Recent Posts

Search AbsolutelyWindows

10:47PM

What HP Is Doing About Print Security

Facebook_PostImage_1200x630

This is Part III in a 4-part series on print security, HP printers, and how the HP Print Security Team is trying to protect your printer from both the bad actors out there, and inadvertent ineptitude within your organization. (My choice of words, not theirs. Open-mouthed smile )

In this post, I list what the HP Print Security Team is doing to identify and combat the threat posed to your infrastructure by errant printers.

In the concluding document, Part IV, I will give you my thoughts on HP’s offerings, particularly highlighting where I think HP is excelling, and where they are failing.

clip_image002

Printers get hacked all the time.

This isn’t new.

In fact, first known printer hack occurred in 1962 when a Xerox printer was modified with a camera to snoop on the Soviets during the Cold War.

Today, printer hacking is much more sophisticated.

And as with personal computers, the ultimate goal of break-ins now is financial. Be it for IP, or direct theft, or ransomware, or as part of a botnet, or whatever.

Yet, you have the lowly networked printer. Left alone invitingly for no-gooders to access.

Print Security Ostriches
It is quite telling that in an IDC survey of 2,000 IT security professionals, 56% of them – 56%! – did NOT see printers as a source or factor in a potential breach of their networks, or infrastructure.

62% of this group also revealed that they overlook IT governance best practices and policies, and do not ensure that hard drives or memory, is wiped, and/or destroyed.

Moreover, a depressingly mind-boggling 77% of them do not have access controls or SIEM tools activated on their printer inventory!

*SIEM: Security Information & Event Management tools.

Hopefully, we won’t descend into ‘acronymania’!

These are security professionals, mind you.

These are security professionals?

This quite lackadaisical attitude towards a very real, very visible, and rather well-documented threat is almost certainly a sort of malfeasance on the part of these security professionals. And bothering on nearly criminal, if you ask me!

Bad Printer Security is a Potential Brand Killer
Against this backdrop is HP, the global leader in printers.

HP’s dominance in the printer space is the stuff of legend, as they have innovated their way to the top here, racing past the Xeroxs, IBMs, C.Itohs, everyone! They dominate from the smallest consumer printers to mammoth devices that do everything, including producing wraps for automobiles.

Anyone who has printed a document in the past going-on-30 years, as almost always used an HP printer.

For them, print security has the potential to be a brand killer.

That realization came to them early, and for over the past decade, HP has had a print security team tasked with not only imbuing their printers with the best, most unobtrusive security they can deliver, but also with detection and interdiction of malware and malefactors who focus on printers as an attack vector.

Technically a ‘fixed-function computing device’
At the dawn of personal computing, your average printer was basically a print engine receiving data already rasterized by your PC.

Today, things are different.

HP’s print security team knows this, and treats printers just the same as they treat computers on a network.

“Why?” you ask. “That’s overkill!”, you declare.

Is it?

Look at the following image, which describes the componentry in PCs, and contrasts it with those in printers.

clip_image004

I dare say there is some overlap.

Printing is risky

How risky?

View the image below.

clip_image006

It shatters the comfort we have just thinking that print security can be only about securing the hard drive in the device. From the device BIOS to the output tray, and all stops in between, your printer has vulnerabilities that can be exploited by any bad guy. (Bad guy as used here is non-gender-specific.)

clip_image008

Meanwhile, the threat landscape is rapidly evolving, with participants now looking for the ‘holy grail’ be it state-sponsored actors hacking for espionage or strategic spoils, or true criminal enterprises looking to break into your infrastructure for a monetary reward.

clip_image010

By all indications, printers are the weakest link in most networks or computing environments. And they will sadly remain so until, and unless IT professionals realize the dangers they pose if not adequately secured, and managed.

So, what is HP doing about this?
(A) Identify The Threat

After seeing the above landscape, the HP print security team set out to identify the top printing security concerns. They narrowed it down to these seven:

clip_image012

(B) Develop Baseline Security Metrics for Print Infrastructure

clip_image014

(C) Develop an industry wide framework that encompasses the position printers occupy in an enterprise.

clip_image016

By looking beyond just HP products, HP can stave of stagnation and myopia, and see what others are either doing or not doing, and leverage it.

(D) Develop a detailed strategy to protect HP printers, their data, and customer networksclip_image017

Cyber Resilience

HP’s security efforts around print security has coalesced around a concept they dub “Cyber Resilience. clip_image019

Create the world's most secure printing system

clip_image021

  • a) Securing the device
  • b) Securing the data,
  • c) Securing the document by creating a secure managed print service, and
  • d) Establish a Print Security Advisory Service

Securing The Device
HP’s steps to secure HP printers involve the following.

clip_image023

HP Sure Start requires the BIOS to verify that it is using a signed version, using whitelisting to also ensure that firmware components are also approved.

Real-time intrusion detection schemes allow the printers to detect, and reject attacks as they occur.

The lynchpin of HP’s printer hardware device security arsenal is the HP JetAdvantage Security Manager.

HP JetAdvantage Security Manager workflow is described in the graphic below.

clip_image025

The capabilities built into HP JetAdvantage Security manager are numerous, and keep evolving based on the evolution of the threats HP printers face, and because of innovations coming from HP.

I hope to be able to snag a JetAdvantage PM for a briefing very soon.

Securing the data

clip_image027

This requires a knowledge of network security, the device(s), Microsoft Windows, and of [Microsoft] Active Directory.

To help, HP enterprise MFPs have over 250 security policy settings available which allow sysadmins and security admins to adequately lock down their printer assets to suit business needs.

Securing the document by creating the HP Secure Managed Print Service

clip_image029

clip_image031

Establish a Print Security Advisory service

This is a corps of print security consultants who will work with client on

  1. Education and risk assessment
  2. Security Policy Guidance
  3. Solution recommendations.

The HP Print Security Advisory Service focuses on the following:

  • Access Control
  • Asset Management
  • Build & Release
  • Business Continuity
  • Data Security
  • Governance
  • Information Security
  • Log & Security Incident Management
  • Logical Access
  • Network Security
  • Patching and Anti-Virus
  • Personal Security
  • Physical Security
  • Security Configuration
  • System Acquisition & Development

Is this enough?

Looking at this intensive list, it is obvious that HP has given printer, and print security a lot of thought, and is deploying a largish amount of resources to protect their clients’ print infrastructure.

Is this enough?

In Part IV of this series, I will give you my thoughts on it from an MSP viewpoint.

Stay tuned.

In this series

  1. Off to HP Print Security Bloggers Day
  2. Why Should Organizations Care About Print Security?
  3. What HP is Doing about Print Security (this blog post)
  4. My final thoughts on HP Efforts on Print Security.

© 2002 – 2017, John Obeto for Blackground Media Unlimited

Blackfriars - 417pxverbiage white - 300px

9:53PM

Let’s revisit the “Is a tablet a PC?” Debate, shall we?

Sometimes, I amaze myself.

I’m serious.

Back in 2011 when Apple iPad was all the rage, I happened to take part in a little debate arranged by NetworkWorld Editor-in-Chief John Dix.

My assertion, then, and as yet very unwavering now, was that the iPad was a niche evolution of the PC.

Not a revolution.

Not at all!

In fact, my primary position was, and is:

clip_image002

My debate opponent of course thought iPad heralded the post-PC era.

Nyet.

Today, iPad sales are down and have been for several quarters, and non-[Windows-based] tablet sales are in the toilet.

It’s almost the Second Coming of Netbooks!

And yet, sales of both Microsoft’s Surface tablets, and the entire Windows-based tablet ecosystem, are on the rise!

Thankfully, NetworkWorld still has the debate up on their site.

And don’t look now, but Apple released the iPad Pro with a keyboard back in 2015.

Validating my April 4, 2012 tweet where I stated

clip_image004

Go ahead and read the debate while I busy myself patting me on the back!

© 2002 – 2017, John Obeto for Blackground Media Unlimited

Facebook_PostImage_1200x630

4:15AM

Shiny New Thing: The Logitech Spotlight Presentation Remote

snip_20170216230904Logitech is a PC peripheral company that has amped up its design chops to Level 11!

Their latest goodie is the Logitech Spotlight presentation remote.

This sleek presentation remote sports a 3-button interface with gesture capabilities.

Connectivity to your PC is via an equally sleek built-in USB dongle, or integrated low-energy Bluetooth. Additionally, your PC is kept awake and snip_20170216230826connected throughout your presentation when using Spotlight.

According to Logitech, that’s not all.

It comes with a built-in USB-C interface for fast charging, which I understand should last up to three months with a full charge, based on usage. A full charge takes about an hour, while users should be able to eek three hours of presentation time from it after a one minute charge!

Haptic feedback is also included, with Spotlight buzzing to notify you of a low-power condition. The battery indicator also glows red when a recharge is required.

In my preview tests, the Logitech Spotlight is rather easy to master.

While I haven’t gone 100 feet away from my PC in the five presentations I have directed using the Logitech Spotlight, I can attest to the extremely long range it afforded me.

