ganedineroahora.com

Microsoft’s Bing search engine is getting a little help from a very smart friend.

It’s unlikely that Bing is going to turn over the bulk of its results to Alpha, however. In a blog post Friday, Wolfram founder Stephen Wolfram admitted that linguistic problems are to blame for half of the occasions when Wolfram Alpha doesn’t return a result. That percentage is changing as Wolfram refines the science behind Wolfram Alpha, but it will take some time.

Representatives from Microsoft and Wolfram Research declined to comment on the deal.

(Credit:
Screenshot by Tom Krazit/CNET)

Wolfram Alpha and Bing have reached a licensing deal that allows Bing to present some of the specialized scientific and computational content that Wolfram Alpha generates, according to a source familiar with the deal. The deal was reported earlier by TechCrunch.

Bing will start using Wolfram Alpha's data in search results following a licensing deal.

Corrected at 3:30 p.m. PDT to clarify that half the time Wolfram Alpha doesn’t understand an input query, it’s due to linguistic problems. An earlier version suggested that Wolfram Alpha didn’t understand queries half the time.

Wolfram Alpha’s unique blend of computational input and curated output hasn’t taken the world by storm, but it is considered an interesting enough take on the business of Internet search to attract high-profile attention within the industry. Wolfram Alpha doesn’t return the usual list of links to pages with search keywords, instead providing answers to questions such as stock prices and complex mathematical formulas–with mixed results.

Bing, on the other hand, is enjoying a solid start in the three months since it made its debut as it gains users and will at some point be the default search experience on Yahoo’s highly trafficked pages following a long-awaited deal. It’s not clear whether Bing results will carry Wolfram’s branding (i.e., results “Powered By Wolfram Alpha”), but there will be some sort of presence.

If TheStreet.com story is true and Verizon does not sell the Pre, it will be a major blow to Palm, which needs to expand its sales channels for the device. The company has already announced a few other deals for the Pre. Bell Mobility in Canada and Telefonica’s O@ in the U.K. and Germany are also exclusive partners.

The Palm Pre may not be coming to Verizon Wireless after all.

(Credit:
Sprint Nextel)

Another issue is that Verizon supposedly wants its VCast application and download store to be featured on the phone. But this will compete directly with Palm’s own app store. Yet another reason why Verizon might be balking at a deal is that the company plans to put most of its marketing might behind new RIM BlackBerry devices and the Motorola Google Android devices that will be launched later this year.

But now it looks like Verizon is having a change of heart. The Street.com said its sources have cited several reasons why Verizon execs may be getting cold feet. For one, the Palm Pre has had modest sales compared to sales of competing devices such as Apple’s iPhone or Research In Motion’s BlackBerry devices. According to story, Sprint has not sold more than a million Pre phones so far, which has spooked the Verizon execs.

According to a report from TheStreet.com, Verizon Wireless execs are reconsidering whether to begin offering Palm’s touch screen smartphone in January as many have anticipated.

Palm representatives were unable to be reached, but they declined to comment in TheStreet.com story. And Verizon Wireless representatives declined to comment.

Supporting the Pre would not only require Verizon to invest in more marketing to push the device, but it would also require the company put resources into supporting Palm’s WebOS operating system.

Palm Pre

The Pre was announced at CES in January amid much fanfare. And after months of anticipation, Palm launched the device in June exclusively on Sprint Nextel’s network. Shortly before the device was launched on Sprint’s network, Verizon Wireless CEO Lowell McAdam said it would offer the Pre on the Verizon Wireless network within six months.

Sprint’s CEO Dan Hesse said the device was exclusive to Sprint through 2009, which left many market watchers expecting a Verizon version to land sometime in January 2010. Hopes for a Verizon version of the Pre were bolstered recently when Palm’s new CEO Jon Rubinstein said he expects the device to be offered on other networks very soon.

Meg Whitman

Whitman stepped down as CEO of eBay in March 2008, a decade after she transformed the company from a tiny auction site to an Internet icon. During her tenure, the company’s split-adjusted share price leaped from just over $1 to a 2004 peak of almost $60, before plummeting to a recent price of under $14.

