Respond to 6 discussions

1. Reply minimum 150 words response

In this part of the discussion for this week we are looking at cloud computing and its security.  In some ways cloud computing security is not much different than normal storage options on a personal computer or laptop.  When storing information on a personal computer or laptop, hopefully the IT professionals in the organization have secured the network.  If they have taken the proper procedures to secure the network, your computer should be safe from potential breaches.  In the event that the organization decides to take on the task of providing an internal cloud on their network, it to should be protected like other IT devices connected to the network.  But as Kinsella (2012) points out, that is not always the case.  If the company doesn’t keep up with the higher security demands of the cloud storage, it opens the door to the network being exploited.  

When combating the threats that cloud security face there are many different technologies and solutions that organization’s IT departments could chose to adopt or use.  As Fogarty (2012) points out, cloud security risk are here to stay.  Rather than organizations diving all every single techniques and solutions that are out there, they should look at balancing their risks they take with using the cloud.  It really liked the technique that was described in the CSO article.  Here they talked about encrypting data before it is placed on the cloud.  We all know that once your data leaves your secure network, its path to its final destination is not always a secure route.  If plain-text data is sent through an unsecure path, the data can easily be take and used to exploit the network.  Instead, companies will encrypt or tokenize their data before sending it off to the cloud.  This allows them to ensure that their data is secure from potential loss (Kinsella, 2010).

 

Resources

Fogarty, K. (2012, August 10). The biggest cloud computing security risk is impossible to eliminate. Retrieved from http://www.networkcomputing.com/security/the-biggest-cloud-computing-security-ris/240005337

Kinsella, J. (2012, September 26). 5 (more) key cloud security issues. Retrieved from http://www.csoonline.com/article/717307/5-more-key-cloud-security-issues

2. Reply minimum 150 words response

Cloud Security is different from that of traditional network architectures and what you think the future holds for Cloud Security, and it's adoption rate with companies.  What are some technologies and solutions that can be used to reduce risk for the "Cloud" or "Cloud Data."

With about 9 years of working in an IT related field, I still feel like could storage is new to me as I never have really used in a professional situation. I just keep thinking back to the poor souls that we attached to the Ashley Madison scandal slash data hack, and if I remember correctly, it was cloud-related. Additionally the apple I cloud hack, and the Snapchat data release was also cloud-related (Davis, 2014). Many of the cloud storage devices all use applications and require some type of sign on information. But unfortunately, the applications themselves are not secure enough especially in the case of sensitive data transfer additionally sometimes the data that is being transferred is not encrypted, so it is now also vulnerable in transit. Multi-factor authentication could be a partial solution to the logging portion of cloud storage, but then convenience is lost because a second app would be needed. As I believe that cloud storage is here to stay parts of its security are still in its infancy, and hopefully, it will continue to grow as its use does (Kinsella, 2012).

 

Davis, A. (2014, October 1). Security Think Tank: Three ways to reduce risk of cloud data leaks. Retrieved April 19, 2018, from https://www.computerweekly.com/opinion/Security-Think-Tank-Three-ways-to-reduce-risk-of-cloud-data-leaks

Kinsella, J. (2012, September 26). 5 (more) key cloud security issues. Retrieved April 19, 2018, from https://www.csoonline.com/article/2132313/cloud-security/5--more--key-cloud-security-issues.html

3. Reply minimum 150 words response

I found a pretty good and recent article that covers a bunch of different applications for remote access. The top application is the Fisher (2018) article is call TeamViewer which has “tons of features” and requires “no changes to router or firewall configurations.” The application also works with basically all of the common operating systems you would likely find in an organization including Windows, Linux, Mac, and Android (Fisher, 2018). I do think the lack of router and firewall changes to be a little strange to be honest. It would seem that allowing access from outside the intranet would automatically make certain changes mandatory. Perhaps this is one of the weaknesses with this application in that by telling administrators this, it gives them an undeserved sense of security. 