Spotlight is compatible with PCs running Windows and OS X/MacOS, and with PowerPoint and other presentation software.

I will be posting a full review shortly.

*Thanks to Ann F.

© 2002 – 2017, John Obeto for Blackground Media Unlimited

Blackfriars - 417pxverbiage white - 300px

1:01AM

Andy Marken’s Content Insider #506 - Holy Grail

The Smart City Just Might Be an Engineer’s Unfulfilled Dream

clip_image002

It is I, Arthur, son of Uther Pendragon, from the castle of Camelot. King of the Britons, defeater of the Saxons, Sovereign of all England!” – King Arthur, “Monty Python and the Holy Grail,” Michael White Productions, 1975

We’ve lived most of our adult life in Silicon Valley or what some call a bubble environment.

You know:

  • Everyone and nearly everything is connected 24/7.
  • Everyone has 4-5 devices with them all the time.
  • Days are filled shoveling data from here to there and then to there.
  • Stuff happens and it happens overnight, in the blink of an eye.

While the Valley may have been the first, there are bubble areas seeded all around the globe including:

  • M4 Silicon Corridor
  • Science Park Amsterdam
  • Silicon Docks/European Silicon Valley
  • Silicon Allee
  • Aerospace Valley
  • Softwarepark Hagenberg
  • Australian Technology Park
  • Central Taiwan Science Park
  • Sangdo Science Village
  • King Abduaziz City for Science and Technology
  • Kansai Science City
  • Silicon Wadi
  • Silicon Alley
  • Silicon Forest
  • Silicon Hills
  • Silicon Slopes
  • Canada’s Technology Triangle
  • Silicon Valley North
  • Research Triangle
  • Porto Digital

They are magnets for start-ups and people from around the globe.

clip_image004

Global Attraction – Technologists from around the globe go where the total environment is best for them to make a contribution or breakthrough. For them, it’s not just a job, it’s the complete ecosystem.

People who want to develop the next great idea and share all of the great things are drawn to the area and everything it has to offer.

Countries, states, cities hustle the new ventures – and wildly growing firms – with a wide range of inducements and visions of what the area has to offer:

  • Great place to work, live
  • Proximity to excellent educational systems
  • Open to diversity
  • Opportunities to succeed, grow

The problem is there’s no long-term plan for Silicon Valley or NYC’s Silicon Alley or similar areas to handle the growth; which means some of the smart visions we have will be difficult to accomplish.

You know smart car, smart home and the holy grail--smart city.

Let’s use Silicon Valley as an example.

The Valley now extends from San Francisco down to Gilroy, highlighted by company towns:

  • Menlo Park – Facebook
  • Palo Alto - HP
  • Mountain View – Google
  • Cupertino – Apple
  • Santa Clara – Intel
  • San Jose – Adobe, EBay, Cisco

It’s not a definitive list, but you get the idea.

And there are hundreds of spin-offs, new ventures and out-of-area firms requiring space constantly.

Along the way, a lot of ventures fail and are rolled over by new dreams.

Take Cupertino’s Vallco Park Mall for example.

clip_image006

Fallen Short – The Vallco Fashion Park was started years ago to attract consumers from all of central Silicon Valley but it just never captured mindshare. Today, it stands vacant.

For some reason, it never clicked and sits virtually vacant, although surrounded by new construction.

The owners came up with what seemed to be a great redevelopment idea -- a 55-acre mixed-use neighborhood with up to 2 million square feet of office space, 625,000 square feet of retail and 800 residential units.

Located right across the highway from Apple’s spaceship headquarters that’s under construction, it seemed like a great idea for people to live and work.

What’s not to like?

“The Hills at Vallco features an unprecedented 30-acre community park and nature preserve, which will not only be the largest community park in Cupertino, but also the largest green roof in the world,” said a statement from Sand Hill Property Co., the developer behind the $3 billion project.

clip_image008

Breathing New Life – Developers have proposed converting the Vallco location into an ecosystem that includes homes, offices, shops and a rolling park. Since it’s not part of an overall area plan, local citizens find it easy to resist the project.

Topping all this would be a 30-acre park and walkways.

The undulating green roof—designed to buffer the residential locations from neighboring industrial sites—would be crossed by a 3.8-mile network of running/walking trails. Vineyards and orchards, an amphitheater, playgrounds and banks of native plantings to attract local wildlife would also be designed and incorporated on the roof.

A great idea as a project but …

For the time being, like Silicon growth projects around the globe, it’s on hold because folks who already staked their claim in a dream home/community don’t want more traffic, more kids in “their” schools, more chaos in their busy lives.

Years ago, I used to drive on a quaint two-lane blacktop street through a grove of walnut trees to a nice home, good-sized yard and swimming pool.

Still “own” the home but BAM! the orchard is now a community of more nice, albeit expensive, (for newcomers) homes.

Like most thriving technology centers, the Valley added 65,600 jobs and 39,800 residents over the last 12 months, increasing the growing shortage of housing.

People like those who forced the Hills of Vallco to be put on hold get it.

Just not in my neighborhood.

And the same holds true in Brooklyn and the Berlin Burroughs, as well as local communities in Tokyo, Toronto, Sydney, Shanghai, Dubai, Johannesburg, Amsterdam, Seattle, Charlotte, Saint Petersburg and Stockholm.

Of course, the industry has a solution … the smart city.

clip_image010

Complete Connection – Developers and architects have a clear vision of tomorrow’s city with everything and everyone connected. The challenge is that smart cities don’t appear overnight with people being displaced/inconvenienced.

People who own brownstones in NYC or Boston, an apartment in Amsterdam, a house close to London or Saigon or a home in Los Altos or Sunnyvale agree.

Just not in my neighborhood.

In the meantime, San Francisco and LA inch closer to each other in community after community.

clip_image012

Collision Course – Like two solar bodies, the visionairies who plan the smart city of tomorrow are usually on a collision course with people who have finally achieved their dream of home ownership.

The challenge is that tech communities are going from suburban to urban with nothing in between.

Folks in Palo Alto, Tiburon and Los Gatos love their small-town atmosphere. That’s why they live there.

People are in love with the smart city idea.

Just not in my neighborhood.

So we have projects being carried out in every technology area without a long-term plan as to what the silicon corridors are going to look like in 50 years (2068) or even 2042.

That means your neighborhood (and mine) has a patchwork of status quo - everything the way it is – plus.

clip_image014

Interruptions – To upgrade the infrastructure and produce portions of tomorrow’s cities, citizens endure traffic interruptions and growing traffic problems.

With no one responsible or accountable for long-term growth; designers, developers and elected/appointed officials (who look to keep the job in the next go around) go for short-term, uncontrolled hyper-growth.

Whether you’re on interstate 35 going out of Austin or 101 out of San Jose, you see how area builders and planners are solving the problem … move the affordable housing further out and people will come.

Despite the inconvenience, people aren’t willing to give up their sanctuaries in the burbs so they commute an hour plus by train, bus, car and even plane.

Of course, there’s a way to bring commute times down. Simply build higher-density apartment complexes and townhouses near worksites and along public transit corridors.

Or maybe a more palatable solution would be to build out our communications infrastructure by upgrading to 5G and becoming more flexible in where/how people work … micro office complexes located closer to where people live rather than the headquarters.

5G can have speeds up to 100 times faster than current 4G networks and handle 1,000 times more traffic volumes.

Even in the most densely populated cities like NYC, Singapore, Hong Kong, Tokyo, Seoul, Berlin, London or Montreal; people could stream 4K video and make huge data transfers to work (and play) together more efficiently and more effectively without daily mind/body-breaking commutes while still enjoying their community, home, family.

Maybe the smart city of tomorrow is horizontal rather than vertical?

clip_image016

You know, it will work and like King Arthur, you can say, “Well, you have to know these things when you're a king, you know.”

More affordable housing and workspace is needed in every silicon center but tearing down to build up is the anathema to all of us who say that’s great…

Just not in my neighborhood.

Then, the Hills of Vallco might look more appealing to folks in that neighborhood.

G. Andy Marken is founder and president of Marken Communications

 

© 2002 – 2017, John Obeto for Blackground Media Unlimited

Blackfriars - 417pxverbiage white - 300px

8:09PM

The City of Munich abandons Linux for Microsoft Windows

Munich abandons Linux?

Seriously?

Stop the presses!

MUNICH ABANDONS LINUX!!!

Ain’t that something?

Or, as Flo would say, “Ain’t that ssssspeciallllllll?”

Isn’t it?

For years, we have been fed a lot of soup about how Linux was the way, how the “Linux Desktop“ was going to supplant Windows.

Right!

In my blog post, The Linux Desktop, posted on April 16, 2007, I scoffed at not only the idea of a Linux desktop, but of the several rags and glossies attempting to foist that abominable OS on the desktop.

Which, without a doubt, it was, and is, ill-suited for.

