Eric Liftin - MESH Architectures - Mesh Blog

Thursday

Dec182014

Lessons from Sony

Thursday, December 18, 2014 at 4:35PM

The Sony hacking blow-up — with all of its aftershocks — surely has a lot to teach us. And it will be interesting to watch how various strains of corporate America — as well as non-corporate citizens — modify their habits in response.

I run a startup called Tunnel X that offers, for free, secure, private online conversation. Tunnel X takes a number of measures to help ensure that your online conversations aren’t read by anyone other than the person you intend.

I talk to people all the time about what we do — friends, industry people, fellow cocktail partiers — and overwhelmingly the response is, “that’s cool. But I don’t need that. I’m not a drug dealer or a terrorist or a cheater. Who cares what I’m saying?” Well, I doubt many people at Sony, if any, anticipated what happened. Regular email and regular texting — not to mention social apps like Facebook and Snapchat — are simply not secure. Even if you are not being individually targeted, your account could be in a large group that get hacked and released to the public. How would you feel about every email, every text, you have written and received going out to the public domain? (Gizmodo has a good take on that here.)

Practices will have to change. I predict that by the end of 2015, things will look different. Security will be better (there will still be weaknesses, but security will improve). Encryption will be more widely implemented. And people will be more careful about what they send over the Net. I think people should be able to have a private conversation online. That’s why we created Tunnel X.

How is Tunnel X different from, say, corporate email? (And of course this is a broad comparison — different companies have different policies and practices, and I don’t pretend to know how Sony operate their IT.)

First, our focus is on security. Access to our servers is conscientiously protected. You might think, well, Sony is a big, resourceful company with an IT department — aren’t they protected, too? The answer is, you would think so. But we have seen again and again, at many companies, including Adobe, a software company, that security lapses are commonplace.

Second, all the messages stored on our servers, waiting for people to read them, are very well protected with state-of-the-art, 256-bit encryption. This is relevant to the Sony incident because the hacker team broke in and didn’t just intercept some messages coming through. They grabbed a huge number of stored messages. If someone manages to break in and steal all of our messages, they still won’t be able to read them.

Third, access to individual accounts is notoriously easy for hackers to obtain. Even many of the secure messaging apps use basic username/password authentication. At Tunnel X, we use a long, 256-bit key to sign you in. On our web site, this is derived from a digital photo that you can recognize and keep safe on your computer plus a 6-digit PIN (on mobile we generate the image file for you and keep it in the app on your phone).

Lastly, Let’s remember the context in which you read and write messages. Your inbox sits on your computer screen most of the day. We read our texts waiting in line to order a sandwich and sitting in a conference room. Taking our more sensitive conversations out of the promiscuous stream of email and texts is a good move.

Eric Liftin |

References (30)

References allow you to track sources for this article, as well as articles that were written in response to this article.

Response: gw timeshare services

at gw timeshare services on December 21, 2014

Eric Liftin - MESH Architectures - Mesh Blog - Lessons from Sony
Response: Inspired Silver

at Inspired Silver on December 22, 2014

Eric Liftin - MESH Architectures - Mesh Blog - Lessons from Sony
Response: please click the following internet page

at please click the following internet page on December 24, 2014

Eric Liftin - MESH Architectures - Mesh Blog - Lessons from Sony
Response: Jared Londry

at Jared Londry on December 24, 2014

Eric Liftin - MESH Architectures - Mesh Blog - Lessons from Sony
Response: Jeff Halevy

at Jeff Halevy on December 25, 2014

Eric Liftin - MESH Architectures - Mesh Blog - Lessons from Sony
Response: Andrew Fleming Chicago

at Andrew Fleming Chicago on December 25, 2014

Eric Liftin - MESH Architectures - Mesh Blog - Lessons from Sony
Response: Corey Park

at Corey Park on December 29, 2014

Eric Liftin - MESH Architectures - Mesh Blog - Lessons from Sony
Response: Corey Park

at Corey Park on December 29, 2014

Eric Liftin - MESH Architectures - Mesh Blog - Lessons from Sony
Response: just click the up coming internet site

at just click the up coming internet site on December 30, 2014

Eric Liftin - MESH Architectures - Mesh Blog - Lessons from Sony
Response: Eric Gonchar

at Eric Gonchar on January 2, 2015

Eric Liftin - MESH Architectures - Mesh Blog - Lessons from Sony
Response: Eric Gonchar

at Eric Gonchar on January 2, 2015

Eric Liftin - MESH Architectures - Mesh Blog - Lessons from Sony
Response: Eric Gonchar

at Eric Gonchar on January 2, 2015

Eric Liftin - MESH Architectures - Mesh Blog - Lessons from Sony
Response: Buy Eczema Cream

at Buy Eczema Cream on January 3, 2015

Eric Liftin - MESH Architectures - Mesh Blog - Lessons from Sony
Response: Kion Kashefi

at Kion Kashefi on January 5, 2015

Eric Liftin - MESH Architectures - Mesh Blog - Lessons from Sony
Response: Amir Hasan Mojiri

at Amir Hasan Mojiri on January 7, 2015

Eric Liftin - MESH Architectures - Mesh Blog - Lessons from Sony
Response: Namita Chittoria

at Namita Chittoria on January 7, 2015

Eric Liftin - MESH Architectures - Mesh Blog - Lessons from Sony
Response: Amir Hasan Mojiri

at Amir Hasan Mojiri on January 7, 2015

Eric Liftin - MESH Architectures - Mesh Blog - Lessons from Sony
Response: click here to find out more

at click here to find out more on January 8, 2015

Eric Liftin - MESH Architectures - Mesh Blog - Lessons from Sony
Response: Www.Feedage.Com

at Www.Feedage.Com on January 8, 2015

Eric Liftin - MESH Architectures - Mesh Blog - Lessons from Sony
Response: http://www.watchmovie2015.com/bluraymovie/21724

at http://www.watchmovie2015.com/bluraymovie/21724 on January 8, 2015

Eric Liftin - MESH Architectures - Mesh Blog - Lessons from Sony
Response: meez coin hack

at meez coin hack on January 8, 2015

Eric Liftin - MESH Architectures - Mesh Blog - Lessons from Sony
Response: Vinyl Banners VS Mesh Banners

by sketchplan at sketchplan on March 6, 2017
Response: iOS 11 beta

by Jason Williams at iOS 11 on March 14, 2017

iOS 11 beta
Response: take look

by kanji at vijay on May 28, 2018
Response: Hire Zoho CRM Consultants & developers

by Owen Ginn at Zoho on January 26, 2021
Response: Smart Contract Audit Services

by manoj at Immunebytes on December 29, 2021

Hire a leading Smart Contract Audit Company that has hands-on experience on the various Blockchain frameworks like ETH, BSC, PolkaDot, and others.
Response: Wedding organizer ,destination weddings in Prague

by pragueeventery at pragueeventery on September 25, 2022

pragueeventery
Response: Thinking Of Selling Your Home In Dubai?

by chelsea international at chelsea international on October 17, 2022

chelsea international
Response: https://www.gesthomes.pt/planos

by Gesthomes at Gesthomes on March 23, 2023

Gesthomes
Response: Lifeguard recertification near me

by Emilyjohn at American Lifeguard association on December 12, 2024

American Lifeguard association

Reader Comments

There are no comments for this journal entry. To create a new comment, use the form below.

Post a New Comment

Enter your information below to add a new comment.

My response is on my own website »

Author:

Author Email (optional):

Author URL (optional):

Post:

↓ | ↑

Some HTML allowed: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <code> <em> <i> <strike> <strong>