Friday, July 31, 2009
One of my friends commented "OMG, Seton, the transmitter and its identifier are under application s/w control? Be afraid. Be very afraid" when reading the CNET item on jailbreaking the iPhone (http://bit.ly/4bxraS).
This made me think how non-trivial it can be to provision devices and services. Way back in the 80's there was this thing called "DECnet". It ran over this rather new technology called "Ethernet". When I went to work at PBS HQ in 1986 we had this big thick (think half an inch in diameter) cable making a "U" in our building and all our nice little 80 character by 24 line CRT terminals were attached via DECnet. My techie friends said I should be proud. I just enjoyed making it work.
DECnet worked (at one point) by allowing the software to change the ID of the Network Interface Card. The Ethernet ID of the NIC was programmed to include the DECnet address assigned to the NIC. The other devices didn't need to keep tables of addresses, "discover" their own address, etc. You just programmed the node address right into the Ethernet interface.
Bad guys do the same thing with our Wireless Access Points all the time - one of the attacks is to program the attacking wireless device with the same MAC address as the "victim", then send with more power than the victim. We create whole classes of additional programs, authorization, and encryption to get around this. One that worked for a bit was called WEP, now BROKEN. For Wireless we now have moved to WPA and WPA2, where we trade bits of "secret" information back and forth to ensure we are really who we think we are.
So What About the iPhone ?
So if I can change ID of a phone (and since almost everything is done via computer these days it is likely I can do so if I can "break out" of the "jail" of the box) it is easy to make the phone do funny things. So to ensure there is one and only one unique me the phone I have in my hand and the system I am talking with need to share some unique (and perhaps "secret") information. Thus "Provisioning".
Apple and AT&T want to make it easy (read "doesn't cost much") to uniquely identify the phone, and to make it easy for the system to talk with the phone. I am guessing the fewer things they have to change after building the phone, and the fewer things we have to do or install on the phone, the happier we all are.
The statement about the "Jailbroken" iPhone simply identifies one of the hidden costs in keeping it cheap: By using software to create the ID Apple avoids the infrastructure for uniquely branding each phone and trading "secret" infromation as part of the purchase process (that is as they "provision" the device) and you and I don't need to take time to create or buy a special token of some sort...
But for the bad guys time costs almost nothing so they are willing to spend lots of time finding something that is common to every device and then they will use that one trick for quite a while. Meanwhile Apple and AT&T have to fix the infrastructure. Something that can take significant amounts of time (and quite a few people).
(This made me think of trying to reboot several hundred Internet routers, each one with a whole bunch of customers connected. All in one night. Another non-trivial activity.)
Thursday, June 4, 2009
065/365 - 04-Jun-09 - Rainy Places
Originally uploaded by Seton Droppers
What is it about taking pictures? And why do I share them?
I have never really figured this out. I know I love several aspects of taking pictures. Sometimes it is simply the technical act of capturing the picture in the first place. I love it when technology does something neat. There has always been magic in seeing something in front of me and attempting to "catch" it, and later sharing what I have captured. There is transformation as well. When I was in seventh or eighth grade art class we had our first lessons in darkroom technique. What fun to process our film, then project the image through the enlarger, and create the print. Of course the alchemy of watching the print develop, the stop bath, the fixer, and the washing were important.
Today I have gone all digital. Being a good geek I love watching my computer churn for a while to produce some amazing new creation. My work life has been technology. Filling the "pipes" to the Internet and web. Can I find an application that completely fills the technology I am charged with caring for? Disks, fiber optics, data bases, CPU cycles -- Watch the application chew them up. Movies are great places to wonder about technology. Exactly how many computers did they use to create the latest Star Trek movie, for example?
OK, so what does all this have to do with photography? The answer, I think, is now I am not satisfied simply taking the picture -- The picture needs to "say" something. Now I am not talking about technology. I am not talking about something I can write down a list of rule that make it work. I just don't always get it. I see something that attracts my attention, I attempt to capture that, and I try to print it and share it and it looks just, well, not "special". At least to me. Some of you disagree with the "not special", you tell me about how the image speaks to you, or you find it an interesting and new way of seeing, or that it captures the moment. Thank you. I enjoy the encouragement, perhaps more than you know.
But I am still not satisified. I have images and ideas that are fighting to get out and I simply can't figure out what questions to ask, how to capture the magic, what makes the picture. And it is even harder when I am using the Web. Back in art class there were people and we talked. Well some of us/you tried while others (me for example) built the habit of hiding in a corner and not risking hearing what you would say. So here I am in my little world, taking pictures, trying to biuld some friendships where I am willing to trust the comments and criticism without crying (too much) and improving. But I just can't quite seem to do it since every says Trust Yourself. I will keep working, but can I also find a place to get encouragement and help figuring out what I am?