Saturday, October 17. 2009
Beautiful Security, Andy Oram; John Viega
Oram and Viega have an interesting comment on the Identity convergence in the cloud.
The plethora of Identity folks is really quite small, not sure how lucrative it is (based on an increasing degree of risk). With increasing risk, personal information is increasingly difficult to manage and protect. And there's far more options in play than Open ID and Microsoft Live ID. Since I'm studying fractions I wondered what the common denominator would be if you took all the systems together and came up with a number, and not just the typical ones that are mentioned in press releases and the literature. If so, there would have to be a constant, or unifying element like 137.
In an ecosystem each of the use case actors plays a role, and the public deserves a realistic look at the future. Viega and Oram do this by looking at the criminal underworld of carders who gather up account and personal information, (through techniques such as phishing and database break ins) and others who work with them, and then fast forward those issues into the cloud paradigm.
They pretty much lay out the details of how shoppers information was gathered from retail stores that had been penetrated by poor WIFI security practices, (don't use WEP on your WIFI) stored inappropriately, and siphoned off to the carder marketplace.
And what's really interesting is that the person that LE had working on the case was a former hacker, Gonzales, who the Secret Service said was working with both sides.
However, this was after around 50 to 100 million (or more) accounts had been stolen.
Systemically then, why should something be this vulnerable, or get to that level of loss? Some of it is due to poor security, but also due to the sheer mass of data flows.
These retailers really didn't put sufficient security controls into place. One example, Walmart, apparently reacted quickly with appropriate measures.
I'm reminded of Dirac who saw beauty in equations, predicting particles before they were found through mathematical logic. The quest for beauty is worth exploring here, looking for an elegant solution. So Dirac, Heisenberg, Pauli all shared ideas that opened up our conception of the universe, but how predictable is it really?
There are concerns by a fairly significant amount of evangelicals regarding Revelations, and while religious beliefs don't figure prominently into security systems design, that belief structure has affected society, especially when it comes to apocalyptic thinking. While apocalyptic thinking has had a long history, (numerous examples come to mind), post WWII, we have had to really sacrifice quite a few pre-conceptions to mathematical models of risk writ on a large global stage.
We often hear about proverbial political compromises being compared to "sausage making", a common product we enjoy, but not the specifics of how it gets done.
The expression is actually quite old (the first use I ever came across was in a random browsing of a dusty volume of ancient Greek prophecies), "beware the sausage makers".
Security is essentially an enabler of the new technologies, as a developer, one looks at how difficult it is to enable identity management for the domain that one working on.
The collaborative nature of working with different technologies (instead of focusing on one approach for the entire domain) leads to many benefits. In order to do this, the organization needs to be a participant in the process. While this comes as second nature to the IDM community, it's also somewhat the nature to also want to "choose" as to winners and losers, regardless of standards. If we look at competition, it's also interesting to look at how "lock-in" of markets occur due to initial conditions in chaotic systems.
Fairness. If a product locks-in a market because it is superior, this is fair, and it would be foolish to penalize such success.
If it locks in merely because user-base was levered over from a neighboring lock-in,
this is unfair [W. Brian Arthur]
That's why some not so very subtle uncompetitive practices occur, which in fact represent either overt or not so overt collusion.
There is a fundamental difference between collusion and collaboration, collaboration being one of the hallmarks of the evolving economy, and collusion being a fundamental element of economies in general, but ends up promoting systemic exploitation as opposed to systemic cooperation.
Short term this benefits the company, like pumping up the stock price, but ultimately affects the overall governance structure, and then the only question is who benefits and is the greater fool. All Ponzi schemes eventually fail, so why do they occur?
Of course when the regulators fail to act effectively, as in the sub-prime mortgage bubble, the promoted benefits of extending housing to a greater number of people ends up in reality, (after greed sets in) a scam where bad debt, no income, no record loans get repackaged and stripped onto Wall Street, based on some quant's idea of risk.
