Watch this episode on YouTube.
Reasonably Accurate 馃馃 Transcript
Let's make sure we're going live on all the different sources. Always the fun little uh start up period here. Uh It is. Uh here we go. We're going out live right on Mornings with Mark number 043 cool beans.
And we are going live on Periscope. Hopefully this is also going to work. All right, good morning, everybody Mornings with Mark uh today. Um You know, it was off air yesterday because I was at a fantastic event in Toronto um Cloud Tech um hashtag Cloud tech uh from yesterday, if you wanted to follow along um after the fact and see some of the tweets and the great content that was out there.
Um really cool event um hosted by it World uh Canada, sponsored by Trend Micro. Um Lots of great discussion, lots of great um content. Uh definitely worth checking that out today. As promised, I want to talk about uh the results of two, two days of Facebook's F eight conference.
I realize the irony of talking about that yet again on a Twitter stream. Um But you know what this is how it's going to be, uh simply because, um you know, it's important. So what I wanted to talk about and so I was just checking something there.
Um What I wanted to talk about um was the theme out of fa so there's some really cool interesting announcements, of course, you know. Oh, great. Um Like the Oculus Go portable, lower grade um VR headset.
Um they announced um you know, some improvements on um photo recognition, uh video chat and Instagram. Like they got there, there was some content there for sure, designed to get you excited about the platform, designed to get you excited about the advances.
The challenge here is that even with Zuckerberg sort of mea culpa saying, hey, there is an issue. Um This is what it was um blah, blah, blah. Um um you know, sort of like one hand, they're like, hey, how's it going while they're stealing your wallet at the back?
Um So it's this question of trust and when you are a, um let me just make an adjustment here again. Um When you are, when you are under a scandal, when you are um trying to deal with um restoring trust, um That's a really difficult thing.
And what I wanted to talk about today was sort of how that relates to security to privacy within your organization, um or within sort of individuality. Um Now, the challenge is, is that you need, it's all about reputation.
So right now, Facebook's reputation is mud. It's been dragged through the mud, you know, Zuckerberg in front of Congress multiple times or in front of the Congress in the house. Um, and, you know, you can't go a day without hearing another, um, piece of the puzzle, right?
And the question is continue to be raised and this is a very good thing is, you know, where is Facebook stand on data privacy? On user information? They came out and said, you know, ok, it's our fault.
We're going to do better. We're going to hire more people. Um Our A I is going to help find um you know, fake content content, you know, hate content, this kind of stuff, we are going to do better.
But at the same time, they also announced a new feature for connecting, making Facebook into a dating site. They said, well, don't worry, you know, we're going to protect your privacy there and other people who can see your profile are not going to be able to see that you have um that you know, your dating activity.
And that's again, it comes down to the user information and information about the user. Facebook is pretty good at making sure that we don't see each other's information. It's everybody else we have to worry about.
It's Facebook, the platform and how they repackage that and sell that to advertisers. The dating launch was horribly tone deaf and badly timed because it's another way that they're harvesting more information that we're voluntarily giving them so you can't engender trust and repair if you are continuing to do and sort of doubling down on harvesting more and more information.
I mean, this is a lesson sort of to learn for normal security teams for working within an organization is that security is all about trust and transparency. So when you launch a new security control, don't tell anybody about it.
That is, you know, a strike against you, you need to be upfront and transparent. So an example I'll use is when you're doing content filtering. So um your outbound proxy, how everybody connects to the internet and you put that in place for the first time or you change a category or that entire monitoring program, there's value there, there's security requirements there.
But it's also very tempting for people to start filtering based on hr policies that's not necessarily wrong, but you need to do that transparently. You need to say, hey, we've put in this security control.
It filters all the outbound traffic. There's no humans looking at it. Hey, we've configured it not to break your banking. So we're not going to intercept your banking information. We've also configured it just to automatically drop any security content.
It see that's not a human doing it. And by the way, we've enabled um you know, uh adult level filter. So there's no pornography. Um we disabled gambling, blah, blah, blah, blah, blah. Um Each decision needs to be on the organization on the company but it needs to be transparent, communicated to the users because that engenders trust, right?
That builds up that relationship or explain, hey, we locked down your end points, your laptops, your desktops with application control because we're seeing way too many security issues from automated malware. And as a result of that, you're no longer going to be able to run these applications that aren't approved by it unless you go through the following smooth and seamless process.
Again, transparent and open that agendas trust what we saw from Facebook today was or this week was a phenomenal example of the exact opposite. We take it seriously. I'm sorry, we're gonna do better. We're going to hire more people to um you know, monitor for content and take that bad content down.
We're going to do app reviews again where we never use or where we stopped doing that for a while. Oh And by the way, we've got this great new feature. Now, we want to know when you guys are hooking up when you're connecting with new people on a romantic or um you know, on a partnership level.
And by the way, we've scanned, we have built the best A I in image recognition because we scanned and harvested all of your photos on Facebook and Instagram. Aren't we amazing? You can't have it both ways.
You know, there are tricky questions here. There are tricky challenges that I think need to be addressed. That should be addressed, that need discussion, they need transparency, they need to be brought into the open and have an honest and earnest discussion that's difficult because people get sort of hostile or they get defensive and they get emotional about it.
We need to put that aside and have a data driven discussion. This ties back actually to something I was saying last week at the Atlantic Security Conference. And you know, I started off by saying you may be really uncomfortable with the following talk.
I was talking about the challenges around operational technologies and security, so you may be really uncomfortable. This is an important thing that we have to talk about. We have to look at it objectively and maybe make some hard decisions.
But like let's make those decisions out in the open. I think that's the key to security, that's the key to privacy. Horrible example from Facebook this week, let's learn from it and do better. Um This is Thursday, yay.
I know what day it is progress. Um Hit me up online, marknca always willing to chat about this. What do you think about Facebook's announcements this week? Um What do you think about the bigger issues?
How do you handle being transparent? Um Hit me up in the comments below. Um I'll fire up some links related to the Facebook announcements um and some interesting commentary on it. Uh Always happy to have a discussion.
I hope you guys have a fantastic Thursday and I will talk to you tomorrow.
