in losses.

Apple has long been rumored to envy the $900 billion payments industry. In March the United Press International reported that, “The U.S. Patent and Trademark Office has approved a patent application by Apple suggesting the company plans to launch a mobile payment service. The patent's description said, ‘the financial transaction rules may be based upon transaction amounts, aggregate spending amounts over a period, merchant categories, specific merchants, geographic locations, or the like.’”

I don’t think anyone could make a case that iTunes is safer than a bank. However, one could make the case that Apple’s iTunes is as safe as a bank. This may play right into Apple’s hands as they attempt to dismember the banking industry with the same methodical viciousness they used on the computer, handheld, telecommunications, music, movie and publishing industries.

More ...

The Cyber Pandemic that is Internet Security | By Jeff Carter

jgarcia@eyelock.com — Fri, 16 Mar 2012 14:49:00 GMT

Every day it seems there is a new headline bemoaning the ills of computer security. From bank breaches where hackers steal account numbers and PINS to gaming sites where user accounts are compromised. We are in the midst of a cyber pandemic and the statistics are startling.

Today, ZDnet.com published a story that illustrates the point clearly and comes as no surprise: usernames and passwords top the list as the "weakest link in enterprise IT security." In fact, "Eighty percent of the security incidents studied by Trustwave were due to the use of weak administrative credentials."

The report observes that cyber attacks continue to rise unabated, and hackers are increasingly going after businesses’ customer records. The risk is even greater for businesses frequented by consumers and brand name chains. For an amazing in depth view of the ongoing systematic attacks that are occurring, spend a moment with the Privacy Rights Clearing House security breach tool The full Chronology of Data Breaches shows that more than a half billion sensitive records have been breached since 2005.

So the pressing question is this: organizations are spending millions of dollars to beef up their data, applications and network security systems. Why are they overlooking one obvious area of exposure: user passwords?
More ...

Tags: Cybersecurity,Banking

Anonymous: Unnamed But Not Unheard | By Jeff Carter

jgarcia@eyelock.com — Thu, 15 Mar 2012 17:48:00 GMT

Anonymous, the collective associated with collaborative, international “hacktivism”, has been in the news steadily since 2011 – with a stream of successful hacks from Sony to the CIA’s website, to, most recently, the Vatican’s site. For the past several years Anonymous, LulzSec and other hackers have been attacking major financial, commercial and government institutions around the globe – creating awareness about the serious holes in our current security systems.

Yes, these hacks are a nuisance for organizations and companies to clean up. Yes, they can even be devastating to innocent bystander whose data was stolen and made available online. Furthermore, as reported by the Huffington Post:

“In turning one of its best-known hackers into an informant and breaking open the highest profile elements of the ‘Anonymous’ movement, authorities have dealt a serious blow to a group they found a growing irritant. But as the broader ‘Anonymous’ label - complete with its iconic Guy Fawkes mask imagery - is used by ever more disparate causes worldwide, it may be all but impossible to shut it down for good.”

Anonymous is not being stopped – and their activity is exposing a plethora of security issues we currently face. This group is bringing cybersecurity issues to the forefront and forcing it into the political, technological and corporate conversation. It’s clear that the security measures currently used to defend against these attacks are ineffective and these breaches not only compromise data and sully corporate reputations, they can ultimately compromise national security and our entire economy if they are not addressed.

So why do we keep sticking with these systems that don’t work? A change has to be made, and it can’t be made by just beefing up the currently flawed user ID / password protection modules we are all accustomed to. It’s time for a major shift – one toward biometrics or a similar system.

Tell us: what do you think of Anonymous and their “hacktivism”?

More ...