The value of what was traded was real, but after a point, broke, and had an unknowable value. It's that point that Viega recognizes in his risk and security analysis, where good competitive (meaning value creation) mechanisms give way to value destroying bad competitive propositions that reify a position, but still pay well, if temporarily.
It's also worth noting that a cloud service is independent from
any of the participating parties, and therefore can be a neutral and
disinterested facilitator. For a long time, companies have been able to
partition their network to allow limited access to trusted third
parties, or provide a proxy facility accessible to both parties. This
practice was not lost on the plethora of folks trying to compete for the
lucrative and crucial identity management area.
Identity management services such as OpenID and Windows Live ID operate in the cloud, allowing them to
bind users together across domains. [Oram/Viega]
Continue reading "Beautiful Security, Andy Oram; John Viega"
Thursday, October 15. 2009
A toast of hot cider
I raise up my mug of hot cider, "Bird in Hand Brand", and propose a toast in cyberspace from the banks of the Schuylkill with libations and honor to Chief Tammany.
While we ride in different canoes, the union that binds us is strong if the memory of the wampum belt is honored. Before computers, before optical, magnetic drives, and flash memory, we wove our understanding in beads of purple quahog, the path of parallel time lines down the river, without the vescia piscis. without the Riemann manifold, without Penrose tiling.
Those who toil under the buttonwood tree and work on change alley will not understand this; it has no currency for them, they do not yet hear the ringing tones of a nation in harmony.
May the blessings of health be shared equally among it's people, the fish and wildlife be preserved from pollution and multiply, and the trees bear abundant fruit. May we stand by the river and admire the beauty.
The cider mill carved in stone forms a hermeneutic circle of nature and science in harmony.
The apple that can be named is not the eternal apple.
Sit for a while on the banks of the Schuylkill, on the circular pattern of John Bartram's cider mill. Imagine Franklin and Bartram conversing about the useful knowledge obtained by Bartram in his dedicated identification of trees and plants, and the mason's methods used to carve the nether stone from the Wissahickon schist bedrock forged in the Cambrian era.
As they enjoy the cider pressed fresh from the mill, the harmony between the scientific method and the natural process is only eclipsed by the crisp autumn day and the cycle of return.
Billion years of carbon, we return to the garden to enjoy the harvest.
Continue reading "A toast of hot cider"
Tuesday, October 13. 2009
Higgs Boson
Interesting theory reported in the NYT about the Higgs Boson coming back to break the Hadron Collider. There's an interesting parallel between the loop of the big bang theory, i.e. that because the initial release of energy "broke" the storage containers, thus making Tikkun or repair of the vessels necessary, the LDS view of the Native Americans, and processes involved in the upcoming end and restart of the long count period of the Mayan calendar. Should be interesting to see if the cycle continues or kicks up a notch of understanding.
Here's the gedanken experiment regarding the collider.
Continue reading "Higgs Boson"
Thursday, October 1. 2009
Katrina and Identity, Crossing the Bridge
http://www.pubmedcentral.nih.gov/articlerender.fcgi?artid=1681680
Dr. Delacroix relates what happened Fri Night, Sat Morning after Katrina.
"Rested for an hour. One of the new doctors went to the airport to see
whether all of these new doctors and supplies could be of use. He
returned with a grim face, saying that the airport was atrocious and
that he had been told by FEMA that we could provide no medical care
because we were not government-licensed physicians. I spoke to EOC/DHH
in Baton Rouge (Jimmy Guidry) who was extremely upset at the FEMA
Bureaucracy. FEMA denied help at the airport from well-staffed local doctors even though people were in need. Bureaucracy at its best. We could not even place an IV on the patients. The same patients who I had been caring for for days. What nonsense."
Tony described at the Tao of Attributes meeting about doctors who were driving boats and could not attend to patients. (Patients who had been dumped by helicopters to an area with little to no supplies). A firetruck that was stopped at the Pentagon during 9-11 for the same reason.