(Credit:
eBay)

Whitman, who has never served an elected public office, will announce her bid for the Republican nomination in 2010 during a speech in Fullerton, Calif. She will reportedly campaign on a platform of cutting state spending by $15 billion and reducing the state’s workforce by 17 percent.

Former eBay CEO Meg Whitman is expected to officially declare her candidacy for governor of California on Tuesday.

Likely contenders for the Democratic nomination include Attorney General Jerry Brown, who was already governor 30 years ago, U.S. Sen. Dianne Feinstein, San Francisco Mayor Gavin Newsom, and Los Angeles Mayor Antonio Villaraigosa.

Whitman, 53, will become a leading Republican candidate to succeed outgoing Gov. Arnold Schwarzenegger, who will retire because of term limits.

In the past year, the billionaire Internet executive has taken a more high-profile role in the Republican Party. Whitman served as an adviser to Republican Sen. John McCain’s presidential campaign and endorsed him during a speech at the party’s convention in St. Paul, Minn., last year.

Possible primary rivals include State Insurance Commissioner Steve Poizner, a former Silicon Valley exec who founded SnapTrack, a cell phone locating company, and sold it to Qualcomm for $1 billion in January 2000. Another GOP rival is expected to be Tom Campbell, a former U.S. congressman and dean of the business school at University of California at Berkeley.

Updated on September 23 at 12:30 a.m. PDT: adding information about the Atom Developer Program.

Addressing the PC market, Otellini said that he expects “significant growth in 2010.” This year he sees “units flat to slightly up,” he said, but next year “I think the market is poised for a resurgence.”

The program provides a framework for developers to create and sell software applications for netbooks with support for handhelds and smart phones available in the future. “We want to fuel the growth of Intel Atom-based products designed for the mobile lifestyle,” said Renee James, corporate vice president and general manager, Intel Software and Services Group, in a statement.

Otellini also addressed the European Commission’s publication on Monday of antitrust allegations against Intel. “They consistently ignored information,” Otellini said. He added that customers such as Dell will come forward to state that some of the information was “wrong.” In a statement, Intel said Monday that “the Commission relied heavily on speculation found in e-mails from lower level employees that did not participate in the negotiation of the relevant agreements.”

In the more immediate future are the 32-nanometer processors. “Thirty-two-nanometer enables us to build a billion transistors in high volume. Started production on Westmere (the 32-nanometer technology) for shipment to customers in Q4.” Otellini demonstrated the upcoming 32-nanometer mobile “Arrandale” processor–which integrates graphics silicon with the main processor–in a laptop.

As another example of where Atom will be used, Otellini said that automakers Daimler and BMW will use in-vehicle Atom-based infotainment systems from Harmon International in future vehicles.

Intel CEO Paul Otellini shows a next, next-generation wafer containing 22-nanometer chips

Generally, the smaller the chip’s geometry, the faster and more power efficient the chip is.

The Intel CEO also introduced a new Intel developer program for the Atom processor in order to boost software adoption on Netbooks and expand the development of software beyond those devices. Asus, Acer, and Dell are supporting the program, Otellini said.

“We’re moving from personal computers to personal computing,” Otellini said.

He called this a transition to a continuum. “The same experience on any device. How we build this continuum out. That’s the theme,” he said. “Moore’s Law, platform architecture, and software–the combination of these three will allow us to build the continuum.”

Otellini also had a surprise. He introduced the company’s next, next-generation technology, based on a 22-nanometer process. Intel currently makes chips based on 45-nanometer technology and will move to 32-nanometer by the fourth quarter of this year. After that comes 22-nanometer chips.

(Credit:
Stephen Shankland, CNET News)

SAN FRANCISCO–In his keynote at the Intel Developer Forum on Tuesday, Intel CEO Paul Otellini focused on moving beyond the PC while introducing a new processor technology and a new development platform for the Atom processor.

“The world’s first working 22-nanometer silicon technology,” Otellini said. He showed a wafer containing SRAM memory chips that each contained 2.9 billion transistors. “This is on track for for second half 2011.”