Yet, the madness continued, with several countries, especially those in the former Western Europe, seizing the opportunity caused by the troubles Microsoft had with the EU’s antitrust authorities as an opportunity to attempt to develop desktop and server operating system alternatives to Windows.

Yes, they liked Linux, because a) the creator was European, and b) it wasn’t American, despite UNIX being largely open source as well, and without a doubt vastly superior to ALL forms of Linux!

People, their efforts were to naught.

For a while, nary a day went by when the tech news wouldn’t have at least an article of some governmental agency in Europe jumping on the Linux bandwagon.

The largest of these was the city of Munich, in Germany.

In 2003 or thereabouts, the city of Munich – hereinafter to be referred to as simply ‘Munich’ – was a pioneer in Linux.

After being schneidered by local yum-yums into it, the city moved en masse to Linux, abandoning Microsoft Windows in a wholesale fashion. They became both the flagship, and the poster city for this nonsensical move.

Supposedly, it was to save money. However, it was the horde of open source yobs wanting to establish Silly Valley Europe that were prompting governments to act stupidly. And profiting quite handsomely from these Linux installations, thank you!

Again, I was beyond skeptical.

I could see that these efforts to create  local European open source operating systems were doomed to fail. And to do so spectacularly!

However, this obviousness escaped the powers-that-be, well steeped as they were in their ardor for the creation of a local hero OS.

In my September 22, 2007 blog post titled, The Linux Flameout: 7 Reasons, where I expatiated on an article I had read on InformationWeek.com.

To me, the most important reasons for the flameout were a) numerous incompatible distros of Linux, and b) porting issues and expenses.

Basically, that Linux was, and is, a forking mess, a very witty play on the fact that Linux had forked into so many distros

Still, no one seemed to care. Especially Munich.

A few years later however, the Swiss canton of Solothurn, another municipal Linux pioneer, having used it since 2001, decided that that they had had enough, and like Roberto Durán after that pummeling by Marvelous Marvin Hagler, screamed “No MAS”, and yanked out their Linux installs for Windows.

I asked the question, “Who’s Next?”, in my blog post Swiss Canton of Solothurn Rejects Linux, published September 22, 2010.

I then moved on, trying not to beat the issue to death. Don't tell anyone smile

Fast forward to today…

I just read that Munich, long heralded as the touchstone for both municipal and large-scale installs, will/is/might be moving back to Windows, because, get this: the savings from using free-to-acquire Linux haven’t materialized.

After 12+ years!

Well, welcome back, Kotter!

To crown it all, the second reason for this pending switch is something you and I know: users hate the efft out of it.

That second reason is no joke!

Seriously, outside of open source adherents, fans, and admins, no one – NO ONE! – likes any of the Linux UIs.

No one.

Now, unless Microsoft steps in to make the transition less financially biting, the poor people of Munich will pay the price of a transition to Windows, which is an upgrade to the abominable version – any version, actually – of Linux, that they have been using.

This financial cost will come atop the years of using a below-standard OS foisted upon them by open source clowns who wanted sold them on the free cost of the software while hiding the fact that the true costs associated with using Linux are hidden in those support contracts.

The Bottom Line
Don’t be fooled.

There is NO magic bullet.

Everything costs money.

Whenever a Linux fanboi tries to sell you their stuff, ask them where their margins are. Ask them why they are peddling it. Ask them how much their profits will be. And most of all, make sure you know what the support contracts cost.

You will find out that all in all, a Microsoft stack including Software Assurance, costs less per user than the supposedly-free Linux.

Again, don’t be fooled.

From my Wayback Posts

© 2002 – 2017, John Obeto for Blackground Media Unlimited

Blackfriars - 417pxverbiage white - 300px

11:34AM

So, you have covered the webcam on your laptop. What about the cameras on your smartphone?

While I was at the aerodrome the other day awaiting entry into my stasis pod for a short day trip to LaLaLand, I overheard a fellow traveler sanctimoniously admonishing another passenger over the fact that she wasn’t covering her laptop camera with some tape or such.

She informed him that if someone got into her computer, the webcam was the least of her problems. Moreover, she said, she didn’t use the laptop while indelicately dressed, or have confidential stuff around while computing.

It wasn’t enough for him.

I tried to MMOB, but the guy was relentless.

Mark-Zuckerberg-Tapes-His-Camera-And-Audio-Jack-With-Pieces-Of-Tape.-THIS-Tells-You-Something

He then brought up the fact that “[Facebook’s] Mark Zuckerberg covers his laptop webcam..”.

At this point, you just know I had to step in.

“Sir,” I said, (actually, I didn’t say ‘sir’, and didn’t want to Open-mouthed smile), “do you have all webcams in all of your devices covered?”

“Yes”, he replied.

Excellent, I told him. Because some people only think of their laptops.

He agreed with me on that.

Then, I slipped in a plastic spork between his ribs: “I assume, you have that done on your iPads or tablets too?”, I asked.

No, he didn’t.

“You must be joking, I exclaimed!

Then, and only, then, with his mouth slightly agape from the virtual bleeding caused by the shock of the spork wound, I decided to mercifully administer the coup de grâce, hitting him with virtual flensing knives: “Please don’t tell me you do not have the cameras on your phone, both rear and front-facing, covered for security purposes as well?”, I asked, with an Oscar-class performance of a completely aghast countenance on my melon.

He didn’t.

I don’t.

Neither do you.

People, stop this bullschtako.

I can understand operatives at TLA security organs covering up their webcams, and being mungo paranoid. It’s their job to be so.

Not you.

Not me.

They have hardened devices.

With which they are extremely careful.

Our Smartphones
Our smartphones are the most intimate devices we own.

We take them everywhere.

Everywhere. Bedrooms, boardrooms, bathrooms. Heck, some people even take them into the shi**er and orinatoio. Not me, but, to each his/her own.

Without the cameras being covered!

See where I’m going here?

If, your laptop, which generally has a single, weak, low-resolution user-facing camera, warrants the extra security measure of you taping over that camera’s lenses for privacy and whatnot, what about your smartphone?

Yes, your smartphone, which almost always dual high resolution cameras that are pointed in two opposite directions for near 360⁰ coverage?

That smartphone?

Isn’t the covering-up-the-webcam practice a security placebo?

Y’all have a good day now, bokay?

© 2002 – 2017, John Obeto for Blackground Media Unlimited

Blackfriars - 417pxverbiage white - 300px

7:02AM

Why Should Organizations Care About Print Security

Why Print Security?

That simple question exposed prevailing lackadaisical attitudes towards printers, and an almost criminal forgetfulness on the part of IT admins and IT security staffers about the fact that printers can expose them to harm. Both externally, and sickeningly, when it happens internally!

After our introduction to the event by Ed Wingate, VP and GM for HP JetAdvantage Solutions, we got into it.

I was thoroughly fascinated by the session “Why Should Organizations Care About Print Security”.

Led by HP Chief Security Advisor Michael Howard, this eye-opening session delved into how the lowly printer could be used for crimes and tasks so nefarious, most of us haven’t even comprehended how!

As the session went along, I thought of all the printers at all the locations of all the businesses we manage.

It was, frankly, nether-puckering!

Internet access was speedy there, but even if it wasn’t, I wasn’t going to wait: I immediately troffed off an email to my EVP asking him to initiate an immediate inventory of networked printers at our managed firms, and see where we stood.

As declared earlier, this deeply engrossing session tried to show how even if you reduced your company’s attack surface to what you thought was manageable for your computers and servers, not doing so for your printers left you with a gaping hole so large, a toddler could drive a Mack truck through it.

My takeaways are below.

Your Printer is an Endpoint
Where is your printer located?

Behind your firewall, right?

On your network, eh?

With access to everything, huh?

Most networked printers are embedded with a little web server in order to easily facilitate management. In case you did not know.

These web servers tend to be full-featured web servers just being used for a single purpose.

However, they are, full-featured.

Meaning that any intruder, if he or she has access to that device located behind your firewall and other security devices, could wreck havoc with your firm, or enlist your printer as part of a zombie army of RaTs (Remote-access Trojans) engaged in large-scale criminal activities.

Your printer.

Your Printer is a gateway
You do know that your printer is an entrepôt into your computing infrastructure, right?

While my examples above are of folks who want to use your printer for external crimes, think about what your printers are used for, how many confidential document go across the wire to those devices daily?

Oftentimes, print security is thought of as ‘’local access security’ only, where jobs sent to print are secured until the sender or the recipient logs into the print device(s) to create their output.

What if there was someone waiting to intercept those documents for financial return to them? What if the documents attached you or your firm to a crushing liability that would end up killing your company?

Remember, again, that all that a bad actor needs, is remote access to your printer.

Your printer has intelligence
You printer these days, is basically a computer dedicated to performing a fixed task of printing.

It almost always has a CPU, which was a RISC CPU for so long. Then, I believe, low-end x86 CPUs. Today, I will almost bet that they use an ARM processor. Complete with an OS, networking, and storage. Most business-class printers today are equipped with scanners.

I read earlier that scanners are particularly bad for your print security health because they keep electronic images of you document(s) in their caches loooong after you think they should – no, must – have been deleted.