He then explained how he needed to get critical personnel to the operations center to manage a crisis and that they would need to travel sometimes through road blocks set up by 12 different municipalities, and thus used the common credential to get through. Thus a local official would be able to check the personal identity credential (card), and get an answer back from an authority that this person was who they said they were. Better than Dr. Delacroix's experience of having guns pointed at him approaching road blocks during Katrina. So it looks like PKI works efficiently, and at a low cost in these situations where you are dealing with official actors.
What's that going to mean to upcoming generation? PKI or a Facebook login? Quite a few people wear their ID's around their necks in D.C.
Few people know the backstory of FEMA, pre FEMA was the DCPA, and civil defense. Then they expanded under FEMA as a separate agency (getting a good reputation for efficiency) dealing with natural disasters, and then was folded under DHS, and started having coordination and political overhead problems.
Those drills when you were a kid, "duck and cover", shelters, that stuff? Scared the bejezus out of me when I was a kid. When I learned in college that actually the idea was to keep people off the roads (after all you have seen all the disaster movies right?) there's this whole science around evacuating people and trying to get them through, or around traffic.
This was the Eisenhower defense road network, based on what he saw in Germany as the Autobahn, which became the Interstates. But originally, it was about moving missiles around, and of course the secondary use for transportation.
Meanwhile all these rumors are flying around in any disaster scene, I was watching the replay from 9/11 the other day, and saw this taking place. So there's a huge crowd control problem, and how that is managed is obviously a difficult task. As an adjunct faculty member for communications for FEMA, we found the best approach was to tell the truth, but that's not how many commanders are naturally wired, it has to be a learned habit.
But all these people (the incident commanders) are trying to deal with chaos. Stuff breaks down. Alternate communications needs to be used, and people (not just other responders) need to be looked on as an asset rather than a liability. Tony was talking about people having guns and pretending to be police in Katrina, and there was some effort in getting guns out of the hands of people in New Orleans, who were presumably trying to protect their property. The stories of looters, true or not, caused FEMA to withdraw and put the police on edge.
So I have my own use case of a man who was in Katrina, and had climbed up an exit ramp to a bridge, and was met by police with guns drawn, and told he could not cross that bridge to evacuate, he was going towards one of the neighboring towns. They would not let him pass. He was forced to go back to the river, and float among the corpses until he could reach a point where he could get out of the river.
It reminded me of older times in the civil rights struggle where police would barricade a bridge and not allow the marchers to pass. And that is the question I posed to Tony, which he could not answer, what does U.S. identity mean when it comes to Force Majure and Posse Comitatus?
These are major events (Force Majure) which break systems. Posse Comitatus which limits the degree to which Federal troops can be used for law enforcement, had very racist roots in pulling back the troops that were protecting freed slaves in the re-constructionist South. Americans want some guarantees that the Constitution is going to be followed in regards to their identity, and he was making no statements what would take place under martial law. Naturally without some kind of clear guidelines about what happens when troops are deployed in terms of identity (not their identity so much) there's going to questions, and now is the time to ask them.
The point I made is that if you want to extend Identity in the U.S., it has to be in context of everything that has happened historically. If you really want to understand the requirements, you don't stop with 9/11, you go back to the Founders, and farther back than that. And accurately mind you, there's valid reasons and situations, that can get confused, especially when it comes to Posse Comitatus, precisely because arguments were linked back to the Founders, when the reality was more advanced.
But let's start with the Founders, because most people get that. "We the people" in order to form a more perfect union... There's something here. It's the start of identity. Of course, that does not get us across the bridge. But it's a start. Let's skip to the Civil War and see if it gets clearer, Union, what's that mean?
John Payton, President and Director-Counsel of the NAACP Legal Defense and Educational Fund spoke to a group of people at Oberlin on Constitution Day about who was included in "We the People". At the Founder's time, this did not include everyone, and it was Lincoln who firmly cemented U.S. identity.
"Equally significant, in the middle of the Civil War, at Gettysburg,
President Lincoln reframed the entire Constitution by forever linking
it to the Declaration of Independence by his pronouncement that “All
men are created equal” and “that government of the people, by the
people, for the people” is the central mission of the Constitution. We
the People became a unifying identity."
That unifying identity is a powerful thing, it should not be divided into identity have and have nots.
