May 2, 2012

Is Google Watching You?

1.    How does Google's business model use personal data?
Answer:

Google is firmly committed to the privacy of our advertisers and users. While Google does add a cookie to a user's computer when he/she clicks on an ad, this cookie expires in 30 days, and Google does not associate a user's search activity with his/her ad click history.

2.  What do you think are the major privacy concerns raised by Google's business model and applications?
Answer:

The most common concern of our privacy information as an individual that one who use Google account.

3. Do you think Google has taken adequate measures to protect its user's privacy? Explain your answer.
Answer:

Google must be adequate to protect its user to prevent from unwanted issues due to unsecured privacy.
“To certain degree information gathering can be ethical and very useful; however, Google has stepped over the boundary of ethics because of the amount of information they are gathering through their various products and their loose privacy policy that allows for third party exposure.  This behavior is unethical because it does not “most dutifully respect the rights of all affected”.


Chapter 4 Case Study: Is Your Passport Secure?

1. What type of security breaches of medical record are commonly today?
Answer:

All new passports will contain the RFID feature the tiny chip, embedded in the back cover of the passport, contains in digital form the same information printed on the biographical page of the passport: the person’s name, date of birth, gender, place of birth, issue and expiration dates, and the person’s passport photo. When the e-passport is opened and placed within a few inches of a passport “reader” at a US Customs station, it reveals its information. By displaying the personal data in two forms, print and digitally, an e-passport should be much harder to alter or forge. The digital file is “locked” and unable to be changed even if accessed, the State Department says. Metallic shielding material in the cover and spine make the chip impossible to read illegally, or “skim,” unless the passport is opened, and then only from a few inches away.

2.  Why are passport cards less secure than e-passports? What types of breaches could occur with passport and EDL cards?
Answer:

As what I have read in the internet if  payment cards with RFID chips embedded in them are simultaneously more secure and less secure than traditional payment cards because if a  hacker who gets within touching distance of your unshielded Paypass card can read its data without your knowledge and  passport is secure as long as it is not opened more than a quarter of an inch. On the other hand, the card never leaves your hand. E-passports has more capabilities in terms in security it secure travel document than a conventional passport, and protect the privacy and safety of the passport holder.

3. What measures do you think federal and state governments should take to protect the privacy of individuals when issuing these electronic identity cards?
Answer:

Each state set its own rules and criteria regarding the issuance of a driver’s license or identification card, including the look of the card, what data is on the card, what documents must be provided to obtain one, and what information is stored in each state’s database of licensed drivers and identification card holders. To protect themselves against electronic identity theft by phishing, hacking or malware, individuals are well advised to maintain computer security, for example by keeping their operating system fully patched against known security vulnerabilities, running antivirus software and being cautious in their use of IT.Privacy protection laws have been introduced, or will be introduced shortly, in approximately one half of OECD Member countries (Austria, Canada, Denmark, France, Germany, Luxembourg, Norway, Sweden and the United States have passed legislation. Belgium, Iceland, the Netherlands, Spain and Switzerland have prepared draft bills) to prevent what are considered to be violations of fundamental human rights, such as the unlawful storage of personal data, the storage of inaccurate personal data, or the abuse or unauthorized disclosure of such data.

Whistle-Blower Divides IT Security Community

1. Do you think that Mike Lynn acted in a responsible manner? Why or why not?


Answer:



Yes, it is not a responsible manner because Mike Lynn he only decides for himself and not for others.

2. Do you think that Cisco and ISS were right to pull the plug on Lynn's presentation at the Black Hat conference? Why or why not?

Answer:

Cisco and ISS must need to be fair and accept the consequences regard to be in job and being true to their works. This is unprofessional thing in services offering and Cisco and ISS has faced the issue about Lynn.

3. Outline a more reasonable approach toward communicating the flaw in the Cisco routers that would have a led to the problem being promptly addressed without stiring up animosity among the parties involved.
Answer:
When Mike Lynn has created discoverable network worm he would put herself to the possible risk and having a chance of controlling routers across the internet.




Chapter 3 Case Study: Trading Scandal at Société Générale


1. Peter Gumble, European editor for Fortune magazine, comments, "Kerviel is a stunning example of a trader breaking the rules, but he's by no means alone. One of the dirty little secrets of trading floors around the world is that every so often, somebody is caught concealing a position and is quickly - and quietly - dismissed... [This] might be shocking for people unfamiliar with the macho, high-risk, high-reward culture of most trading floors, but consider this: the only way banks can tell who will turn into a good trader and who even the most junior traders to take aggressive positions. This leeway is supposed to be matched by careful controls, but clearly they aren't foolproof." What is your reaction to this statement by Mr. Gumble?

Answer:

Different fields in trading is a full of opinions about the right way to trade. We should focus on our own instinct and ideas. If trading is as much about self-development as it is about having a proper profit and loss statement, then as a trader you need to rely more on your individual perspective than on collective opinion.

2. What explanation can there be for the failure of SocGen's internal control system to detect Kerviel's transactions while Eurex detected many suspicious transactions?

Answer:

SocGen had an image as the best French banking. What is striking here is the contrast between the mediocrity of the trader and the scale of the catastrophe. And when the heads of SocGen discovered this, they could not believe this one man had managed to do so much, so surreptitiously.



Apr 17, 2012

3. When Certification Is Justified

1. How can organizations and vendors change their certifications programs to test for skills as well as core knowledge? What issues might this introduce?

They are making good use of certification as a hiring gate both for entry-level position and for jobs that require specific core knowledge.


2. What are the primary arguments against certification, and how can certifying bodies change their programs to overcome these shortcomings?


- While there is no universal call for certification or a uniform examination procedure that answers all needs within the IT profession, certifying bodies are beginning to adapt their programs to better fulfill the evolving needs for certification in IT.