The event’s main speaker is still unclear, though it would be a prime opportunity for CEO Steve Jobs to make his first public appearance since returning to full-time work. If the Beatles are involved, it’s hard to see how Jobs couldn’t be present.

If the date is correct, holding an event on a Wednesday would be a departure from Apple’s habit of holding these types of events on Tuesdays. The date also gives more credence to the rumor that it might be the day when the Beatles catalog at long last comes to iTunes. September 9 has already been announced as the day that the music of Fab Four will make its debut on the video game Rock Band.

It looks like the annual Apple music event will be held on September 9 this year, according to AllThingsD.

CNET News reported last week that the September event will be music-focused, and will include an introduction of a new digital album format from Apple, called Cocktail. Apple is also expected to unveil changes to its iPod lineup.

Though it had been reported earlier that the event would take place sometime that week, a source now tells AllThingsD that the exact date will be September 9, and that it will focus on music, meaning no tablet announcement.

When you get to the site, you’ll see a listing of all kinds of wedding stationery, including announcements, save-the-date cards, invitations, and more. Simply pick the category you want to explore and you’ll find a slew of options to choose from. Once you find the invitation you like, the site allows you to customize the text. Thanks to a handy navigation element, you can quickly choose the format you want and input the required information. You can even choose some design elements of your invitation, changing color and layout. And thanks to some favorable online pricing, I think you’ll find that Wedding Paper Divas is competitively priced with local companies. Check it out.

Wedding Wire: If you’re looking for anything from a venue to hold your reception to a photographer to capture all the special moments at your wedding, Wedding Wire is a great place to start.

Wedding Mapper does more than map your wedding. The site also displays user reviews of local venues, allows you to create your own wedding Web site, and much more. It’s a full-featured site that most brides will be happy to try out.

Wedding Paper Divas: If you’re looking to create some elegant invitations for your wedding, Wedding Paper Divas will help you do it at a reasonable price.

Wedding Mapper lets you create a wedding itinerary.

Also a magazine, The Knot is one of the finest online resources for any bride-to-be. The site provides information on topics ranging from wedding dresses to floral arrangements. It even provides outstanding information on wedding protocol. But if you’re looking for the most value, try out The Knot’s planning tools. You can start a site, monitor your wedding budget, keep a guest list, and much more. It’s also a nice place to find honeymoon ideas. Simply put, The Knot features all the best content in one place.

1-800-Flowers has several flower choices.

One of the best ways to dictate pricing on your wedding is to set up a listing on Craigslist, soliciting vendors. You can say that you’re only looking to pay a specific amount and you’re looking for a photographer, for example. Undoubtedly, some photographers will reply to your listing, offering up their own services. You can also use the site to find folks offering their service. It’s a great resource to find advantageous pricing in your area. It’s definitely worth consulting.

Wedding Mapper allows you to plot all the points that your guest will need to know about for your wedding day. You can input where the ceremony will be held, where you plan to have your reception, and where they can expect to stay. You can even create an itinerary for them to accompany the map to make it even easier for them to figure out where they need to be.

(Credit:
Screenshot by Don Reisinger/CNET)

2. Grower’s Box: Find some great flowers with the help of Grower’s Box. You should save some cash.

Wedding Wire lists vendors of wedding services near you. When you input your ZIP code and what you’re looking for, you’ll see a listing of the services in your area. The site lists the person’s availability (if they provided it), as well as pricing and reviews. The user reviews are the most useful, since they provide valuable insight into what you can expect on your wedding day. Whether you’re looking to find a photographer, a videographer, or a venue for the big day, Wedding Wire should help you find what you’re looking for.

(Credit:
Screenshot by Don Reisinger/CNET)

(Credit:
Screenshot by Don Reisinger/CNET)

The Knot has all the content you'll want in one place.

Family fun

1. The Knot: It has just about anything you want. What can be better?

Before we get started, I should note that there are a ton of wedding resources on the Web. This isn’t an exhaustive collection of resources, but it is a collection of some of the best.

Grower's Box has several "Weddings in a Box" options.

As someone who just celebrated his first wedding anniversary, I know what it takes to plan a wedding. Everything from the venue to flowers must be accounted for. It’s no easy task.