Al-Qaeda was not able to reach Washington because people on Flight 93 had found out with their cell phones what had happened. With all our technical capability, it came down to this, we the people. The first responders at the trade towers, we the people. It was not the coordination of the Boston airport screeners, the DMV people who got the terrorists fake or real IDs, the officials that stalled the FBI investigation before 9/11 based on a misunderstanding of the separation of Intelligence and LE in the special wiretapping court, and so on, the folks who taught the terrorists to fly. No, what was effective in the end was simply some folks with cell phones. The system failed that day, but ordinary citizens gave their lives, so that other people could live. And in Katrina, people who could help, medical professionals who tried to help were denied access.
Can we be critical of those people who are trying to wrest control from chaos? They are in fact in extremely complex, dangerous and difficult situations, where dedicated people are putting themselves in harms way.
So we can sit home and watch television?
Sorry, I don't buy it. Yes those people deserve the highest respect and admiration for doing their job, absolutely. But we are all aboard on this one, we the people, the union, and if we say stand down and let this man cross the bridge, it's for a reason that goes beyond your fear of looting and lack of control, so recognize his ID and let him pass, he's probably a friendly. It's time to think out of the box on this one. That's going to be the win on collaboration with the Web 2.0 technologies with Tony's PKI architecture, but there have to be some lines drawn on civil liberties, that are baked in.
Continue reading "Katrina and Identity, Crossing the Bridge"
Tao of Attributes
I attended this meeting as an observer, making a few comments. It was certainly interesting to see many of the "identerati"in attendance and hear what they had to say. The meeting (which lasted two days) is available now online.
The focus of the meeting was on the convergence of Web 2.0 ID technologies like OpenID and O-auth and traditional X.509v3 certificate systems, such as the Federal Bridge PKI, and related systems such as the SAFE PKI for Bio-Pharma, DOD, and DHS. Certain technologies have been vetted by NIST with levels of information assurance, or LOA.
The focus of the problem space is attributes. I will attempt to explain it as best as I understand it, and leave the rest of the context to be filled in.
Simply put, every identity system maintains some attributes, some are edited or updated by administrators, and some can be directly changed by end users. Attributes that have been determined to be valuable are persisted, certainly depending on culture, so what attributes are important is culturally dependent. We commonly use prefixes such as Mr. Mrs. Ms. Dr., before names. (However in the U.S. we do not bestow royal titles). This largely means that there is no purely appropriate schema for every instance, and it is difficult for a relying party to query an authoritative party, or identity provider for a definite answer. This has led to a great deal of probabilistic matching. There are definite issues here because this means a great deal of personal information is being sent, often without adequate controls. In the larger sense the great deal of exposure of identity data gathered in this attributes presents a very large risk.
The classic example of an attribute that an end user is expected to modify would be "Favorite Drink" documented by Kurt Zeilinga in RFC-4254. If you wanted to tell a consumer (meaning a consumer of information) what your favorite drink was, you could update this field.
2.11. drinkThere a couple (actually several) very interesting ideas here. Let's take a look a just a few to avoid information overload.
The 'drink' (favoriteDrink) attribute specifies the favorite drinks
of an object (or person), for instance, "cola" and "beer".
( 0.9.2342.19200300.100.1.5 NAME 'drink'
EQUALITY caseIgnoreMatch
SUBSTR caseIgnoreSubstringsMatch
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )
The DirectoryString (1.3.6.1.4.1.1466.115.121.1.15) syntax and the
'caseIgnoreMatch' and 'caseIgnoreSubstringsMatch' rules are described
in [RFC4517].
First of all, the attribute is located within the directory server at a very specific place, a unique place. If that attribute is well formed it then can hold a value
Kurt has "requested" through a RFC, which is how the IETF works, on the basis of rough consenus and running code, this Standard.
This standard is in turn based on other Standards, notably that of the ITU, which does global telecommunication standards, and is part of the United Nations.
For LDAP or X.500 directory servers that use this attribute, in this form, they can communicate (in terms of millions of people) what you think your favorite drink is, and for those systems which exchange information with other directory systems, that could, (and does) extend world wide.
