Sign up for our Technology Newsletter 
Passwords Continue As The Weakest Link
Comments Off on Passwords Continue As The Weakest Link
Passwords aren’t the only failure point in many recent widely publicized intrusions by hackers.
But passwords played a part in the perfect storm of users, service providers and technology failures that can result in epic network disasters. Password-based security mechanisms — which can be cracked, reset and socially engineered — no longer suffice in the era of cloud computing.
The problem is this: The more complex a password is, the harder it is to guess and the more secure it is. But the more complex a password is, the more likely it is to be written down or otherwise stored in an easily accessible location, and therefore the less secure it is. And the killer corollary: If a password is stolen, its relative simplicity or complexity becomes irrelevant.
Password security is the common cold of our technological age, a persistent problem that we can’t seem to solve. The technologies that promised to reduce our dependence on passwords — biometrics, smart cards, key fobs, tokens — have all thus far fallen short in terms of cost, reliability or other attributes. And yet, as ongoing news reports about password breaches show, password management is now more important than ever.
All of which makes password management a nightmare for IT shops. “IT faces competing interests,” says Forrester analyst Eve Maler. “They want to be compliant and secure, but they also want to be fast and expedient when it comes to synchronizing user accounts.”
Will Cisco Boot Linksys?
Cisco reportedly has hired Barclays to find a buyer for its Linksys business.
Cisco bought Linksys back in 2003 to get into the consumer networking business and the firm has put out some good products, most notably the WRT54G wireless router that was a favourite with technology savvy punters. Now Cisco is looking to offload Linksys as it continues to pull back from the consumer networking market.
Cisco has been cutting jobs and products such as the Flip video camera, as it wants to get back to the high margin enterprise networking business. Back in 2003, Cisco paid $500m for Linksys and got access to an established business that focused on producing consumer network equipment.
A decade later, it is being reported that Cisco will be lucky to get its $500m back. Cisco has been pulling out of its failed attempt to get into the consumer market and is now focusing on flogging both network infrastructure hardware and servers, though it is widely expected to be hit hard as software defined networks become more popular.
Unlike Cisco’s core enterprise business, Linksys products typically have low margins, and with its parent firm’s slowing sales growth, it is not surprising Cisco wants to offload it. Bloomberg’s sources said Cisco might find interest in buying Linksys from television makers, though they wouldn’t provide any more details.
Will Lenovo Go Public In 2K14?
Lenovo’s parent firm Legend Holdings could float an initial public offering (IPO) as soon as 2014, according to the firm’s chairman.
Liu Chuanzhi, chairman of Legend Holdings told China Business News that the firm plans to list on the China A-share market between 2014 and 2016. Chuanzhi also reportedly said the company will invest $3.2bn by 2014 to develop its various businesses.
Legend Holdings is 36 percent owned by the Chinese state controlled Academy of Sciences, with a further 20 percent owned by the private investment firm China Oceanwide Holdings Group.
Legend Holdings also has venture capital and real estate interests outside of Lenovo Group. The firm’s system building operations however have gone from strength to strength since it bought IBM’s PC business back in 2005, and it is now heavily promoting its Yoga tablet-laptop hybrid device.
Earlier this year Gartner reported that Lenovo had overtaken HP to become the largest PC vendor, something that HP disputed by offering IDC’s figures. Regardless of HP’s protestations then, Lenovo is set to overtake HP as its PC business continues to grow while HP’s has been shrinking for some time.
Legend Holdings might want to cash in on Lenovo’s high flying status and a cash injection from an IPO could help the company invest in designing products for the smartphone and tablet markets.
.
Mozilla Touts WebRTC
Mozilla has shown off WebRTC integration in its Firefox web browser, demonstrating real-time video conferencing and file transfer capabilities.
All major web browser developers have started to integrate the WebRTC protocol and now Mozilla has shown off how far its integration has come. The firm demonstrated working video conferencing, file transfer and sharing capabilities through the Firefox web browser.
Mozilla was keen to push its implementation of the Datachannels API that is part of WebRTC to allow instant messaging and file transfer. The firm’s impressive demonstration shows off seamless sharing between two clients that had initiated a video conversation, with tabs and files being sent and viewed with little user interaction.
Mozilla’s demonstration does highlight the need for tight sandboxing within the web browser, however as a peer-to-peer protocol that automatically encrypts communications between two hosts, WebRTC could challenge some existing closed communication protocols such as Skype.