Find services on Craigslist.

Offbeat Bride has some nice design options.

Get your wedding going

Flowers

Invitations

(Credit:
Screenshot by Don Reisinger/CNET)

A little bit of everything

Offbeat Bride: If you want to keep your family updated on the wedding planning process but aren’t into the flowery themes that come stock with many wedding Web sites, check out Offbeat Bride’s Nearlyweds site hosting service. It’s a simple tool that can help you create a Web page for your friends and family with slightly edgier themes than you’ll find elsewhere.

Wedding Wire lets you know who is available for your day.

3. Wedding Wire: If you want to find some venues or services you care about, Wedding Wire is for you.

The Knot: If you’re looking for a little bit of everything, The Knot is the site for you.

Wedding Mapper: If you have a lot of out-of-town guests coming to your wedding or you just want to keep guests updated on what’s happening during the planning, Wedding Mapper is another great option.

Wedding paper Divas will create a nice invitation.

Realizing that, I thought I’d use this space to make it a little easier for those planning a wedding. We have included some well-known resources as well as some sites you might not have heard about before but that could help you save some cash–or stress.

(Credit:
Screenshot by Don Reisinger/CNET)

Grower’s Box: Grower’s Box is an online wholesale flower retailer that provides a slew of wedding packages. It’s a fine resource for anyone looking to find flowers for their wedding.

1-800-Flowers’ wedding page lists several flower arrangements, ranging from centerpieces to bouquets for the bride. It even offers boutonnieres for the men in the bridal party. Although flower pricing varies in different areas around the U.S., I do know that 1-800-Flowers’ pricing is far better than those in my area. Even better, the flowers are available on the same day the order is placed.

Reviews

My top three

When you first get to Grower’s Box, you’ll see several listings available to help you find the flowers you might be looking for. When you click the Wedding option, you’ll see a listing of several “Weddings in a box.” Those items include the ability to buy everything from bunches of roses, lilies, sunflowers, or just about any other kind of flower the bride might prefer. Even better, they’re priced well, since you’re only paying the wholesale price. In many cases the Grower’s Box beats local floral shops by a wide margin, according to one bride-to-be I know who checked pricing in my area. Grower’s Box has a slew of packages to choose from. The site even has a wedding guide if you want some ideas. If you’re looking to compare flower pricing, Grower’s Box is a great place to start.

Offbeat Bride will set you back $49 for two years of access to its service, but you do get a free two-week trial, so you can try it out for yourself before you commit to the site. When you sign up for the service, it’s about as easy as it comes. Simply drag and drop elements onto your site, upload an unlimited number of photos, add a blog to tell friends about what you’re up to, and more. You can even manage your guest list from the site. You won’t need to worry about site design; simply choose a design that you like to get it up and running. It’s a pretty good deal for just $49. Check it out.

(Credit:
Screenshot by Don Reisinger/CNET)

(Credit:
Screenshot by Don Reisinger/CNET)

Craigslist: Anyone who knows Craigslist usually loves Craigslist. It’s just one of those sites that combines usefulness with function. And it can even help when it comes to planning your wedding.

1-800-Flowers: 1-800-Flowers is best known for providing users with delivered floral arrangements, but the site is also a fine resource for those who want to get flowers for their wedding.

(Credit:
Screenshot by Don Reisinger/CNET)

“For certain products, recurring payments makes a lot of sense, but it’s a small subset,” he said. “One major reason for that is, (when customers buy multiple applications at once), what seemed like a small $2.99 purchase all of a sudden (is) seven $2.99 purchases. I start to notice that on my bill, and now I’m calling someone about my bill to get a disconnect or because I’m dissatisfied.”

Also to be included (though at the discretion of Sprint) will be a recurring payment system. This is one area in which Sprint has been pulling back with its own apps for several years, Brocket said, but one from which some developers could benefit, if used correctly.

The company is also bucking some of what Apple and Google have done with their application storefronts by charging developers to have their apps re-reviewed–that is, if there are problems with it. Sprint still hasn’t said what this fee will be, but Brocket said it will be “low” and that the company would be making it quite clear what the problems were, so that developers could fix them before resubmitting.

