Bahahahahaha ahhh fark that’s farkin hilarious the Australian government are gonna do what? I can tell you from experience it’s gonna be completely farked like the nbn along with anything technological they have a part in
They hand a shitload of money to Amazon, who then set up one of their AWS data centers complete with software and all, but only allow the government access. 8 don’t know what they’re gonna do with the data center, but the data center construction will probably be absolutely fine.
The register providing contrast to the AWS infrastructure build out:
The Register is aware of government agencies building on-prem private clouds – sometimes on open source platforms – so they can scour code to soothe their security worries.
That’s just a local data center, guys. Like how everything was done before “the cloud” became a buzzword.
There is some difference I see in the management layer, with more dynamic resource allocation in a cloud infrastructure compared to traditional data center usage.
Well I would think that if the customer, in this case the Australian Signals Directorate, encrypted all data prior to going to AWS, it would be protected from any data mining that Amazon does.
I am sure that the ASD isn’t just posting the information unencrypted on AWS or solely trusting Amazon’s encryption where Amazon also has a copy of the key.
Well yes and no. For one there is lots of metadata like access times, the IPs that connect and their locations, traffic amount, etc.
But also like with all “cloud solutions” you are just outsourcing your uptime reliability issues. And for a system like that, im not sure outsourcing that is a great idea.
Yes that metadata can exist but can’t that be obscured if AWS isn’t connected to directly?
I think some of the technical details of how the ASD intends to ensure data protection/confidentiality/integrity are omitted for national security reasons.
It looks like it will be on prem, but then i dont even understand why they would involve amazon at all? Just use the existing public solutions. As soon as any major part of a system that is connected to the internet has proprietary code in it, you cant really trust it to protect secret information anymore.
It’s won’t be on-prem, but it will be dedicated data centres, built and run by Amazon, so almost the same as. Why? Because AWS runs better data centres than the gov ever could.
Gov is outsourcing the physical infrastructure risk, just like any other ocmpany that puts their stuff in the cloud.
The man was investigated after an airline “reported concerns about a suspicious Wi-Fi network identified by its employees during a domestic flight.”
It’s alleged the accused’s collection of kit was used to create Wi-Fi hotspots with SSIDs confusingly similar to those airlines operate for in-flight access to the internet or streamed entertainment. Airport Wi-Fi was also targeted, and the AFP also found evidence of similar activities “at locations linked to the man’s previous employment.”
**Wherever the accused’s rig ran, when users logged in to the network, they were asked to provide credentials.**The AFP alleges that details such as email addresses and passwords were saved to the suspect’s devices.
The charges laid against the man concern unauthorized access to devices and dishonest dealings. None of the charges laid suggest the accused used the data he allegedly accessed.
However three charges of “possession or control of data with the intent to commit a serious offence” suggest the alleged perp was alive to the possibilities of using the data for nefarious purposes.
Doesn’t this seem like an inefficient way to go about? Locked in a flying tin can with the same ~100 people for a few hours. I would think a public library or busy transit station would net way more info, with the added advantage of not being locked in if someone starts getting suspicious.
I feel like with the advent of nearly ubiquitous unlimited mobile data plans (in some parts of the world) a lot less people use public WiFi. However on a plane you have little choice, so it makes sense.
If you are trying to steel credentials from people with power and money passengers in first class are a good target.
Where else are you going to find a cluster of people like that that are using the wifi and are going to be there for hours. It’s about as optimal as I can think of.
Even better if you are targeting a spefic company. Just pick flights out of the headquarters for that company.
If you want to attack say Microsoft pick a flight from Seattle to DC. Pretty good odds of a Microsoft high up being on the flight and wanting to use the wifi for work.
Using the term “freeware” is silly, but consider this:
Is the act of reading/watching something, equivalent to making a copy? Freedom of thought is an agreement much older than the 1990s, it has nothing to do with copyright, and all to do with secrecy. If something is made public, then it isn’t secret, so obviously anyone can read/watch it, be it with a wetware neural network, or an AI neural network. Making an exact copy is either plagiarism, or copyright infringement… but abstracting a style, then applying it to some other data, is “inspiration”.
Imagine a website with a licensing disclaimer like “you are allowed to read the content, but not to comprehend or express any thoughts based on it”. Nonsense, right?
The sort of mental gymnastics and cognitive dissonance that these subhuman c-suite employ to justify stealing everyone else’s data while demonizing sharing of their data, is just infuriating. If these scumbags were incarcerated for a day each for every time they showed this hypocrisy, they would all rot in the jails for their entire lifetime, perhaps more.
Man it’s crazy how these fuckers basically get to ignore copyright law whenever it’s inconvenient to them but if you have one too many Windows machines provisioned they’ll send the Spanish Inquisition after you.
Sure thing…now GPL/Creative Commons all your code involved in any way for your models, documentation, parameters, data sets, and allow full unlimited integration and modification by any parties to any portion of it.
theregister.com
Newest