Since the attribute was based on objects, (and people represented as objects) an object could have this attribute if this was allowed in the schema. For example, while I managed the schema for the Cosine Pilot server in the U.S., I could have added favorite drink, or any other attribute to the schema loaded in the root server. While this was useful in the pilot project, I only had one request to add an attribute to the schema, in order to accommodate the addition of X.509v3 certificates for email encryption for scientific researchers as part of the global energy community.
Now as part of the Tao, and the oft quoted "Tao of the IETF" which addressed issues such as what to wear to IETF meetings, (dress for the weather) and other logical approaches on how to get to rough consensus. Good practical advice.
Certainly when we have to deal with "Identity Management" (a term of diplomatic ambiguity which we invented to broaden the discussion beyond the RFC above), and add something as impossible to define as the Tao, we are broadening the discussion to include the entire universe, (or not). At least the entire universe as it applies to First Responders and FEMA folks in the use case.
Since it was so long since I had read the Tao Te Ching, I looked at Wikipedia and came across the following snippet on names.
- The Way that can be told of is not an unvarying way;
- The names that can be named are not unvarying names.
- It was from the Nameless that Heaven and Earth sprang;
- The named is but the mother that rears the ten thousand creatures, each after its kind. (chap. 1, tr. Waley)
A distinguished name has enough elements that it is unique to that specific object. A common name is a shortened form.
This is an important feature because it means if you are dealing with an object that you can't hold in your hand and look at, that you can determine that the object is what it claims to be. We do that by "signing" objects with a digital signature, a "ceremony". Then we can compare a "hash" to see if the object that we got is the same thing. Without getting into complicated crypto, some things on the Network can be unambiguously identified (with room for error), and a great deal can not.
This is important, because the ability to network information about objects, and by inference attributes about people is that for many social reasons we don't trust this information to be in any one place. While this may not be inherently any more secure, since a purely "centralized" network system is unlikely (as opposed to a distributed system). If we took the Tao approach, the invariant or permanent name could not be named! Interesting problem. But the Tao gives us a way or path to resolve the problem when we consider the pattern of "return".
Continue reading "Tao of Attributes"
Thursday, September 17. 2009
Why are some people so afraid of Health Care reform?
So I have been looking at the large and small scale implications of data sharing, the NHIN Connect software which acts as an open source gateway between different systems. Use cases presented at the NHIN Connect conference indicates a large number of stakeholders (including individual users) who are confronted with systems that have varying amounts of connectivity and vastly different data sets. This makes sense if you realize that a great deal of this software initially came from billing systems to deal with insurance companies to keep track of the vast amounts of data required for payment. For the systems where payment was not the major goal, the focus was on providing care. Of course, that's very simplistic, but this is painting with the broadest brush. It's an awful amount of work to keep up with medical paperwork.
Myself, I try to stay within a shared system so that it's simple for my doctor to look up my data and a pharmacy that's computerized to the point that they can fill what ever is required with a minimum amount of fuss since they draw from a common database.
My Health provider has had a limited amount of information directly available to me in electronic form, but that looks to be improving for my PHR so that it might be useful.
What I have noticed is that the whole process is getting considerably smoother. But, I'm also more sensitive as to what costs I am generating for my own health care. Asking more questions and interacting with my primary care physician to take more direct care of my health, thinking that some expense now, will save money later. Is that not a bit of the microcosm of the larger picture?
Except with the economy continuing to look grim, there are a lot of people who simply can't afford healthcare and most countries realize that it is cheaper to simply take care of this first. That's a fact. A recent book about what healthcare system we have in the U.S. turns out to be correct, we have a little bit of every country, it just depends on your economic status, your age, your military status.
For some reason some people want to put health on the same level as everything else, another product to consume, and someone whom you trust who knows how to provide that product. In reality that's true here, but probably should be limited to just that, access to healthcare should be a public good, no matter how it is delivered. And not the television attempting to scare you about everything, an over abundance of information, more like we make it closer to the goals of the profession, where someone can point with pride, and say, that procedure that you just got done, you know that was developed here. But overall, this inequity in availability of health care exacts its own costs.
