Cyber Security

-
Came across this BBC program on Cyber Security the other day. A very fascinating documentary about threats and security of the invisible net that is connecting our world together. With the increasing connection of software and infrastructure, the stakes are high, and yet, most of us are oblivious to these strange worlds.


 07/2018 Unfortunately the original video referred to in this post is no longer available. If you are interested in this subject this BBC documentary Zero Days also looks good.

Internet loopholes and Social Engineering
The story begins with the horrific tales of people losing control of their online accounts and devices. Have you ever forgotten your passwords or payment details and found it rather easy to reset to regain access to your account? Well, some clever strangers may use a combination of loopholes from different services to take over your online identity - one by one.. that is a rather scary thought but it is also very real.

Stuxnet and Cyber Weapon
This part of the documentary was an eye opener. How many of you know what a "zero day exploit" is? (rare flaws in codes that no one else has noticed); what a name! When they start describing virus that alters Programmable Logic Controller codes that are used to run factories and automation processes, suddenly things starts to sound very serious. 

They claim that Stuxnet was created by a nation state to stop a particular process in another country. The idea of altering PLC codes to make a particular type of centrifuges run faster or slower, and in the process disrupt any potential uranium enrichment activities is really quite genius. However, once created and released, this "weapon" may become available to others and be used for other purposes. What do we do now? :S

Encryption and prime numbers
I wish my teachers gave us more concrete examples of how maths and sciences are very relevant in the real world when I was in school. Why did I not know that prime numbers are so important that the world will literally stop without them?

In order to use all your Internet services securely, we need a way to encrypt data very quickly one way, and make it very hard for others to undo the encryption. The idea of multiplying two prime numbers to get a semi-prime for this purpose is again, quite genius. Multiplying two prime numbers is a relatively fast process; however, once you get the product, which is called a semi-prime, it is very difficult to work out which prime numbers were used originally to get this number. And there you have it, easy to encode, but hard to decode, the beauty of RSA algorithm.

Quantum processors and computing
RSA encryption is effective based on the assumption that the result will take eons to crack even using the currently fastest High Performance Computing technology. But computers are getting more and more powerful all the time, and some future technologies may eventually catch up with encryption methods.

Quantum computing, which can theoretically look at "all" possible answers simultaneously, certainly has this potential. Imagine if a computer can look at all answers and select one that shows up as the highest probability which occurs a lot more times than any other answers.

The quantum world is another fascinating area that most of us just never think about. I have no idea what I am talking about here. But I have always imagined that the world probably has infinite numbers of outcomes, every decisions, every actions, but the one we live in is the one with the highest probability, based on the conditions of all other events. This would be a good topic for another day.

Quantum cryptography
This ingenious idea is based on another property of our strange world. I did not think such service is already available. I first came across this strange phenomenon back in school (many years ago now). It got my attention because it involved a cat, schrodinger's cat to be more precise. Basically, as I understand it, at the very small scale, our world changes if somebody is looking at it. So, using quantum encryption, you can tell if someone is "listening in" to your data.

What surprised me is that this technology is already being used by banks and secret agencies, and is commercially available if you have the money.

Ultra paranoid computing
I can see why all of the above can make someone ultra paranoid, don't blame them. A group of individuals feel that way and are looking into extreme ways for security. Fingerprints and iris scans are not 100%, but going to the brain and encode password to the subconscious is a bit much isn't it? I can't see people taking 5-15 minutes to log-on to systems, you will need to be very patient.

The Weakest link
The idea that human beings are ultimately the weakest security link is very interesting as well. Next time you see an identified USB stick in the office, please do not stick it up your computer, you have no idea what it will do...


Phew, that was a lot of material in one documentary. Thanks to the BBC for making such fantastic educational materials.


Comments

Post a Comment

Popular posts from this blog

IWEB trading platform, service review

-
Image
I had a frustrating experience today with my UK trading platform, IWEB. Upon logging in this morning, I was startled to see a message that my account was restricted and to call a provided number. I was perplexed about what could have triggered this. I called customer service, who speculated that an expired debit card on file may be the issue. After updating my details, I was told access would resume shortly. However, I remained unable to access my account the entire day, which was aggravating. While I understand technical problems occur, clearer communication and urgency from IWEB would have been appreciated in resolving this issue faster. IWEB is one of the ISA providers and shares dealing platforms in the UK, part of Lloyds Banking Group. I have been with them for several years. Customer service is usually friendly, and there is a web-chat service which I like. They offer the most competitive 'cost per trade' without a minimum number of trades per month (that I know of), and
Read more

Review: Dodl - AJ Bell's User-Friendly Investment App

-
Image
For UK-based Investors #Dodl #AJBell #investing #trading  What is Dodl? Dodl, the user-friendly investment app, is brought to you by AJ Bell, a prominent name in the UK's investment landscape. Aimed at demystifying the world of investing, Dodl offers a straightforward and accessible platform for individuals looking to take control of their financial future. Low-Cost Investing Dodl boasts an affordable approach with a minimal 0.15% account charge, starting at just £1 per month. This low-cost structure makes investing within reach for individuals who may be new to the world of finance. Trustworthy Platform: A Part of AJ Bell Being a part of AJ Bell adds a layer of trust to Dodl. AJ Bell has been recognized as a Which?-recommended investment platform for five consecutive years, earning the confidence of over 490,000 investors. App-Based Convenience Dodl takes the hassle out of investing with its all-encompassing app. Offering a streamlined range of accounts and investments, Dodl makes
Read more

What Gaming Taught Me About Life

-
Image
    For all the young gamer out there Lately, after completing my professional qualification, I’ve had more time to pursue my hobbies and gaming has been one of my favorites. I find it both stimulating and relaxing to experience different worlds and challenges. I also believe that gaming in moderation has some real-life benefits. For example, it can teach problem-solving skills, teamwork, and creativity. These are all skills that can be applied to other areas of life, such as work and school. I believe that successful gamers can transfer these gaming skills and mindsets to other areas of life. Follow my channel, I need subscribers! In Games, the Objective (Quests) Are Well Defined If you play video games, you probably know what objectives and side quests are. They are the goals that guide you throughout the game in the game world. In his book “Winners and how they succeed”, Alistair Campbell explains how having a clear objective is the key to success in any field. As a gamer, you would
Read more