Remote Utilities is the next application on the list provided by Fisher (2018). This one also seems to be fairly easy to install and put into use. One major downside I see with this application is that it can be run from a flash drive (Fisher, 2018). Flash drives are easy to lose, and easy to be installed in areas with very little traffic. Depending on the organization, someone with malicious intent could stick this into an open USB drive and have access to a system until it is found one way or another. The biggest problem I see with remote access is how little security is put into them by administrators. I work for a community college and I can remotely access my work email, and customer service email from home incredibly easy. No two-layer authentication, nothing. I can even access student records from home if I wanted to. I could potentially lose my job if I did, but the information would have already been compromised. It all depends on the motivation of the person who can get in. 

 

 

References

Fisher, T. (2018, April 13). 15 Free Programs for Remotely Accessing Your PC. Retrieved April 19, 2018, from https://www.lifewire.com/free-remote-access-software-tools-2625161.

4. Reply minimum 150 words response

(1)Research the different types of VPNs and other relevant remote access applications.

· Client based VPN

Typically used between a single user and the remote-accessed network the client based VPN is often application based and uses a username and password for access. This would be the easiest way for users to access a network that requires the use of a VPN. Commonly used on any operating system and sometimes mobile devices. Examples of this type of VPN are “Cisco’s AnyConnect, Pulse (formerly Juniper), and Palo Alto Networks’ GlobalProtect” (Banks, 2018).

· Network-based VPN

Commonly used in an environment where it is needed that to connect two networks across an untrusted network. This type of VPN commonly used hardware devices and significant firewall and router rules and policy.

· IPsec Tunnels

· The simplest kind of VPN and it is probable that most routers and firewalls are capable of using and building one.

· Policy-based

· Pre-shared key and Access control lists

· Dynamic Multipoint VPN

· Eliminates the need to know IP addresses

· Cisco tech

· More complex

(2)Discuss what they are and some common techniques used to try and subvert their security.

Accessing the data inside the VPN tunnel is not an easy task as that is how it was designed. One of the most common ways to have access to a VPN when not allowed espically when using applications for login info would be gaining access to that sensitive information. Either social engineering or keylogging, the typical weak username, and passwords could all be methods to subvert the security, but it's not really the security it is the human that is being subverted. Finally one of the other possibilities could be incorrect settings as “Hacking into a VPN connection involves either breaking the encryption by taking advantage of known vulnerabilities or stealing the key through some crooked means” (Fawks, 2018). Which in some cases could take years depending the computing power and encryption used.

 

Banks, E. (2018, March 29). 4 Types of VPNs and When to Use Them. Retrieved April 19, 2018, from https://www.auvik.com/media/blog/types-vpns/

Fawkes, G. (2018, January 08). Can VPNs Be Hacked? We Did the Research, Here's the Guide. Retrieved April 19, 2018, from https://www.vpnmentor.com/blog/can-vpns-hacked-take-deeper-look/

5. Reply minimum 150 words response

1. In addition to the self-driving automobile (which everyone will analyze), which other four Google technologies would you like to research for your Final Case Studies?

a. Google Deepmind – Artificial intelligence research and its application for positive impact.

b. Google Contact Lenses – Smart contact lens project aims to assist people with diabetes.

c. Project Makani – Kites that harness energy from the wind.

d. Project Soli – A sensing technology that uses miniature radar to detect touchless gesture interactions.

2. Share one interesting finding with the class about each of the five technologies you will be researching (your four chosen technologies plus the self-driving automobile).

Google Deepmind is conducting research to improve artificial intelligence for scientific applications. The research team developed a single program that the AI machine taught itself to use and then played and won 49 different Atari game titles. The eventual goal is to have the AI learn from human history, science, and technology to help humanity.

Google Contact Lenses is basically a surgical eye procedure. Your natural lens is surgically removed and replaced with the Google lens which contains data storage capability, batteries, sensors, a radio and other electronics. This artificial lens then takes over the job of focusing light into the retina and was initially developed for people with diabetes.

Project Makani is an aerodynamic kite that is tethered to the ground and flies in loops. While in the air, rotors on its wing spin as the wind moves through them which turn electric motors. The current prototype is able to generate 600 kilowatts of energy.