Maire Reavy, product lead for Firefox Platform Media at Mozilla said, “WebRTC is a powerful new tool that enables web app developers to include real-time video calling and data sharing capabilities in their products. While many of us are excited about WebRTC because it will enable several cool gaming applications and improve the performance and availability of video conferencing apps, WebRTC is proving to be a great tool for social apps.”
Mozilla didn’t say when its WebRTC implementation will enter the stable release channel, however given the outfit’s rapid release schedule, it should be a matter of weeks rather than months.
Is HP Getting Sued?
HP is in the process of being sued by an angry investor who claims the company knew statements about its Autonomy acquisition were misleading and led the stock to fall.
A proposed class action lawsuit was filed in a San Francisco federal court. HP bought British software firm Autonomy for a $11.1 billion last year but made an $8.8 billion write-down on its acquisition claiming the company inflated sales with improper accounting.
Autonomy co-founder Mike Lynch has denied any wrongdoing. The lawsuit, one of the first to be filed by investors on the Autonomy mess, said HP hid the fact it gained control of Autonomy based on financial statements that could not be relied upon.
It claims HP had not revealed to investors that it tried to undo the Autonomy agreement before it closed because of the accounting issues.
Do Supercomputers Lead To Downtime?
As supercomputers grow more powerful, they’ll also become more susceptible to failure, thanks to the increased amount of built-in componentry. A few researchers at the recent SC12 conference, held last week in Salt Lake City, offered possible solutions to this growing problem.
Today’s high-performance computing (HPC) systems can have 100,000 nodes or more — with each node built from multiple components of memory, processors, buses and other circuitry. Statistically speaking, all these components will fail at some point, and they halt operations when they do so, said David Fiala, a Ph.D student at the North Carolina State University, during a talk at SC12.
The problem is not a new one, of course. When Lawrence Livermore National Laboratory’s 600-node ASCI (Accelerated Strategic Computing Initiative) White supercomputer went online in 2001, it had a mean time between failures (MTBF) of only five hours, thanks in part to component failures. Later tuning efforts had improved ASCI White’s MTBF to 55 hours, Fiala said.
But as the number of supercomputer nodes grows, so will the problem. “Something has to be done about this. It will get worse as we move to exascale,” Fiala said, referring to how supercomputers of the next decade are expected to have 10 times the computational power that today’s models do.
Today’s techniques for dealing with system failure may not scale very well, Fiala said. He cited checkpointing, in which a running program is temporarily halted and its state is saved to disk. Should the program then crash, the system is able to restart the job from the last checkpoint.
The problem with checkpointing, according to Fiala, is that as the number of nodes grows, the amount of system overhead needed to do checkpointing grows as well — and grows at an exponential rate. On a 100,000-node supercomputer, for example, only about 35 percent of the activity will be involved in conducting work. The rest will be taken up by checkpointing and — should a system fail — recovery operations, Fiala estimated.
Because of all the additional hardware needed for exascale systems, which could be built from a million or more components, system reliability will have to be improved by 100 times in order to keep to the same MTBF that today’s supercomputers enjoy, Fiala said.
Fiala presented technology that he and fellow researchers developed that may help improve reliability. The technology addresses the problem of silent data corruption, when systems make undetected errors writing data to disk.
IBM Sued Over Disaster
IBM has been hit with a multimillion-dollar lawsuit by chemical products manufacturer Avantor Performance Materials, which alleges that IBM lied about the suitability of an SAP-based software package it sells in order to win Avantor’s business.
In 2010, Avantor decided to upgrade its ERP (enterprise resource planning) platform to SAP software, according to the lawsuit, filed Thursday in U.S. District Court for the District of New Jersey.
“Seizing upon Avantor’s decision — and fully aware that, given the competitive pressures of Avantor’s industry, and the specialized demands of its customers, Avantor could not tolerate any disruptions in customer service — IBM represented that IBM’s ‘Express Life Sciences Solution’ … was uniquely suited to Avantor’s business,” the lawsuit states. “The Express Solution is a proprietary IBM pre-packaged software solution that runs on an SAP platform.”
But Avantor discovered a different truth after signing on with IBM, finding that Express Life was “woefully unsuited” to its business and the implementation brought its operations to “a near standstill,” according to the suit.