And open ports. Lots of open ports! Lots of lovely unsecured open ports.

You printer is always listening
And what is your printer doing through those lovely open ports?

Listening.

Always listening for work, or for orders to perform work.

In performing work, you printer is happily conscience-free, agnostic to the provenance or intention of proffered orders. Only consumed with fulfilling those orders.

Do you see the fail here?

Your printer is seldom patched
Even I, am guilty of this.

Prior to now, any time the HP print devices here throw up a notification that a firmware patch or a software patch is available, I have always tended to treat those notifications are extreme annoyances, and disregarded them.

No longer!

The session showed us how we basically hang neon lights out our electronic doors asking for criminals to hack us when we leave our print devices unpatched. Rather unlike what the norm is with our PCs and servers.

Your printer is inadequately managed
Most people can’t tell with any reliable amount of certainty just how many print devices are in their inventory. They are also unaware of how many of those devices are intelligent enough to be used as drones for attacks, possibly bringing down their network, or, in extreme cases, open the company up for tortious actions.

A detailed, quantifiable management scheme is needed to identify, manage, and harden printers on company networks.

As I see it
Print security is not only necessary, it must be an integral of your IT playbook.

Printers hung on your network must be part of a holistically-managed fabric that inventories, categorizes, patches, and allows access to and with them, based on the whims of the primary user the print device has been issued to.

Nothing else will do.

In this series

  1. Why Print security (this blog post)
  2. What HP is Doing about Print Security
  3. My final thoughts on HP Efforts on Print Security.

HP Print Sec Tech Day 2017 sponsored content

© 2002 – 2017, John Obeto for Blackground Media Unlimited

Blackfriars - 417pxverbiage white - 300px

12:46PM

Andy Marken’s Content Insider #505 - VR Progress

The Alternate World of Virtual Reality at CES

clip_image002

I can carry nearly eighty gigs of data in my head.” – “Johnny Mnemonic,” Tristar, 1995

Even though industry analysts are lukewarm on the success of VR (virtual reality), you couldn’t tell it as you navigated around many of the booths during CES with HMDs (head-mounted displays) taking you into fantastic immersive worlds and games.

clip_image004

Ups, Downs – Gartner’s Hype Cycle reveals trends affecting start-ups and investments. When the interest is building, new folks rush to VCs and quickly get money to develop their barn burner. Then the MBA VCs realize too many folks are chasing the same rabbit so investments drop and reality settles in.

But it was hard to say “Whoa” when CES was so content-centric this year.

Jeezz, you were dodging folks stumbling around blindly with HMDs at every turn.

With the units strapped on, all I could think of was horses with blinders.

Leading up to the show, industry analysts were suddenly saying Whoa to VR and were lukewarm to the technology’s wild success forecasts for mind-twisting, fantastic immersive worlds and games.

The big problem was newbies, VCs (venture capitalists) and pitch people put VR in the same bucket with augmented (Pokemon Go) and anything with a headset. No wonder they couldn’t see the forest for the trees!

clip_image006

Whe-e-e-e

They were riding the consumer VR hype train that left the station when Oculus’ Palmer Luckey put on the Rift.

They didn’t know where the train was going, but they were getting on board!

Most of the publicists called the stuff in their booth the real VR thing--computer-tethered (Oculus Rift, HTC Vive, Sony and…) or smartphone clamp-on stuff (Samsung Gear, Google Daydream, Zeiss and a gaggle of others)--even if they were only showing 360 content.

Despite the enthusiasm slump, growth is on the horizon because the major processor folks (Intel, Nvidia, AMD, Qualcomm, Samsung) have already made a wholesale commitment to the new space.

And the major players (Alphabet, Facebook, Sony, Samsung, HTC) have jumped in with both feet.

When I caught up with him at the show, VR filmmaker Lewis Smithingham (30ninjas) said, “This is one of the few technologies in history that all of the major players have weighed in on and invested early. That’s had a profound effect on how quickly products that are solid and economic have become available.

“Unfortunately, it’s just been overhyped,” he added. “It will continue to grow, but probably won’t have such a giant spotlight until 2018.”

clip_image008

Huge Someday – VR is super cool and will be huge in a few years, but success seldom occurs overnight. The market requires a total ecosystem – hardware, software and content. Then it needs consumer acceptance beyond the early adopters. That requires more time than people want to recognize.

His estimates coincide with a recent report by Greenlight Insights that notes growth will be relatively modest for the next five years, becoming strong by 2026 ($38B in revenues).

Officials at Nvidia’s and Intel’s booths were more bullish during the show about how quickly the market will expand, noting:

  • the working tools are in place
  • every game developer is delivering or developing fast-moving, white-knuckle, immersive games
  • both firms have been working closely with Hollywood studios, and 2017 will mark the opening of nearly a dozen tentpole VR films

“We’ve spent the past few years working on the infrastructure development which is key to VR’s success,” a member of the Intel team noted. “Experience it just once and you know it’s going to be a category that is growing.”

Not Really New
Actually, VR has been the stuff of science fiction since the early 1900s with the development of the Link Trainer for pilots; and even earlier with 360-degree viewing. The Link Trainer saved the aviation industry billions of dollars and probably hundreds of lives.

clip_image010

Nip ‘n Tuck – While kids think VR was developed totally for their enjoyment, it has been invaluable in educating and training--especially in the healthcare industry. With the consumerization of the technology’s hardware and software, costs have come down quickly in these areas.

It wasn’t long before the educational community saw how it could enhance and enrich student training. Not as exciting as playing Wayward Sky or watching Invisible but then no one wants to be a surgeon’s first for an operation.

Folks at CES say the VR market could reach $10 billion by 2018.

The challenge is the market is segmented:

  • If you’re a heavy gamer or want to be in a fantastic, breathtaking movie; you’ll use a computer powered by NVidia, Intel or AMD or a game console. People who really care about visual quality know it takes power to move smooth, jitter/buffer-free VR.
  • If you like decent on-the-go gaming or brag-about-it videos from YouTube or Facebook Live, slap an HMD on your smartphone and go for it. The biggest issue is going to be your smartphone because the display and processor inside can make a huge difference. In addition, the units generate a lot of phone heat and put a tremendous drain on the battery.

Most market analysts treat VR as one big bucket.

The Tractica team is one of the few that views mobile (hardware, software and use) as a unique market.

clip_image012

Mobile VR – The emerging VR market isn’t a one-solution-fits-all. Many feel that over the long haul smartphone HMD VR will be the dominant viewing/playing platform.

True there will be about 3B smartphone users worldwide by the end of the year; and only about 2B PCs, but the immersive quality difference between the two is night and day.

Game On
CES attendees seemed to enjoy the active participation with the VR games; pitting themselves against zombies, aliens, bad guys and spooky environs.

Standing next to the PlayStation VR demo, one of the Sony folks explained that the immersive and involved play that is possible with VR will drive the rejuvenation and expansion of the video game market.

“Nothing compares to the thrill, excitement you experience when playing one of the new VR games … nothing. Gaming will make VR mainstream!” he emphasized.

I didn’t want to burst his bubble but I’m pretty certain movies, video (very good content) will dominate VR entertainment. But then, I don’t do games!

Still, when it comes gameplay, I had to sanity check with someone who really knows the market so I checked in with Mark Poppin, of BabelTechReviews, who has been testing games on Nvidia-powered PCs as well as consoles and other systems.

He pointed out that VR gaming can’t be judged by the initial offerings because many of them were “worse than bad.”

A lot of good VR games are rolling out and our forum has been very excited about the strength of the graphics and opportunities in the fresh releases. The good games really point out the problems of stuff that’s just been thrown together.  Good VR lets you become part of the game and makes it different, more challenging every time you put on your HMD,” he explained.

"Thank Heaven for VR game reviewers and social media to point the good ones out," He added.

Despite the shortcomings of smartphone HMDs for game play, even VR filmmaker Smithingham enjoys them for a break from work.

VR Storytelling
However, for the great VR movies scheduled for release this year and for most VR video projects (documentaries, travelogues and immersive and personalized entertainment), he believes HMDs will have to be tethered to a PC … the more power the better!

“Mobile works very well for things like streaming YouTube and Facebook videos,” Smithingham noted. “You know, the social media stuff and 360- degree marketing. But right now, there’s a limitation with mobile. You’re sucking up 4 to 5 times the bandwidth 4K video requires. They have to overcome the laws of physics.”

If you’re like my kid, you’ll want both – the on-the-go smartphone HMD and the gotta-be-in-the-middle-of-it – with his PC HMD. Try both flavors and you’ll “know” which is best for the kind of stuff you want to play/view.

Of course, there were rumors that next year; we’ll see a standalone (not tethered to something) HMD with its own display, processing and wireless connectivity. But that’s only a rumor.

Regarding the movies we viewed on the show floor, one thing was apparent, “This year’s VR movies and video experiences are going to be freakin’ awesome!”