Sprint's general manager of wireless applications, J.P. Brocket, talks about what's in store for the company's upcoming universal app store.

Brocket concluded by saying that Sprint has “heard what you’ve said for eight years. Now it’s time that we’re going to give you an enabling channel and a path to the customer. And it’s up to you to create the great content and succeed–with our help, where we can.”

A big part of that simplification is accelerating its application approval process. “If you want to get something onto the (current) Sprint Software Store, someone has to review it, someone’s got to test it. By the time those things happen through long lead times, we’ve seen that some of the content completely loses its relevance,” Brocket said. “We’ve got to stop. We’ve got to get out of the way so that content can get here faster.”

That’s another thing the company is trying to change with the universal application storefront: its customer service responsibilities. Brocket made it clear that the only customer service the company should be doing is in regards to its own billing and service quality. “Support is best performed by the application providers,” he said. “If there are network or device or system things in the way that keep that from happening–that’s on us.”

How fast? While Apple is currently running two weeks or more on app approval, Brocket said Sprint is aiming to get the job done in less than a week. Brocket said that much of that depends on what the app does, citing that an app for finding a local pizza place would probably slide through quite quickly, but that an app with turn-by-turn directions, or one that changed the phone’s native dialer, would take a little longer.

Other things the company plans to offer with its new app store are multiple payment methods, especially from third parties like PayPal, Amazon, Google, and others, though Brocket said carrier billing (or being able to charge a purchase to your monthly cell phone bill) could take a little longer.

SANTA CLARA, Calif.–Sometimes it’s easier to build anew instead of trying to fix what’s broken. At least that’s the tune Sprint is marching to these days.

Here at the third and final day of the company’s Open Developer Conference, Sprint’s general manager of wireless applications, J.P. Brocket, made it quite clear that the carrier knows what works and what doesn’t–and that much of the company’s future growth is going to revolve around a complete reboot of its application store, set to launch as the Sprint Application Store in the first quarter of next year. The company is selling it to developers as a simple way to sell and manage their creations for multiple devices.

(Credit:
Josh Lowensohn/CNET)

“We’d like to take hacking from the underground, where it’s inaccessible, and make it accessible to everyone,” Appelbaum said. “It’s not just about bits and bytes…it’s about the intersection of art and technology and changing the greater world around you.”

Oddities and whimsy abound at Noisebridge. The handles on the door of the refrigerator (which is stocked with the hacker drink of choice, caffeinated Club-Mate) are on the opposite side from where it opens. A red pay phone is rigged up to be a voice over IP phone, allowing calls anywhere for free. And a laptop is precariously perched atop a wall divider that operates a touch panel designed to control the HVAC, lights, and building access.

Noisebridge co-founder Mitch Altman shows people how to solder and work with electronics at his weekly Circuit Hacking workshop.

Noisebridge has an executive board whose members are elected, but decisions are made by consensus of the entire membership. The group’s motto is “Be excellent to each other,” a line from the movie “Bill & Ted’s Excellent Adventure.”

My colleague James Martin created an audio slideshow on Noisebridge:

The large second-floor concrete warehouse space was packed with programmers, artists, writers, lawyers for the Electronic Frontier Foundation (EFF), and urban hipsters with bike messenger bags for the open house party on a Friday night in early October. Electronic music played, people lined up to buy drinks, and a variety of digital toys were on display, including a computer-controlled mill someone was using to etch the Noisebridge logo into metal. A light display with a sign next to it said, “Hack me. I’m proprietary.”

Noisebridge hacker club (photos)

“This death trap is a response to a political battle,” said Appelbaum. “There used to be a door here,” he said, pointing to an area obviously boarded up and painted over. “But some people wanted to lock the server room and log access. So, what is the eventual outcome? This wall.”

“It’s funny that we have to have that [system] to manage the trash,” joked one Noisebridge member.