This brings up an interesting thought as to what kind of feedback we have in regards to our health.
Of course the obvious indicators come to mind, weight, blood pressure, Hdl/Ldl, amount of exercise, stress, etc.
But something I had not considered was the degree that people are beginning to manage their own data streams.
There are some obvious examples for bikers, and runners, who map their runs, or rides to get feedback on a training schedule.
There are the way more sophisticated wireless monitoring devices for heart patients, but although the data is self generated, the processing is taking place remotely at a doctor's office.
But tweeting to a database to keep track of self assigned attributes?, that's really interesting and simple to do. The CENS urban sensing project, http://urban.cens.ucla.edu/ lets you keep track of attributes that are important to you, by providing a way to tweet a simple message that you can then track later to see what happened.
For example, what sleep patterns do I have, how much water did I drink, would be useful to know over a few month period. How much chocolate did I eat? These are really things that one could do with paper and pencil by keeping a journal, but with smart phones, it's a simple thing to tweet it and get some long term data.
In terms of sensors (MEMS) stuff, of course Nike has had a sensor for a few years that works with the Ipod and Iphone for runners, but the Iphone has spawned remarkable amount of apps that can combine GPS location data, mapping, into these personal tools.
The ads for Google Android equipped cell phones really hammer this home, the data is all about you, it's an extension of your personal identity.
This leads eventually to a huge personalization of data, (not talking here about the data which is gathered by cookies and data mining on the web) but user controlled for whatever Walden Pond use that one wants to dream up.
For the mass amount of personal data there's currently a tradeoff for "free services". In quotes because actually this is a quid pro quo. In terms of equity in the tradeoff of personal information being processed, people have totally different opinions, (and as many options) about how they want to share their data or keep it private.
But the mechanisms, privacy policies, etc. vary in quality. and don't scale well to the multiplicity of data points of entry.
So what is scaring people about Health Care Reform? More security and privacy for data? That's a good thing.
Getting better care at a lower cost?
Making sure that the total cost of health care does not go up to 20 or 22 percent of GDP?
Seeing that veterans get better care?
The AMA? No I think they support it.
Having to take some responsibility for ones actions that in fact lead to bad health outcomes? Getting closer.
Health care reform is remarkable in that has taken so long, and been opposed in so many different ways. It's actually a long American tradition to oppose health care reform even while there has been at the same time some significant social progress. It turns out that there have been smear campaigns that go back to the beginnings of the twentieth century, usually involving some foreign takeover. David Blumenthal has just written a book on how Presidents have faced absurd amounts of vitriol in trying to get Health Care reform passed, I can't wait to read it.
Continue reading "Why are some people so afraid of Health Care reform?"
Saturday, March 28. 2009
Cequs creating Universal Patient Identifiers
identifiers are protected medical information, as defined under HIPAaround March 16, 2009, privacy rules went into effect creating severe fines for the disclosure of protected medical information. Cequs UPI will meet or exceed all currently known standards regarding the use of UPI, and comply with all Federal laws, and security certifications.
As part of the in-depth requirements analysis for a collaborative system, Cequs welcomes stakeholder comments. This dialog will involve other UPI providers, regional health systems, patient master index systems, corporations, non-profits, privacy researchers, policy advocates, security experts (white and black hats), consultants, IDM professionals, and interested individuals.
The only non-participants in this process will be govermental officials who are under a "gag order" of UP study since legislation. Most significant discussion took place in the 1993 to 1999 period, then legislation and an executive order tabled the discussion Should that mandate be lifted, they too can join the discussion.
For an initial understanding of the issues, there is a great amount of material that can be obtained via the web. Start with the RAND report on UPI, which was very well researched.
One might also look at the following.
As a stakeholder you may be interested in figuring out what your rights are in terms of what information you can process, how an individual can determine what information is visible and to whom it is visible. In the patient centric HIT this is a complex matter. Part of the issue is psychological, in countries where people have the right to determine who can see what record, they don't generally exercise that right, but having the right is very important.