And with the industry’s drive to consumerize VR, the reduction of hardware/software costs has dramatically accelerated.

Capture Tools
It was perhaps most apparent with the wide range of 360/VR cameras being shown.

Jaunt, Nokia, Lytro, GoPro’s Omni and Sphericam’s camera that includes timesaving automatic stitching software were evident at the show and looked like overkill for the consumer shoot/view event.

There was a wide array of $100 - $500 consumer level 360-degree cameras shown by Samsung, LG, Alli, Bubl, Kodak, Giroptic, Nikon, Ricoh and 360fly as well as a number of cute VR attachments for your smartphone.

While these will appeal to YouTube and Facebook video folks, a major concern is that the VR experience might impair widespread acceptance and enjoyment of virtualized video.

Major studios like Fox, Disney, MGM and Lionsgate; as well as leading-edge VR filmmakers shoot and review scenes and content multiple times to ensure the final content doesn’t produce an “argument between the mind/body” which can result in nausea and headaches.

clip_image014

Pro Cameras – While there were a bunch of low-cost 360 cameras unveiled at CES, Lewis Smithingham (r), president of 30 ninjas, found units like the Shericam 2 being held by company founder Jeff Martin to be the preferred choice for serious filmmakers.

Sphericam’s Jeff Martin (founder) noted that the film experiences people have are totally different from films the industry has been producing for more than 100 years where the producer controls the storyline and flow of the film.

“It’s not like you slap a GoPro rig in a racecar and drive around the track,” he cited. “That’s fun once but a really good VR film puts the viewer squarely in the center of the story and he/she controls how the story unrolls. Filmmakers are learning how to guide the viewer with little plot hints – like Hansel & Gretel bread crumbs – but it requires experimentation to get it right.”

Content Plus
Sphericam’s founder Jeff Martin noted that the film experiences people have are totally different from films the industry has been producing for more than 100 years where the producer controls the storyline and flow of the film.

“It’s not like you slap a GoPro rig in a racecar and drive around the track,” Martin said. “That’s fun once but a really good VR film puts the viewer squarely in the center of the story and he/she controls how the story unfolds. Filmmakers are learning how to guide the viewer with little plot hints – like Hansel & Gretel bread crumbs – but it requires experimentation to get it right.”

Content Plus
Strictly for VR research purposes at the show, I stopped by the Naughty America VR booth. I think this is a return of adult entertainment to CES, which as I recall was encouraged to seek another venue about 10 years ago.

Ian Paul, Naughty America CIO, noted that according to Google Trends (they track everything), interest in the VR subject area has increased 9,900 percent in the last 17 months.

At CES, the company went to great lengths to point out they were platform agnostic. Their “members” could use the HMD of choice -- Samsung Gear VR, HTC Vive, Oculus Rift, Google Daydream, Zeiss VR One, Sony PlayStation VR. They even encouraged headset manufacturers to swing by and see how well their gear delivered.

clip_image016

We politely declined to check the content – honest – after one individual summed up his experience as … “Awkward!”

To compensate for the massive streaming downloads to mobile HMDs, the company used adaptive streaming technologies.

But we prefer immersive entertainment that we can talk about in mixed company and our kids can participate in like Gone Girl, X-Men: Days of Future Past, 28 Days Later, Die Hard, Predator, Office Space, Martian VR, Jurassic World VR and the new stuff coming out this year.

We got hooked on the possibilities of VR films after seeing early demos two years ago at SMPTE and the quality of work students had created for this year’s conference.

clip_image018

Getting it Right – Lewin and his team spent hours shooting, stitching and editing their work on Invisible to get the content just right for the viewer to control the storyline using Nvidia-powered systems and lots of fast SSD (solid state drive) storage.

And after seeing the work Smithingham had done for Conan 360 and Don Liman’s recently released Invisible mini-series, it’s easy to see why filmmakers say they have only scratched the surface of what they and the viewer can do with the technology.

The foundation has been built and the games, video content and applications are available; but the ramp-up of hardware/system sales will take a few years.

That’s probably why folks formed three groups just before CES:

  • GVRA (Global Virtual Reality Association)
  • CTAWM (Consumer Technology Association Working Group)
  • VRIF (Virtual Reality Industry Forum)

The first is hellbent to educate the consumer about VR hardware (and increase sales).

The second was formed to provide “ecosystem-wide leadership” as new stuff is developed/released. I guess that’s why the first thing they’re going to do is develop a glossary of AR/VR definitions.

VRIF seems to be more focused on open industry standards. They advocate a consensus for the creation of an interoperable, end-to-end ecosystem that will give filmmakers (and game developers) non-proprietary tools to produce content folks can distribute (monetize) that people can use/enjoy.

clip_image020

That’s what will make Johnny Mnemonic and everyone else say, “I want to get online... I need a computer!”

But as CES folks said, Whoa!”

# # #

9:17PM

Andy Marken’s Content Insider #504 - Taking Flight

Consumer Drones Are Nuisances, Not Profits

clip_image002

Hey, don't look at me. I stopped dreaming a long time ago” – Frank Riley, “Batteries Not Included,” Universal Studios, 1987

At CES, a whole new flock of fly-high, fly-fast, fly-bad drones were introduced and now the category is suddenly destined to be the next monstrous consumer category.

Some were so small they fit in the palm of your hand. In fact, I think I stepped on one in the show’s crowded aisles … but it might have been popcorn. I couldn’t see with all the folks mobbing the show floor, but I distinctly heard a crunch.

Speaking of crunch, just in case you missed the “hot” news, Bezos’ Amazon drone delivered some guy a box of popcorn and suddenly the postal and every delivery services are facing extinction?

Of course, at shows like Drone World, InterDrone and even the annual EAA (Experimental Aircraft Association) show in Oshkosh; the BS flies less than the drones or UAV’s (unmanned aerial vehicles).

About 1.2M of the 2.8M sold last year were gifts at Christmas according to the CTA (Consumer Technology Association but only about 500,000 were registered by the FAA so far (most of the others probably crashed by inept folks).

The global market is already big and it’s getting bigger fast as people see what is possible. Firms like The Teal Group estimate it could be a $91B market over the next few years.

That’s probably why everyone and his brother/sister has entered the hardware/software market-- even though China’s DJI and Parrot are the most recognized/respected drone providers.

clip_image004

Everyone In – Some of the drone hardware and software producers have been in the market for a long time, developing large drones for military and governmental use. The idea that they’d make great kids’ gifts draws a new wave of people to CES this year, even though most in that market will crash before the end of 2017. The few who score will deliver devices for filmmakers and a wide range of business applications.

Drones are more than neat toys. Filmmakers are finding they add a whole new dimension to film and video work when used to enhance the storyline rather than just gee whiz effect.

No wonder folks like David Helmly Jr. (son of Adobe’s Dave Helmly, Head of Global Field Operations for Professional Video in Maryland) got his commercial pilot license from Embry Riddle Aeronautical University and immediately added a class for his FAA 107 drone license.  For him, flight was a logical addition to his photography/film work, having worked with Camp RED and the current drone pilot for the powerboat legend Nigel Hook who races for Lucas Oil offshore racing.

Then there’s the American Airline Airbus captain, Scott Strimple, who divides his off-duty time between helping new drone pilots learn how to do things right to avoid accidents and legal issues in addition to shooting video sequences for studios, producers

The cushy movie contracts for helicopter pilots are drying up fast because filmmakers (large and small) can screw up 10 times with a drone shoot and hardly notice the impact on their budget.

That’s why last year, DJI introduced a family of drones featuring professional imaging solutions tailored to the needs of film and video creators. The flight platforms stabilize aerial cameras that capture in 4K, HDR to produce dazzling images of breathtaking scenes that were previously out of financial reach for most filmmakers.

clip_image006

Video Impact – The combination of economic, reliable drones and high-performance cameras have enabled filmmakers, to come up with film segments they couldn’t afford to do with helicopter rigs. It still hurts when the aerial shoot goes wrong but it’s not a huge dent in the budget.

In fact, people like Carlos Grijalva and Rob Tharp, of San Diego-based Grijalva Films, regularly utilize DJI technology in a variety of their projects, ranging from feature films to commercials.

Carlos Grijalva noted, “The low-altitude flights enable us to produce a high-level of production value for our client projects. We can capture unprecedented angles that typically would have cost a significant amount. Forgive the bad pun, but the use of drones and reasonably priced cameras really lets your creativity take flight.
“They let clients and filmmakers differentiate themselves,” he added, “UAV technology has really proven that stunning, economic and safe aerial cinematography is within the reach of even independent filmmakers.”

clip_image008

Virtual Tests – Working with Jon Ollweather (r) of Aerobe; Lewis Smithingham, of 30ninjas, has conducted a series of aerial VR film concepts that let the viewer take flight and get an even more immersive experience without unwanted side-effects. Determined to help VR film work go mainstream, he’s continually pushing the envelope while producing strong personalized film enjoyment.