(Credit:
James Martin/CNET )

“Hacker spaces have evolved in a good way,” said Chris Wysopal, chief technology officer of security firm Veracode who was in the L0pht Heavy Industries hacker group in Boston in the 1990s. He visited Noisebridge recently and noted that the group “has more resources, more space and equipment, and it seems like more diversity of people.”

Noisebridge is described on its Web site as a nonprofit “space for sharing, creation, collaboration, research, development, mentoring, and of course, learning.” It was conceived by Jacob Appelbaum and Mitch Altman while they were at a hacker conference in Berlin, Chaos Communication Camp 2007.

“Something clicked there and we both independently came up with the notion that we would make a hacker space happen in San Francisco,” Altman, a computer security expert, said in a recent interview. Altman and Appelbaum spread the word to friends, and a group started meeting in cafes on Tuesday nights, until they found their first space. They quickly outgrew that spot, and in October they moved to their current 5,200 square foot space a block or so away in the heart of San Francisco’s Mission District.

Members learn from each other and create things, but more importantly, they have a safe space to form a community that they can’t get elsewhere, especially not on the Internet, according to Altman.

In a far back corner, a curious architectural feature stands out–a small room that houses the servers and is accessible only via a ladder and a crawl space near the ceiling. The back story, or at least part of it anyway, was revealed on a subsequent visit.

At least half the crowd followed him, officially ending Five Minutes of Fame, an event held the third Thursday of every month at the Noisebridge Hacker Space.

There have been courses on sewing and crafting; workshops for French, German, Mandarin, American Sign Language, cryptography, creme brulee making, and, of course, lock picking. Coming up: a knot-tying workshop, a class on CPR, and an EFF presentation on hacker spaces and the law.

Noisebridge co-founder Jacob Appelbaum

“A lot of us are introverted geeks who were bullied and even beaten up, like I was,” he said. “Now, we can get together and celebrate our unique geekiness, share that with the world, and make the community around us better.”

While there are about 100 members of Noisebridge (each paying $40 to $80 per month), L0pht typically had 7 or 8 members at any one time, primarily focused on hardware and computer security, according to Wysopal.

For the last talk, a speaker billed as “Dr. Baron Mikheil von Burstein, esq.” explained how to pull off his interactive public art specialty–swings that hang in the aisles on the underground trains in the Bay Area Rapid Transit (BART) system.

While the world of hacking traditionally is built around mystery and exclusivity, Noisebridge aims for more widespread appeal.

(Credit:
James Martin/CNET )

“It’s more anarchy than anything else; people getting together to form temporary, smaller, organized groupings to perform a task,” said co-founder Altman, who runs a circuit hacking workshop every week and makes the TV-B-Gone device that remotely shuts off TVs.

It’s very much a do-it-yourself space, with members building an induction stove, a custom tile countertop decorated with the Noisebridge logo, a dark room and optics lab, and an industrial shop. A cyborg group is working on augmenting reality with artificial senses and creating an anklet that lets the wearer feel which way is north. One person working on a genetically modified bacterium wanted to create a bio-hacking area, but that idea was rejected after some debate, according to one member.

SAN FRANCISCO–About 30 people listened intently on a recent Thursday night to short presentations on linear algebra and beer brewing, watched a demo of an iPhone cyberspace shooter game, and learned how to make a light staff (acrylic rod, LED, resistor, tape, no soldering required).

Noisebridge members take their automation designs seriously. The front door can be opened remotely over the Internet by someone at home. The system also calls the cell phones of certain members the day before the weekly trash pickup, and whoever can respond is automatically connected to a phone at Noisebridge. Whoever picks up is asked to put the trash cans out front.

“I installed it publicly, illegally and got away with it,” he boasted. He had materials with him to hang four swings, he said, adding “Let’s install a swing right now on BART!”

Strong process and object isolation–the same techniques I recommended to improve reliability–can help improve storage security, too. These methods apply directly to memory security, and by extension, to mass storage.

There’s no technical reason why PCs can’t provide strong security. Improving security costs money, which provides a business reason not to do it, but the way I see it, the costs associated with insecure computing have long since eclipsed the costs of making systems more secure.