Access to medical records is traceable when it is in an electronic form.
For example, while patients are not required to have a UPI, healthcare employees do, so they can be part of business model, and be accountable. How to give the patient more control (when desired) involves selectively shielding of information. Consider two lines at airport security. One involves ID, and there is a normal security process. Two involves a full body X-Ray. A full body X-Ray of course involves exposure of body parts that normally are not shown. Because they are shown, there is a blurring function, which protects the person being scanned (the scan is optional), and the person who has to evaluate the scan. How would this be done for defined sensitive data, so that privacy is not violated in the course of doing business? Essentially this is a dialogue that has been going on since the introduction of electronic systems for healthcare, a twenty year discussion.
Ask yourself the following questions.
1. Are the current level of medical errors acceptable?
2. Do you feel that your medical information (or the information that you have to protect) is safe?
3. Do you have enough control of your medical information and who sees it?
I can be contacted at peterb@cequs.com and seriously welcome your comments. This
is something that affects us all, but interests a few.
Continue reading "Cequs creating Universal Patient Identifiers"
Thursday, March 26. 2009
More on the Electronic Health Record Plan, What's up Doc?
I've been immersed in digital health records requirements for security
and privacy for the last few months. A couple of observations after looking
at some articles in the current NEJM.
Blumenthal on beyond carrots and sticks.
Healthcare is a complex adaptive system in which the specifics are
very daunting.
To say that healthcare is complex, and therefore the software to
provide HIT needs to be complex misses the point that complex systems
can be built up from simple rules.
HIT originally came out of billing systems, not clinical systems.
To say that HIT does not extend the EHR to all potential participants
is a realization of a number of obstacles and barriers to adoption,
many of which, (if given the right level of abstraction), are quite
solvable given collaboration, voluntary network adoption models and
the right incentives.
The current software company/consultant matrix can only do so much,
and ends up building in their own barriers because the economic
incentives are there to make the problem complex, so the strategy is
now to move this to a public good in which the stakeholders
collaborate, but using some basic protocols, while leaving the more
complex rules and roles for the internal systems where specialists are
needed. This means networking the target group, which is every U.S.
citizen, and in addition non-citizens who reside in the U.S. and
consume healthcare resources. This means getting uniqueness into the
domains where this data will live, which is currently the role of the
master patient index within a specific domain.
One of these barriers, Doctors who will not use computers, seeing it
to be a clerical function, is something that is generational, and will
solve itself when retirement kicks in for that generation. Subsequent
generations do not have that problem, that's why many people,
including myself and the NY State Dept. of Health, see the Internet,
and its ability to articulate clear protocols as a model for
exchanging health care data.
Patients have rights, and one of those rights is access to the best
information to manage their health. People can already see their data
online, make appointments, get referrals, see a history, transfer that
history to other providers, and get authoritative information if they
want to research a specific complaint. They may also have their own
copy of the data.
However, because that access is somewhat specific (though generally
web based) to how the other participants set up their systems, then
vendor specific implementations are a problem. Standards are a
solution, like HL7, but as anyone who has worked in the standards
space knows, they are no magic bullet. If the system is localized,
there is less of an immediate need for standards, so thats how HIT
started out with incompatible billing formats in the beginning, I read
somewhere around 400. Going forward there is a much greater emphasis
on proven common IT architectures and models, of which the Internet is
a significant model.
Healthcare consumers will not adopt a system that does not have strong
authentication and authorization for their PII. They will not (Esther Dyson
being a notable and brave exception in her participation in personal
genomics published on the WWW) adopt a system
(especially one that goes over a network) that presents unacceptable levels of risk.
One solution which I have proposed to the national health information network
security architects (who are very architecture, protocol, and security
savvy) is that they reconsider putting PII in their XML messages. By
only sending the health data, and not the PII, this vastly reduces the
threat surface, by making the information much less attractive to an
attacker.