Project Soli is developing sensor technology to track and recognize dynamic gestures expressed by fine motions of fingers and hand. This technology can be embedded in wearables, phones, computers, and cars to make controlling things a lot quicker and easier. This could also be extremely useful for people that life with disabilities.

Waymo (Google self-driving car) uses sensors and software that are designed to detect pedestrians, cyclist, vehicles and road work around it and do this up to 300 yards away, in 360 degrees. It predicts the behavior of all the road users and has over 5 million miles of real world experience.

3. Which of these technologies do you think has the greatest potential to improve our society in the future? Why?

I think Google Deepmind has the greatest potential to improve our society in the future because this technology, in essence, is creating a genius mind that can answer all of the unknowns. The developers are pushing the boundaries of AI so it can learn to solve complex problems without needing to teach it how. This development is in response to how slow current progress is in answering complex social questions like climate change and healthcare. Deepmind has already been employed in solving problems and was able to reduce energy consumption by 40% for Google data centers.

6. Reply minimum 150 words response

Hello, 

 

Besides conducting research on Google’s self-driving automobile, I will like to analyze the following technology: Google Nest, Project Soli, Android P, and Project Wing. 

 

Google’s self-driving automobile utilizes different software for its functions. The project, which is now known as Waymo, uses LIDAR, radar, and cameras to gather data and images of the surroundings; with the given information, the self-driving automobiles will then predict and react accordingly (Waymo, 2018, How it works section, para. 3-5). It will be interesting how Google will enhance the software for accurate and safe driving to eliminate traffic accidents.

 

Google will partner up with Nest, a home automation firm, to create products. Specifically, these Nest products will integrate Google Assistant and other improving artificial intelligence (PYMNTS, 2018, para. 7-8). It will be amazing what type of products will succeed or fail in the market. Currently, Nest products that utilize Google Assistant include thermostats and alarm systems (Nest, 2018, para. 1). What other type of innovative products would Google and Nest create to help future home-owners with managing, cleaning, or repairing, their households?

 

In my opinion, Project Soli is one of the more interesting technologies. Google has created and will design more products that will use electromagnetic waves (specifically radar) to detect and interpret hand gestures (Soli, 2018, Soli gesture recognition section, para. 1-3). I believe successful research on how to improve the technology’s accuracy and reliability will be necessary to practical application.

 

Google’s next operating system for various devices will be titled Android P. Some updates to the system will include indoor position navigating, secure smart-card payments, and encrypted application configuration settings (Burke, 2018, para. 4-26). I view indoor positioning as beneficial for police training, and Android P’s increased security will help both programmers and consumers.

 

Project Wing intends to change logistics in various industries. Google will equip low-altitude drones with software to deliver goods (Project Wing, 2017, para. 4). I would like to see how Google achieves its goals of creating a drone network that shares the skies with other drones an airplanes.

 

If implemented appropriately, all of these technologies can greatly benefit society. However, I think the self-driving automobile has the greatest potential to improve society out of the ones I mentioned. Americans heavily depend on transportation for their livelihoods. Increased safety and convenience is always good for the public and the economy. As the technology improves over time and society transitions to completely automated driving, there should be fewer accidents, if any at all. As a result, Americans can save different costs, especially healthcare. Autonomous vehicles can provide benefits to various industries, such as medicine and entertainment. If ambulances become automated, managers would not require paramedics to drive; these paramedics can then solely focus on preparing and providing medical care in emergencies. Having self-driving automobiles will also allow other workers to rest or to prepare for their workdays.

 

 

References

 

 

Burke, D. (2018). Previewing Android P. Google Developers Blog. Retrieved from https://android-developers.googl

                eblog.com/2018/03/previewing-android-p.html 

 

Project Wing (2017). Project wing. X Development. Retrieved from https://x.company/wing/

 

PYMNTS (2018). Google assistant makes its home in nest cam. PYMNTS. Retrieved from https://www.pymnts.com/

                google/2018/google-assistant-nest-camera-ai-voice-activated-speakers/

 

Soli (2018). About Soli. Soli. Retrived from https://atap.google.com/soli/

                                                                                                                                                    

Waymo. (2018). Technology. Waymo. Retrieved from https://waymo.com/tech/