3. What are the benefits of certification? How might certification programs need to change in the future to better serve the needs of the IT community?


- Certification provides ample opportunity to publicize and promote your support center’s achievement within your organization, to your executive management team, to your customers, and to your peers in the industry.

2. Waste Management Sues SAP for Alleged Fraud and Breach of Contract

1. What actions should WMI have taken to lessen the risk of this project and avoid these problems?

- The particular actions must WMI have taken to minimize the chance with this venture and prevent these kinds of issues will be that they can get back to their particular outdated method apart from should they obtain a computer software they need to ensure the particular testability with the method.


2. What sort of losses has WMI incurred from the delay of this project? How has the lack of success on this project affected SAP?


- Slowing down regarding venture will be a single sadness a enterprise came across. Inside the section of WMI, there’s plenty of demise like the career of these staff as well as the method. Specifically, about the revenue, customer care, and its particular strength. Not enough accomplishment around the venture regarding WMI would certainly afflicted SAP quite definitely, given that they’re the particular liable with the untested computer software a WMI obtained. Through these kinds of the particular SAP would certainly misplaced the particular reliability of these consumer.

3. Do research on the Web to find out the current status of the lawsuits between WMI and SAP. Write a brief report summarizing your findings.

- Slowing concerning endeavor would have been a solitary unhappiness the business discovered. Within the portion of WMI, there’s lots of death such as the profession of those personnel along with the technique. Particularly, concerning the income, customer service, as well as power. Insufficient achievement round the endeavor concerning WMI would likely stricken SAP very certainly, considering the fact that they’re the specific responsible using the untested software applications the WMI acquired. Via such the specific SAP would likely lost the specific dependability of those customer.


Chapter 2 Case Study 2 : 1. Google Named $1 Billion Trade Secret Lawsuit

1. This incident illustrates some of the potential problems for small software developers working with giant software manufacturers to extend or enhance their products. Provide two good reasons why small developers should still consider working closely with large software firms.

- The two reasons might to have more connection to other companies and to always have a project because if you have connection with other companies, if they have a problem they will automatically contact you since they already know you.

2. What measures could LimitNone have taken to better protect itself from Google’s alleged actions? What measures could Google have taken to protect itself from this lawsuit?

- Maybe if they had made the contract then it could be used to protect them, I guess. Maybe they must hire an excellent lawyer.

3. Do research on the Web to find out how this case is proceeding in the courts. Write a short summary of your findings.

- Apparently Chicago-based firm Limit None is suing Google for misappropriating the trade secrets of its “gMove” application that Google allegedly used to develop its Email Uploader.
The two-count lawsuit also claims Google violated Illinois’ consumer fraud laws.
The lawsuit was filed Tuesday by Kelley Drye & Warren LLP – “the same commercial litigation group which challenged Google over the company’s online advertising system,” SlashDot noted.
Details of the suit can be found in the press release sent out by the law firm.
“Its shocking that Google would engage in this type of conduct; particularly when the other party is a small software company that built its business specifically to help Google sell its existing and future products,” said Susan Greenspon of the Chicago office of Kelley Drye & Warren LLP. “People need to realize that Google is just another large publicly traded corporation that will do whatever it takes to increase its revenue, even if that means risking its reputation among developers.”
The lawsuit alleges that in February, 2007 Google launched a suite of business software applications called Google Apps. The software was designed to challenge Microsoft’s Office suite of products (Word, Excel, Outlook, etc.) which has 500 million users. According to the lawsuit, unlike Microsoft’s products, Google Apps does not require a customer to download software onto his or her computer. Instead, Google Apps is a collection of web-based applications that reside on Google’s servers. The lawsuit alleges at the time of its launch, however, Google did not have a workable way to enable Microsoft Outlook users to easily migrate their email (called gMail), calendar and contacts to Google’s platform.
In early 2007, LimitNone developed just such a product to solve this problem and in March confidentially demonstrated the migration tool to senior members of the Google Apps team. According to the complaint, the Google Apps executives invited LimitNone to be part of the Google Enterprise Professional Program, to further develop and market the tool, and assured the company that it had no intention of developing a similar product.
The lawsuit alleges the tool, which was originally named “MY GRATE” was later renamed, at Google’s insistence, “gMove”. Though the product retailed for $29, Google asked that LimitNone sell it to Google’s customers for $19.
The lawsuit claims that throughout the remainder of 2007, Google promoted LimitNone and gMove and repeatedly told company executives that it would not develop a competing product. Google highlighted gMove on its website and introduced the company to its largest customers (including Proctor & Gamble, Intel, Orbitz, Morgan Stanley and Toys “R” Us). In addition, Google asked LimitNone to present the product to its technical sales personnel, to meet with the Google Open Source team and to continuously share updated versions of gMove.
In December, 2007, as detailed in the complaint Google told LimitNone that it would, in fact, be releasing a competing product and giving it away for free to its “Premier” customers. The lawsuit alleges that Google’s product, called “Google Email Uploader” steals gMove’s look, feel and functionality.
According to the complaint, Scott McMullan, a senior executive in the Google Apps partner program, told LimitNone that the potential for 50 million users – was “just too big to come from someone else” and that “this is how Google operates.”

http://searchenginewatch.com/article/2053931/Google-Getting-Sued-For-1-Billion-Over-Gmail-Tool

I Guess if that is how Google operates, then maybe let us just respect of what the Judges and Juries decisions. But for the part of the Limit None, it’s too painful to be treated like that, I know everyone is doing their best to be competitive and to earn much but I think we must not offend someone that much. But this is only my comment, and whoever is reading this. I hope you will not treat this seriously. This is for the completion of our projects only.