Since VR (virtual reality) film work is founded on a lot of trial and error to find out what works and what doesn’t, 30ninja’s Lewis Smithingham has done a number of trials with drones and 360-degree rigs to see if an aerial view can add to the viewer’s story.

“VR has been breathtaking in special projects like ‘The Martian VR Experience’ and ‘Star Wars VR’ because it works, it feels natural,” he commented. “But using it just because VR and drone shooting are the sexy new kids on the block won’t enrich the storyline and may damage the technology’s long-term potential.

“The industry and the viewer deserve the best we can possibly deliver,” he concluded.

Film work is perhaps the most glamorous use of drones/cameras; but it is also one of the more modest application areas (still ahead of consumer applications though).

clip_image010

More Than Toys – Agriculture and utility executives were early pioneers in using drones to monitor fields and energy delivery systems. Now, businesses have expanded their uses to mapping store interiors, street/road mapping, facility views, real estate previews and more. The business potential continues to expand.

The stuff that always gets VCs’ and media folks’ motor running is whatever is going to be the next instant mass toy market – VR headsets, mobile game, smart home, smart car, robot and yes, drone.

It’s O.K., just not great!

Parents bought them for their kids – all ages -- for Christmas. They’ll fly them over their neighbor’s yard just to tick them off. They’ll fly them over accidents/events, inhibiting first responders and they’ll hurt people when their drones fall out of the sky.

It just isn’t a real market you can count on for tomorrow.

Sure, there’s something kinda’ cool in watching young guys pumped up on Red Bull trying to make drone racing look as good as NASCAR and Formula1racing; but still, they’re nothing but pumped up toys!

clip_image012

Drone Warriors – At this year’s CES show, drone races were held just outside of town to stimulate interest in the new sport. Like airshows and auto racing, teams compete for prizes and honors. The big difference is crashes aren’t as expensive and don’t put drivers in the hospital.

O.K., the accidents are spectacular at the CES races, but a serious sport?

Naw … beyond the military applications and film work, the real sales (profits) aren’t with a bunch of kids – actually dads getting their kicks - flying ‘em in Central Park but stuff that’s talked about every day on the Drone Coalition’s website.

These less obvious markets are too big to ignore.

clip_image014

Global Growth – While consumer purchases are projected to hit $1B plus this year; business, commercial and government sales are projected to be the strongest growth area for hardware, software and services.

Flight governance folks like the U.S.’s FAA (Federal Aviation Administration) historically restricted the use of drones to military and intelligence applications. Now, they’re opening the skies to commercial usage and ingenious folks are letting their imaginations take flight.

It’s amazing how quickly farming is using aerial technology to monitor and manage their far-flung operations.

clip_image016

Farmers’ Friend – Using drones and special cameras, farmers can precisely manage the growth of crops and track farm animal movements on large areas. Drone usage optimizes land usage, conserves water and energy and economically speeds healthy food to consumers.

With readily available software, they can constantly produce 3D and thermal images of the acreage and crops.

The only way to get better detail is on foot, which is time-consuming, expensive, and usually inconclusive. Flying even basic, cheap hobbyist drones can cut their costs, improve yields, and do a much better job of conserving their land.

An AUVSI (Association for Unmanned Vehicle System International) feels that agriculture is going to be the biggest drone market because farmers can monitor and treat large areas of land, regardless of the terrain, in less than an hour.

Drones are being regularly used to monitor nitrogen levels, watch the growth of specific field sections and determine the health of plants.

They can precisely identify areas that need pesticides, water and fertilizer to produce the food we eat and improve their bottom line.

It’s a lot better than when my grandfather toiled away in the Mid-West. It also enables land management and conservation groups to monitor the health of our environment and land usage locally, regionally and nationally.

Governmental and conservation organizations around the globe are economically using drones daily to monitor and protect the health and numbers of animal and plant species in remote, inaccessible areas. An impossible task to do with helicopters, satellites or on foot.

AUVSI officials note that the maps provide up to 30 times more detail than the ones from satellites, enabling them to chart changes like deforestation and endangered species.

That’s sorta’ important since this is the only planet we can currently live on.

clip_image018

Fraction of the Cost – By using drone-mounted cameras, power and other fuel/water utilities can quickly, economically and safely monitor equipment and systems even in hostile, inaccessible environments to keep the utilities humming.

While drones gained notoriety for their ability to handle hostile activities silently and economically; the hardware isn’t where the real money is.

The profits are in application/data products/services, licensing and the ever-popular legal services.

Government agencies have been quick to approve the use of drones for inspecting wind turbines, powerlines, pipelines and production facilities as well as the transportation infrastructure around the globe.

The other fast-track application has been to use drones of all sizes for surveillance, public safety and search and rescue operations.

The compact units can be airborne and on-scene in minutes to monitor illegal activities at public gatherings and assess local dangers and problems or fires that cover acres of land.

Heck, thousands could be used to patrol borders in place of walls folks can climb over or dig under.

While legislators struggle to develop new flight/safety rules, the biggest issue for drone operators is battery life.

Most use rechargeable lithium ion batteries, which are both expensive and have a very limited battery life (read short flight times).

Musk and others have been producing hydrogen fuel cells for car and home applications and if some innovative person can make some then small, light and cheap newer drones will be able to fly for hours and be recharged in minutes.

Hydrogen cell drone prices will be “a little” steep but longer flights might offset the cost when it means longer video shoots and business savings.

Kids toys will remain cheap and bothersome; and long distance popcorn delivery will probably win over lots of folks.

Still, aerial delivery of packages, pizza, coffee or whatever doesn’t impress me much!

However, Amazon must be serious about what they’re doing. They just got a patent to protect their drones against hacking and arrows.

Still the idea of “innovative Prime Air” dropping stuff on my doorstep isn’t half as exciting as all those drones shooting video and storing TBs of content on stacks of SD (secure digital) cards and SSD (solid state drives.)

clip_image020

Of course, as Pamela noted, “This is the '80s! Nobody likes reality anymore.”

# # #

Blackfriars - 417pxverbiage white - 300px

10:49PM

The HPE Proliant ML10 Review January 2017 Update

The HPE Proliant ML10 is the entry-level* tower server in HPE’s tower server inventory.

As part of the review series announced here, I received the HPE Proliant ML10 designated for an AbsolutelyWindows RealWorld Review

The ML10ReviewCo January 2017 Update
We have replaced all 8 desktop computers at ML10ReviewCo with HP Pro Desk 600 units.

No new HP tablet from CES 2017 moved us. As a result, we purchased the HP Pro Tablet 10 G1 to replace the Android-based units that were formerly in use.

Our laptop selection is still ongoing, with both the EliteBook 1030 and the Dell XPS13 drawing almost equal adoration from their potential users. ML10ReviewCo company owner is sitting this one out, and he has gotten a hold of a Pro Tablet 10, and is pleased with his device.

The Proliant ML10 Server
This baby is just humming along.

All computing at ML10ReviewCo flows through this device, and it sits unobtrusively in an open ‘rack’ in a newly-enclosed, but well ventilated secure room at ML10ReviewCo.

Users that have all their work and archives on ML10 do not report any issues. In fact, the lack of issues with the retrieval, update and storage of their work are the first accolades we get whenever I show up there with my minions.

That, I like.

We have also been formally asked to expand the scope of our involvement with ML10ReviewCo for the first time, though the owner has been hinting at it for a while.

More to come.

The HPE Proliant ML10 Review Series

© 2002 – 2017, John Obeto for Blackground Media Unlimited

Blackfriars - 417pxverbiage white - 300px

5:24PM

Andy Marken’s Content Insider #503 - Car Work

The Long-Term View of Autonomous Transportation

clip_image002

Safe at Any Speed – There are a lot of great reasons to have connected and ultimately autonomous cars. They can lead to greater road safety and reduce passenger concerns.

It won’t be long – at CES they said 5-20 years – that the next generation of Woz/Steve-types will think that phreaking a phone has to be about the dumbest thing people did back in ancient times. Now hijacking an autonomous car is not only a challenge but real fun.

They won’t be pursued by the police but by AI (artificial intelligence) systems determined to get the vehicle back to the one of four or five organizations that actually own the vehicle.

But just as back in the phreaking days (when they had things called telephone booths), it’s not about stealing as much as it is the challenge to block, divert and/or mess up “the system.”

The effort isn’t carried out because the vehicle is cool or sexy because face it; with the big wart of gear on top, it’s ugly and probably wouldn’t fit in your garage along with all your last year smart home stuff.

clip_image004

Ride Service – Uber, Lyft, Didi and other ride services are working with auto firms to develop and test self-driving cars. It makes financial sense when your car sits unused for hours on end. And if they’re a little bit on the ugly side, you really won’t care because it’s temporary transportation, not something you buy.

Where’s the fun/challenge?

Well, according to Cisco, there will be 50B things communicating with each other to talk to the car in question to convince it to bring the hijackers to a central location.

In addition, there will be more than a billion cameras around the globe capturing more than 100T images an hour to monitor what’s going on in cities around the globe and make them safer, smarter.

