Category Archives: Security

From Russia, with data…

Recently (Source: BBC News) it was reported that Russia are seeking to pass new laws requiring data about Russian citizens to be stored within the country, rather than in datacentres in the United States “where it can be hacked and given to criminals” (quoting MP Vadim Dengin).

At first glance this seems to be a relatively ridiculous stance to take, flimsily disguised as an attempt to protect the data of Russian citizens when actually many skeptics believe this is more about control which could lead to Russia becoming the next country with an iron-curtain firewall – much like China has operated for years. A key question is how will they enforce this in any way that would benefit Russian people?

Irrelevant of the motivations behind this move, there are potential implications for digital practitioners that need to be thought about going forward. For a start, if there is any possibility that a Russian is going to use your application and requires storing any data then that database will need to be stored in Russia. A shrewd move if Russia plans on creating datacentres, but from a practical point of view would the rest of the world want their data stored in Russia?

One option would be to develop the system so that anyone based in Russia has their data stored in a Russian version of the database. But let’s be honest, it isn’t really practical to go down this route. Where does it end? Do you have a database for each country that requires one?

At the other end of the spectrum is the consideration that you have to rule Russian customers out of your experience if they have to do any sort of account creation. For some sectors that may not be a concern. The Google’s, YouTube’s and Amazon’s of the world may decide this is a risk worth taking. But what about the investment sector, for example? Russia has a lot of wealth and ruling them out could be a big problem. Similarly, research becomes a lot more difficult. For an entity trying to undertake surveys Russia may be a key demographic but this may well rule them out of being included.

What is the reality? We think that this is likely to be a very hard thing for Russia to police and most likely they really are only targeting big companies. The only real way to enforce this is that Russian internet access becomes locked down in a utilitarian move to “protect data”, but which would actually be severely curtailing Russian freedoms online. If this is the case then any company serious about having a presence online in Russia would have to have a Russian version specifically for the purpose. Instead, what will most likely happen is that businesses will turn their backs on Russia and so we won’t need to worry anyway.


A penny for your thoughts?

Telepathy is something usually reserved for sci-fi or fantasy novels, but in recent years scientists have been making significant steps towards actually being able to implant chips into the human brain that will enable interpretation of thought. Professor Kevin Warwick is one such scientist who has been pushing the boundaries of integrating biology and technology, as he discusses in this article.

There is no doubt that integrating technology with our bodies will present a whole host of benefits. Being able to control things simply with thought is something that would be incredibly useful, especially for creative tasks or interacting with software. In Switzerland they have recently been developing medical implants that can be powered by the human body and the implications of an implant that could therefore communicate directly with a Star Trek style medi-tricorder are amazing. Imagine a doctor being able to turn on their tricorder, scan their patient and the implants instantly give a full read out of the patients vitals. It would be possible to diagnose people instantly, see problems before they have occurred and monitor recovery of internal organs after accidents without invasive procedures or x-rays and the like. And this is just one possible use.

But what of the drawbacks? Well imagine that really useful brain implant, which allows you to control your devices and software with your thought. You can send and receive messages, skype style, with a clear glass display in your glasses showing you all your alerts (or maybe it would just appear in your sight, through your eye) but your mind controlling your responses to them. Brilliant, but all this relies on hardware and software to run and if there is one thing we know about software it is that some people rather enjoy to mess around with it.

Computer hacking has fast become a favourite subject of the media. A quick keyword search of BBC News will show just how often it is talked about. It is a reality of the software industry. So imagine that your brain implant, that allows your life to be so easy, is hacked by some unscrupulous person. In theory, your thoughts would then be available to them. Anything you think about could be collected and transmitted around the world. That passing thought about your work colleague or that insult you thought but didn’t say could be extracted and used against you. Even worse is the concept that you could be ‘tapped’ and monitored, perhaps by an Orwellian style government organisation, completely without your knowledge.

This is all rather sci-fi at the moment, but this technology is fast becoming reality. The TV series Homeland recently featured a story line where terrorists hacked into a congressman’s pacemaker and induced a heart-attack. Just image what would be possible if you had more of these implants throughout your body. Would it be possible to influence a person’s behaviour by feeding impulses and thoughts directly through a brain implant? You could commit murder through someone else, without ever meeting them or their victim.

The possibilities, for fiction writers, philosophers and scientists, are endless. There is no doubt that biotechnology can and will offer huge benefits to the world. But the need for security and control will be beyond anything we currently have to deal with. It will be very interesting to see how this area of technology develops, and it will be equally interesting to see how we learn to deal with and control these technologies as well.