kdh wrote:Thanks for that Beau. Really interesting.
The stories coming out of Silicon Valley these days, particularly Tesla, Facebook, and Uber I find fascinating. What do you know about Palentir? I worked for a place called TASC that was a contractor doing mostly government research work but we were early users of Pixar hardware and did one of the first google-earth-style fly-throughs, for ABC, of the 1988 winter olympics venue in Calgary.
The "break things and ignore regulations" model seems particularly ill-suited to government work.
Keith, (This is long, get a cupacoffee or click on)
In most cases, I think you'll find that the folks doing biotech and computer-tech have been so far out in front of the US Congress and States that there really weren't any regulations at the time they were doing whatever they were doing. EG: LSD was a legal drug when the folks around Stanford were playing with it. Also, I still don't think there are any real regulations/laws regarding customer data in the US, which obviously should apply to Facebook and their ilk.
When I was managing stuff at SGI/Cray etc... we were constantly going to the US Gov, who were our largest customers by far, and saying: "Here's what we're up to. We think that others will be able to do this within a few years. You need to get the US Congress to do something about regulating this stuff." (my paraphrase).
I was the point person for SGI/Cray in talking to our US Gov. customers. While the various Intelligence Agencies, and to a lesser extent the US Military, did listen. As a group, we got exactly NOWHERE with the US Congress or any State Government. Now, of course, that the shit is hitting the fan it is all the fault of those evil technology companies. Give me a freaking break!!! The first software which manipulated elections in the way Russia is trying to do to the US was written at Xerox PARC under contract to the US Gov. I worked on it in the '80s. For anyone in the US Gov to claim that they didn't know what was going to happen is simply a lie, or they are too stupid to listen to their own Intelligence Services. (That last bit is key to the problem)
Here's a public example. With help from a small group of Tech companies, the US Gov. was able to literally blow up a large number of very expensive Iranian nuclear reactors. Yet, at that exact time, various committees in the US Gov were taking testimony about US vulnerabilities to similar attacks. Was anything done? Nope. Nada, zilch, nothing.
The most common response from the US Congress, at whose feet the blame should be laid, was to remark that this seemed pretty unlikely and that they didn't want more regulations on Industry. One effect of the US Gov not wanting to encumber US Industry with "regulations" is that one can make a fortune in the short term off of doing things which are simply idiotic in the long term, and in many cases things which put the US Gov at risk. If you'd like a painful example, do a bit of reading about how easy it is to crack US Voting machines. It's simply appalling. The States and the US Gov have been told, and told, and told about this. We even ran a contest in which a high school kid hacked the #1 electronic voting machine within 10 minutes. The response: nothing. It was deemed by States that it was too expensive to toss the obvious pieces of shit which they had bought to use voting machines and replace them with anything else, even paper ballots!
Whenever I think about this idiocy I get really pissed off.
On to Palantir. I don't' know them well. But I have a story for you to consider. Anytime you put a company like Palantir in charge of "all your most valuable data", you have effectively taken a dependency on their security and honesty. Consider the lowly cell phone. It used to be that "bad guys" used them for most of their business. Those customers thought that turning them off or hanging up would stop the microphone from listening to what they were saying. They even thoughts (and some still do) that taking the battery out would turn the thing off. It turns out they were wrong about both things. For well over a decade, maybe two, the US Intelligence Agencies were using cell phones to record conversations, transmit the location of bad guys, etc.... The folks who took security seriously, like Osama Bin Laden, didn't go anywhere near a cell phone. For good reason.
What Palantir is doing is helpful to Industry. It is also the PERFECT insertion point for someone who wishes to steal all the data. I have no idea if this has happened, if the US Intelligence guys have inserted code into Palantir to allow them to track things, or if this is just my paranoia. But, I would look long and hard at that company before putting all my data into their product.
Obviously, security is a form of friction in getting things done. Folks don't like friction. But removing security or regulations that require security puts folks at risk. The only real question is: Is the gain of running fast and breaking things adequate to make up for the obvious losses.
In the case of hacked elections - the answer is clearly no.
In the case of rampant gene splicing - I believe the answer is no.
In the case of banks - Hey, as long as they underwrite the loss sure go fast and break shit.
Sorry for the long rant. It's obviously something I care deeply about.
Posted: Thu May 16, 2019 6:39 am