Finally, there’s a never-ending stream of real-time software updates back/forth between the office and car that will monitor and adjust the vehicle’s safe movement.

Of course, there’s a little bit of work required between now and then that CES exhibitors tended to gloss over as minor issues.

Manufacturers, Owners
The first powered vehicle (steam) was built in 1769; and since then, thousands of companies and millions of individuals have introduced newer, bigger/smaller, better, faster, cheaper, more efficient, more environment-kindly cars.

Self-sufficient autos were demonstrated in the 1920s and in 1984, the first autonomous car was rolled out by Carnegie Mellon University’s Navlab/AVL.

Between then and today, thousands of car companies have come and gone around the globe.

Two years ago, firms turned out nearly 68M cars, according to the OICA (Organization Internationale des Constructeurs d'Automobiles). China led the pack with 20M personal transportation vehicles followed by Japan, Germany and the U.S.

Certain that the driverless car is the future, they all have huge R&D centers in Silicon Valley as well as other tech locations around the globe joining the new kids in town – Google, Uber, Lyft and Didi.

Oh yeah, and every country has a bureaucratic department trying to develop rules and laws on how they will get around.

There are already cities and villages around the globe letting people test and stress the new next hot mobile thing.

Of course, with an estimated 60 percent of the connected and autonomous cars tied up in technology, every hardware/software firm has an out-in-the-open or skunkworks project to be part of the action.

Even my beloved buy-with-two-clicks Amazon snuck into some of Ford’s cars with Alexa.

clip_image006

Vulnerable – With hundreds of sensors/monitors and constant communications with outside sources, the unanswered challenge for connected cars is protecting passengers when the vehicle gets hacked or malware takes control. Security continues to be a major concern.

The opportunities (and benefits) are awesome, but so are the obstacles.

Whether it’s “just” a connected car or driverless, the moving computer system(s) need to analyze everything inside/outside of the vehicle in real-time, get inputs/updates from somewhere in real-time and rapidly store/process that stuff or … BAM!

That sounds reasonable, logical, achievable; but keep in mind that Silicon Valley (and tech firms in other areas) operate on the philosophy of a very short product development cycle to put pretty good/good-enough beta product into the market to let leading-edge folks find the bugs which the company can then work on to fix, patch, update.

Yeah … works for me!

Rethinking Ownership
While China has a huge population, the country only has 10 vehicles for every 1,000 people. Although they have smaller populations, the US boasts 756 and Luxemburg 686 per 1,000 inhabitants.

Not that you care, but the average car in the U.S. is also 10 years old (keep that in mind when you buy your semi-connected car in 2020).

I forgot to mention that some of our tech experts are working with area leaders to carry out a rolling ban of human drivers on a 150-mile stretch of Interstate 5 between Seattle and Vancouver.

And because folks really can’t voluntarily disconnect from their friends, associates, content when driving, California banned even holding your precious smartphone while driving.

Other areas are thinking both ideas are great ways to reduce/eliminate the 1.25M annual road deaths globally.

The logical question arises then--if the thing is going to pick me up and take me from point A to Point B; why even buy a car, since 90 plus percent of the time it’s just sitting and losing value?

It’s easy to understand why Uber, Lyft, Didi, Ford, TaTa, Benz, Nissan and the others see you abandoning the wheel and just paying for the ride so you’re free to use your personal communications device.

clip_image008

Muscle Machine – Almost from the beginning, cars were an extension of the owner, a reflection of his/her personality. With sleek/bold lines, masterful engines and quick response; your car spoke volumes on who the driver was.

As the transition progresses, people will buy vehicles with more and more technology. Some want to jump into the backseat right now…others will have to be coaxed into giving up the steering wheel.

Bob O’Donnell, president and chief analyst at TECHnalysis Research surveyed consumers and found that price and style were already playing a smaller role in their next auto purchase decision.

clip_image010

New Features – While looks and performance continue to be features people consider in their vehicles, with today’s added technology people are beginning to place advanced features as motivators in the cars they choose to purchase.

What he didn’t mention was a study carried out over the past four years by the University of Michigan found people were losing interest in getting a driver’s license and driving.

And, according to the Federal Highway Administration and a recent global report by GfK, it isn’t just the Gen Yers and Zers.

clip_image012

New Priorities – While younger generations find self-driving cars more appealing than manually driving down the road, even more mature people are beginning to see the benefit of having more and more technology features in their cars.

Older Millennials, 25- to 34-year-olds, were most interested in self-driving cars. Three-quarters of those interviewed found the concept appealing.

In addition, over seven in 10 in the 16-to-24 and 35-to-44 age groups viewed self-driving cars as appealing.

They’re the solution for getting around:

  • Using your garage to store stuff (as you already do)
  • Eliminating your 3rd biggest expense behind housing, kids education and simply pay as you go
  • Forgeting car insurance because “they” cover that
  • Saving fuel because the vehicle can avoid congestion getting you there efficiently
  • Really enjoying a long-range trip of 400-500 miles; kicking back to listen to music, read, catch up on streaming video, grab a nap

Sure, you give up even more data about who you are, what you do and where you go; but you’re getting used to it, so no problem.

The Big Hurdle
Perhaps you haven’t looked closely at the city/town you live in, but…it ain’t smart!

clip_image014

More than Smarts – Cities around the globe have neglected the basic wants and needs of citizens and services to the point that they need a lot more investment than sprinkling around a few sensors and cameras to become smart for the people who live there.

Federal, state and local officials all admit they’re “a little” behind the curve when it comes to implementing technology for such things as public safety, disaster response and a slew of smart city solutions.

In fact, they don’t even have the gigabit networks and services in place to handle data transfer of 1,000MB/s, which technologists agree will be necessary to support and assist the local citizens and businesses.

Those gigabit-enabled networks would be about 66 times faster than speeds provided by today’s ISPs (internet service providers).

While city officials’’ eyes glaze over as they see each new individual technology that is going to pave the way for them, they have to step back and develop a plan that is going to benefit and improve life for the people who live there. Then they can prioritize the implementation of those technologies that will enhance the lives of the community, not the peer status of officials.

Implementation has to benefit the many … not the few.

While you’re looking around town for improvements that need to be made, you might look down.

clip_image016

Smart Driving – In the vast majority of areas, drivers have to have a firm grip on the wheel and eyes on the road to avoid potholes and hazards--some of which have been known to swallow the entire car.

In case you haven’t noticed/felt it, the transportation infrastructure is a freakin’ disaster.

Roads, streets, sidewalks and bridges are disintegrating before your very eyes but fixing them isn’t sexy, techie.

Perhaps that’s why SpaceX’s/Tesla’s boss, Elon Musk, set his sights on moving to and populating Mars.

At the 67th International Astronautical Congress, Musk laid out the plan to establish a human settlement on the red planet in 2022.

Just in the U.S., the initial estimate to fix up the federal highway system is $305B; and doesn’t include local streets and non-federal highways, which will take a minimum of five years. Analysts conservatively believe the cost will at least triple.

I’ll bet it would be less expensive to start with bare dirt/soil and a few artificial environment bubbles around Mars and build out totally new population centers.

They might even be dubbed MuskWorld … solar panels, autonomous electric cars and Hyperloop super fast transportation.

Your kids or kids’ kids can feel sorry for the folks down here in vehicles that can find every pothole, road patch.

clip_image020

Smart World – Technologists have a great vision of what tomorrow’s cities and transportation systems will be like with more than 50B connected things. The challenge is we have to do a lot of very heavy lifting to get there.

G. Andy Marken is President of Marken Communications

© 2002 – 2017, John Obeto for Blackground Media Unlimited

Blackfriars - 417pxverbiage white - 300px

9:21AM

I am off to Palo Alto to talk HP Printer Security

I was invited to participate in the 2017 HP Print Security Blogger Day in Palo Alto, California.

I accepted.

A blog series I have been wanting to create over the past several months is one on the so-called “Internet of Things”, or #IoT, which is rapidly devolving into a security nightmare. Especially for consumers.

However, businesses, and the enterprise are not immune to this already here malaise.

The massive October 2016 DDOS attack on the DNS company Dyn was an eye-opener. The vector used in that attack were a horde of unsecured security cameras.

“…unsecured security cameras...” Oh, the irony!

It almost seems like nary a week goes by when there isn’t disconcerting news of a breach somewhere from seemingly innocent, but inherently dangerous devices attached to the internet.

Not convinced?

Hello?

Your networked printer?

Your Printer is an Endpoint
In the November 2016 IDC whitepaper titled “The Printer Is an Endpoint: Proactively Addressing the Security Vulnerability”, the authors of the paper reveal some somber details about networked papers

Their research and analyses dovetails with the sense of foreboding I always feel when I see us plunging willy-nilly into this #IoT future without any thoughts of security being baked in, either by design, or subsequently.

What I want to see, and know
I am not asking a lot, just the following:

  • I want to see what HP is doing to provide a secure printer OOBE.
  • I want to see how HP will enable users to secure their printers.
  • I want to see what HP is doing to allay my fears.
  • Finally, I would like to know if HP printers are being hardened, by design.