We need several key security improvements in the personal-computing experience:

A more practical kind of anonymity is already practiced by many Web sites, where user credentials are accepted uncritically but access logs can still be used to track down the IP addresses of users who violate the site’s terms of service (or the law). This is fine, as far as it goes, but it isn’t really secure anonymity. It can be fairly easy to associate an IP address with a name depending on the user’s other online habits.

Alas, that isn’t how it works.

This lack of security is quite serious and quite expensive. Many credit card theft rings have intercepted card numbers being transmitted over Wi-Fi networks. Many individuals have fallen victim to identity theft because someone intercepted their traffic on public Wi-Fi networks.

Few Web sites provide any way for the user to authenticate the site itself. The Extended Validation Certificates offered by some certificate authorities help a lot, though they are relatively expensive and not easy to get. Modern Web browsers recognize these certificates and turn the address bar green to indicate that the site certificate matches the displayed address.

Secure identification
Many sites on the Internet require some form of log-in before giving access to personal information. This process is separate from the communication method itself.

The details of this option can get a little tricky. I think it ought to be possible to have a Web site for government oversight, for example, where whistleblowers can participate with almost complete anonymity. Of course, such a site could become a magnet for libel, and that wouldn’t be useful.

But that’s like saying that because anyone can force you to unlock your front door, you shouldn’t have a lock on it.

I think there’s room for a new open standard to anonymize Internet communications in a way that is secure against casual investigations yet fully accountable if abused.

The right answer, I think, is to seek the point at which the security of a system establishes a balance between the costs and inconveniences of providing the security and the risks of having the security violated. In my opinion, the PC is nowhere near that point.

It wouldn’t take much for someone to introduce a mainstream e-mail service that is secure by default. Apple, for example, could provide almost invisible security for MobileMe e-mail using nothing more than the existing open standards created for that purpose. Any e-mail provider could do the same thing. What are they waiting for?

There are ways for individuals to protect their Internet communications. One is to use VPN (virtual private network) software, which is built into most PC operating systems these days. Until consumer ISPs provide VPN endpoints for their customers to use when away from home, however, this option is mostly limited to business users. Also, a VPN only protects traffic between you and the other end of the VPN connection; from there to whatever Web sites or other services you access, your connections are not covered by the VPN.

These certificates still don’t provide a direct negotiation between the user and the server based on some previous agreement, however, so there are still some risks involved, such as users mistyping domain names and getting a site masquerading as the one they intended to reach, or having the server taken over by malware.

Secure communication
Because most of the data on our PCs arrives there from somewhere else, communications security is also important. I remember being disappointed in the late 1980s that emerging Internet e-mail standards did not allow for secure e-mail, but I assumed that this omission would be quickly rectified.

Security is a big topic, of course, and I’ve really just scratched the surface here. (Not to mention the risk of oversimplifying some important issues.) Suffice it to say that there’s plenty of room to make personal computing far more secure, and that this improvement is, in my opinion, long overdue.

Secure storage
To my way of thinking, security starts with secure storage. I assume most of us have sensitive information on our PCs. Since PCs can be stolen or attacked while nobody’s watching, we need a way to protect our information. “Storage” in this context can include hard drives, the PC’s main memory, and even removable media like USB drives and DVD-ROMs.

When Phil Zimmerman’s Pretty Good Privacy arrived a few years later, I figured it was only a matter of time before all Internet e-mail was encrypted by default.

Ideally, the remote system should be convinced who the user is, the user should be convinced what system is being accessed, and the whole process should be strongly secured by open industry standards.

Properly done, storage security can be almost invisible. It shouldn’t take much more than entering a password to unlock the storage device; for extra security, you could be required to use some kind of security token. But once you’re in, and as long as you remain physically present, your machine can operate normally.

In fact, there’s no longer any technical or commercial barrier to cryptographic protection of all of our Internet communications. Every Web server could provide HTTPS support in preference to standard HTTP, but very few allow this. Almost every insecure Internet protocol has a secure alternative, but most of these are not well-supported.

While it’s entirely appropriate for many servers to know exactly who their users are, I also think there are times when users should be entitled to some privacy. Just as there are multiple levels of identification, there should be multiple levels of anonymity.