IBM also violated its contract by staffing the project with “incompetent and reckless consultants” who made “numerous design, configuration and programming errors,” it states.
In addition, IBM “intentionally or recklessly failed” to tell Avantor about risks to the project and hurried towards a go-live date, the suit alleges.
“To conceal the System’s defects and functional gaps, IBM ignored the results of its own pre-go-live tests, conducted inadequate and truncated testing and instead recommended that Avantor proceed with the go-live as scheduled — even though Avantor had repeatedly emphasized to IBM that meeting a projected go-live date was far less important than having a fully functional System that would not disrupt Avantor’s ability to service its customers,” the suit states.
The resulting go-live, which occurred in May, “was a disaster,” with the system failing to process orders properly, losing some orders altogether, failing to generate need paperwork for U.S. Customs officials and directing “that dangerous chemicals be stored in inappropriate locations,” the suit states.
Avantor has suffered tens of millions of dollars in monetary damages, as well as taken a hit to its reputation among partners and customers, the suit states.
Lenovo On The Rise
Lenovo has topped off a great 2012 with record sales figures and revenues, and claimed it took 15.6 percent of the PC market.
Lenovo is the PC maker that has bucked the industry trend of a shrinking PC market, posting faster than average industry growth for 14 consecutive quarters. All of that has left the firm announcing an 11 percent increase in second fiscal quarter sales to $8.7bn with profits of $162m, an increase of 13 percent over the same period last year.
Lenovo has managed to maintain the legendary status held by IBM’s Thinkpads and introduce its own low-cost models aimed at consumers. The firm has also been pushing smartphones in China and close to half of its revenues in its second fiscal quarter came from its home market.
Yang Yuanqing, chairman and CEO of Lenovo said, “Our global PC market share reached another historic high, moving us closer to our dream of becoming the worldwide PC leader. With four years’ effort, our consumer PC business has become the world’s number one in this segment for the first time. Our smartphone business in China, which we started only two years ago, has again strengthened its number two position,”
Lenovo Adds Enterprise Servers
Eager to expand its horizons beyond PCs and tablets, Lenovo on Monday announced the first server from the newly created Enterprise Product Group, which deals in servers, storage, networking and software.
The ThinkServer TD330 is a tower server based on Intel’s Xeon E5-2400 processors. The server will support up to 16 processor cores and start at $929.
Lenovo last week announced the formation of the Enterprise Product Group. It is headed by Roy Guillen, vice president and general manager of the division. Guillen was previously vice president and general manager of Dell’s data center solutions (DCS) division.
Lenovo already offers low-end servers and workstations for homes and small businesses, but the new division will target small, medium-size and large enterprises. Lenovo has offered low-end servers based on Intel’s Xeon E3 and E5 processors, but the company did not respond to a request for comment on whether existing ThinkServer products would be part of the enterprise product portfolio.
“We’ve placed expanded emphasis on building our server portfolio this year, introducing products that meet the needs of all our customers — from enterprise customers to small businesses,” Guillen said in a statement.
Lenovo established itself as a PC company after it bought IBM’s PC division in 2005. Lenovo’s progress in the PC market has been rapid, with IDC placing the company as the world’s largest PC vendor for the first time in the third quarter this year. The new enterprise division will put Lenovo in competition with IBM, Hewlett-Packard and Dell, which also sell x86 servers.
Amazon Goes To Court
Amazon is suing Daniel Powers, its ex VP in charge of global sales for Amazon Web Services because he joined Google in a cloud role.
Taking the new job, asserts Amazon, violates Powers’ non-compete agreement with Amazon, which let Powers go this summer with a reasonable severance package.
There is a risk that Powers could take important information that he learned about the Amazon web services business to its rival, Google, and that is what the firm is seeking to stop.
According to Geekwire Amazon wants an injunction against Powers to prevent him from “engaging in any activities that directly or indirectly support any aspect of Google’s cloud computing business”.
A court filing claims that Amazon has an agreement with Powers that says he will not join a rival for a “limited time following the termination of his employment”.
Powers, it warns, is a veteran who knows the cloud business from “top to bottom”, adding that he has “acquired and currently possesses extensive knowledge of Amazon’s trade secrets and its highly confidential information”.
The complaint says that he has extensive and detailed information about Amazon Web Services’ prospects, business, potential business partners, pricing strategies and goals.
Amazon has not provided us with further comment.