This should be fun.

Stay tuned.

The document The Printer Is an Endpoint: Proactively Addressing the Security Vulnerability, IDC Doc #US41939416, can be found following the link above. Subscription required.

© 2002 – 2017, John Obeto for Blackground Media Unlimited

Blackfriars - 417pxverbiage white - 300px

6:10PM

Artificial Intelligence

While 2016 has had its many (many) downs, it was not without its ups.

Artificial Intelligence, for example, has made some serious progress this year.

Last March, DeepMind’s program AlphaGo went up against Lee Sodol in a $1M 5-game challenge match of Go in Seoul. Lee Sodol has been the top player of Go for the past decade. However, he, the audience, and the millions of viewers of the livestreamed match, were shocked when AlphaGo not only seemed to comprehend the complexities of the game, but also surpassed Sodol’s intelligence across the game. AlphaGo’s ability to think and respond creatively was revealed through its unpredictable moves.

I don’t know about everyone else, but after watching movies like Iron Man back in 2008 and hoping that I could one day have my own personal AI to assist me in similar ways, I was excited to hear about this.

Now, there are people such as Professor Stephen Hawking that are wary of AI.

When I think about it, they have a good reason to worry.

Skynet could go from a fictional superintelligence to a non-fictional superintelligence. Next thing you know, we’ll be fleeing extermination by something that not only has the ability to improve itself, but has removed humans from the equation entirely.

That’s scary and all, but it’s also possible that such things won’t happen.

The primitive AI we have now has proven itself useful as of now, but I’d like to see it taken further. I’m not saying development has to forgo caution, just that development shouldn’t be held back by it. I want to be able to come home one day, say the words “order my favorite pizza” in any general direction, and within 30 (hopefully) minutes I’ll be chowing down. Payment would have already been processed and all I have to do is tip the driver.

That’s all I’m asking for.

This is a guest blog by Chris Obeto the Younger, a CompSci student. I am hoping it becomes a regular feature on AbsolutelyWindows.

© 2002 – 2017, John Obeto for Blackground Media Unlimited

Blackfriars - 417pxverbiage white

5:13AM

The HPE Proliant ML10 Review: December 2016 Update

The HPE Proliant ML10 is the entry-level* tower server in HPE’s tower server inventory.

As part of the review series announced here, I received a Proliant ML10 designated to an AbsolutelyWindows RealWorld Review

Installation
Easy. Peasy.

It is a Proliant, after all.

So Far
We have installed Proliant ML10 at ML10ReviewCo, and we have trained users on the basics of authenticated AD logins.

Since we are using Server 2016 Essentials, OneDrive for Business, and messaging is off-premises.

An external HPE RDX backup device is also installed.

We are in the process of replacing all 8 PCs here with the HP Pro Desk 600s. Replacement units are on site, and the company owner is working with staff to determine what data currently stored on their PCs will be saved.

We are currently holding a bakeoff between the HP EliteBook 1030 G1 and the Dell XPS13 to determine the replacement units for the four laptops. (Actually 3 laptops, and the infernal Chromebook!)

We are holding off on making a tablet replacement choice until after the Consumer Electronics Show (CES) in January 2017.

Client budgetary constraints compel us to move the replacement of the deskside printers to calendar Q1 of 2017.

Client Sentiments So far
The owner of ML10ReviewCo has been impressed with the login authentication afforded his staff by AD. He is also very pleased that he now has the opportunity to funnel all information consumed by both his staff and his customer through pipes that are laid out according to his specifications, and his desired message.

The clerical staff at ML10ReviewCo were somewhat reticent to follow their leader. However, being devoid of choices, and needing the directly-deposited paychecks, provided them the needed impetus to comply.

We shall see…

The HPE Proliant ML10 Review Series

© 2002 – 2016, John Obeto for Blackground Media Unlimited

Blackfriars - 417pxverbiage white

9:56AM

Dell EMC World 2016 Roundtable II

Windows-Live-Writer-Off-to-Dell-EMC-World-2016-Austin-Texas_13D3C-_thumb[3]At Dell EMC World 2016, I was asked to be part of a small roundtable discussion.

Broadcast live on Periscope, this is Episode II

 

The video is © Sarah Vela, or Dell, or respective owners.

© 2002 – 2016, John Obeto for Blackground Media Unlimited

Blackfriars - 417pxverbiage white_thumb[2]

5:26PM

Dell EMC World 2016 Roundtable 1

Windows-Live-Writer-Off-to-Dell-EMC-World-2016-Austin-Texas_13D3C-At Dell EMC World 2016, I was asked to be part of a small roundtable discussion.

Broadcast live on Periscope, this is Episode 1

 

The video is © Sarah Vela, or Dell, or respective owners.

© 2002 – 2016, John Obeto for Blackground Media Unlimited

Blackfriars - 417pxverbiage white

6:38PM

Requiem for the old Windows Cmd Shell

Another vestigial part of Windows gets deprecated

Damen y Messieurs: can we say a rather nice eulogy for Ye Olde Windows CMD Shell?

While sad, for CMD has been an integral part of Windows since Windows 1.0, IIRC.

It has served us well.

Form the days of the old autoexec.bat batch, config.sys, files, TSRs, and all other quick-and-dirty uses for it, the windows command shell has served us well.

Since the move to GUI Windows, it has worked very well in the background, and always ready when needed.

Early this week, Windows Shepherdess Dana Sakar revealed that going forward, the default CLI shell in Windows will be PowerShell

To simply describe PowerShell as “the Windows command line on steroids” is to gravely misunderstand both the product, and the immense capabilities it delivers to both users and system administrators.

A brief explanation of PowerShell is on this Wikipedia page, and the official Microsoft PowerShell page is here.

Rather understandably, several of the yum-yums masquerading as tech media these days have completely misread Dana’s words, and completely misconstrued her statement to mean that CMD will vanish from Windows in the next – Redstone 2 – release.

That is simply not true.

The bottom line is this:

Windows ‘Redstone 2’ will come with PowerShell as the default shell. But CMD will also ship with the OS.

However, though the old CMD will be invisible, so to speak, it remains a part of Windows, and is available to anyone who wants it. Additionally, it can be set as the default shell, if that’s a user’s choice.

But, why would you?

Please learn, and use PowerShell.

It will serve you better.

Fortuitously, Windows expert and technology journalist Jonathan Hassell has a fantastic tutorial, <PowerShell> for Total Beginners. He is also offering a free 4-day crash course for beginners, available here. I highly recommend it.

Here lies Windows CMD
It served us well.

© 2002 – 2016, John Obeto for Blackground Media Unlimited

Blackfriars - 417pxverbiage white

5:11PM

Final Thoughts on Dell EMC World 2016

Windows-Live-Writer-Off-to-Dell-EMC-World-2016-Austin-Texas_13D3C-For years, the old HP basked in the glow of a very dominant position: it was the undisputed Big Kahuna of enterprise computing.

HP was the only company that could deliver end-to-end solutions, from mobiles to big iron, and with supercomputers thrown in.

It was even involved in the design of chips with partners, for which Intel Itanium comes to mind.

No longer.

HP broke off into two major parts, and HP Enterprise, the former enterprise division of the larger firm, has continued to shed subsidiaries and departments that do not, or no longer, fit into the vision developed for the company by HPE CEO Meg Whitman and her board of directors.

Into this breach, you will find Dell Inc.

And I must tell you, Dell has stepped up!

A few years ago, Dell was taken private by a group led by its founder Michael Dell, and just ahead of last week’s Dell EMC World, it closed a deal to by EMC Corporation.

Now, Dell rules the enterprise hardware space.

Not only that, Dell has assembled a group of firms with a rather delectable ownership of envied computing hardware under the Dell Technologies banner. These range from EMC, SonicWall, Virtustream, Pivotal, VMWare, RSA Security, Secureworks.

I attended the inaugural Dell EMC World, as part of a renewed interest, and focus on Dell products, and I have to admit that I came away impressed with what Michael Dell and his group have put together.

!cid_image004_png@01D22A9B

The new Dell is bigger
Without a doubt, the new Dell has doubled in size, both from a revenue, and from a headcount perspective.

Dell should be able to leverage this scale to wring out better deals and saving from everyone involved in their supply chain, enabling it (Dell) to compete better.

The new Dell is broader
The new Dell has a breadth of offerings* that can’t be matched by anyone else in computing. This is the position HP enjoyed before it basically, de-conglomerated.

From desktops to outfitting datacenters, Dell is now able to be the vendor of choice for any other firm.

*Strike mobiles from the list. Michael Dell himself emphatically said Dell – the company will not be doing mobiles again.

The new Dell seems more nimble
Starting with going private, Dell seems to make choices, and pivot faster.

This is evident in the pace of new laptop and server offerings which harness the latest and greatest componentry seemingly coincident with those innovations. Their current pace is impressive. Moreover, they have discovered the power of smart, functional aspirational design as a vector in improving