The same weaknesses that contribute to unreliability (see my earlier post, “Wrapping up Speeds and Feeds, part 2: Reliability”) make PC storage insecure. Recent history shows how vulnerable PCs are to malware. Once a malicious program is in your machine, it can find personal data in memory or on disk and send it over the Internet to the attacker. Reliable execution can be associated with secure execution, and that’s a good thing too.

But some of the critical technology, notably the RSA public-key cryptography algorithm, was patented and not really available at consumer-friendly price points. When the RSA patent was released to the public domain in 2000, I figured the end of insecure e-mail was finally in sight.

Hardware can create security holes, too. The IEEE 1394 peripheral interface (also known as FireWire and i.Link) is a notorious weakness. It can provide unlimited access to system memory and, indirectly, all connected storage devices, even those configured with full-disk encryption.

But here we are, eight years later, still waiting.

It’s also true that there’s always a way around any layer of protection, which is sometimes taken as another argument against improving security. As the argument goes, you have to be able to access your own data; if someone else wants access, they can always force you to get it for them.

Most Web sites use their own authentication systems, requiring users to keep track of a separate set of log-in credentials for every secure site they visit. Although there are a few open standards for this purpose such as OpenID, they are nowhere near universal.

There are anonymizing services available online that can act as go-betweens to protect against this kind of investigation, but these services can also provide cover for libel, and again, that isn’t very useful.

Nothing disappoints me more about the evolution of the personal computer than the PC’s lack of ubiquitous security.

HTTPS, for example, doesn’t require any kind of user identification; it just protects a single session. VPNs protect the link from the user’s machine to some remote site, but in themselves don’t usually give access to systems at that site.

,omega watches

Once a company gets to Google-esque size, it may not even matter that its particular open-source strategy falls short because, at a certain scale, Google-like services become much bigger than any one open-source project.

Follow me on Twitter @mjasay.

Think of the most broadly adopted open-source projects: Linux, MySQL, JBoss, Drupal, Joomla, etc. There should be scads of companies set up around these, not providing support for these specific technologies,replica watches, but rather building cloud-based services that tie into them.

The money is not in the client. It’s in the cloud.

If there was ever a doubt as to whether open-source software could be big business,Rolex Watches, Google has eradicated it. The Silicon Valley giant shovels open-source software out the door like Santa Claus, all the while monetizing it with cloud-based services.

But we’re not there yet. We’re still stuck in Open Source Business 1.0.

In other words, Google may not care whether Android dominates the mobile market, but it does care that the state of the art in mobile advances so that it can benefit from those advances.

And yet most “open-source businesses” continue to plod through old models of support and/or proprietary extensions. Why? Even Red Hat, the godfather of open-source businesses, has demonstrated that there’s far more opportunity in cloud-based services (e.g., Red Hat Network) than simple support offerings.

It’s a theme that Index Ventures’ Bernard Dalle elucidated here, but too few appear to be getting the message.

Gartner analyst Brian Prentice argues:

By 2020 open source will be so conceptually and practically integrated into the way business is done that the concept of blogging on open source in 2030 will be about as interesting as predicting the future of double-entry bookkeeping.

Google’ strategy is no longer in question. What does remain a question is why more companies aren’t following its lead.

It’s a game that even Microsoft could play, if it chose to do so. Open source, in this model, is the most pragmatic, capitalist instinct an entrepreneur can have because ubiquity generates substantial commercialization opportunities.

As an example, even if Google’s open-source mobile software strategy fails, in the sense that the market doesn’t broadly adopt Android, etc., Google still likely wins. As the Design by Gravity blog puts it, “Google is intent in raising the average in areas it thinks are key to its future.”

That’s the end game: cloud-based services that become far too important to restrict to one particular open-source project. Getting there, however, can begin with fanning the flames of popularity and adoption of just one open-source project.

Some get it. Look at Acquia. The company is building out a network of services to complement Drupal deployments. Sure, Acquia also offers support for Drupal, but that’s small change in the grand scheme of things. The big money is in cloud services tied to broadly adopted open-source software.

News flash! Big money discovered in open-source software.