Medical identity theft is a major concern, and it should not
be "baked in" to any protocol. This means that Identity has to be a
separate service in the way that a patient master index provides
uniqueness. If we allow patients to generate their own uniqueness
within the data system, according to an accepted protocol, we can
transcend current organizational boundaries and security domains.
This has an added benefit of making the patient responsible for accurate
data, to correct it, and to have current information. This requires a
linkage between HIPPA covered entities, EHR, and personal health
records, PHR. These do not currently have the same level of security
requirements. One of my fairly simple solutions exceeds most in house
requirements, being FIPS-140, Common Criteria EAL 2.
These Healthcare organizations are very complex, and very political
with strong traditional hierarchical models that demand proof before
change. The policy wonks know this, and admit while there is some
statistical data that supports their case for integrated EHR, that the
financial incentives for the stakeholders have not entirely been there,
but now it is an issue of public good. This is not a dot com like bubble
That's a good thing, but it makes organizing capital a different animal, one that can be responsive in an economic downturn. Who is this animal?
We don't need a lot of private solutions, those already exist. We can use them. We can continue to install them. The ones that have a rhizomatic function will integrate themselves, and we will see the fruits of that underlying mycelium if we have good
networks.
We need to intelligently apply the standards which already exist.
The NEJM article on adoption notes that if you include the VA system which
has an integrated system, the low rate of adoption in the private sector is doubled!
That's because the VA has been at this for a long
time. It also means that they can do things like having multiple
records transferred en-masse from a disaster area to a recovery site,
prepped and ready to go. Your local doctor, group, or HMO may not be
able to do that, so the burden falls on you to be able to network that
data.
For a social network enabled generation, that's not that hard,
for a doctor's office, it requires that the patient be an advocate for
themselves, and if you know someone who has had cancer, etc., you know
the coordination that requires in terms of getting data and test
results scheduled and delivered.
Surely we can make this simpler for
people, just like we made the Internet available, while some of this
is very specialist oriented and complex, there are some of us who are
willing to make new mistakes, but don't expect that from doctors who
had no financial incentive to support this.
This has to be a networked citizen/patient effort or we will be
rearranging the deck chairs for the ensuing economic collapse caused
by higher health care burdens on the economy, as the cost in the long
term is unsupportable. There will be a knowledge gap before there is
consensus. Like the net, in three years people will just not imagine
why you can't get all your medical info on line, get it transferred
to another provider, or get the records fixed because someone stole your SSN
iand got their information inserted into your EHR! It will all become part of the background of choices.
As such it is inherently an open collaboration, whereas before it was
dominated by beltway consultancies, policy analysts, and healthcare
professionals with a minimum of 3 sets of letters after their name to
be qualified to touch your medical data. We still need all those
people, internally, to handle thousands, millions of records (which
they seem to want to keep unencrypted in the trunk of their cars while
they eat lunch) but the government is based very fundamentally (when
it works) on citizen input, instead of just K Street consultant input.
Lookup Clinger-Cohen. President Obama has been doing this with lots of web
sites, great information flow, and townhall meetings on Healthcare.
That means not just reforming HIT, but actually being less of a burden
on the system, which shifts costs into insurance premiums, and then
onto employers. As such losing weight or stopping smoking, are
behaviors that can have major impacts, as part of individual health
management. The focus is on prevention, where one saves money.
We need better architecture that supports a secure and private system
where there is transparency to the patient for their data, ease of
access for authorized providers and clinicians for whom these systems
can not represent additional barriers, and scalable auditing so we can
see if data is being abused, a Bob, Carol, Ted and Alice approach to
encrypted use cases, and tracking of objects like hemostats and
sponges so prions can not travel between patients, so Hepatitis does
not spread, and so your day at the beach with the kids is enjoyable,
and not spoiled stepping on a syringe by someone who dumped biohazard
waste off their 30 foot cruiser off the Jersey shore. We want Sponge Bob enjoying
himself at the Krusty Krab, not a sponge left inside Bob, who then sues Carol, and is insured by Ted, and paid for by Alice, who is all of us.
Continue reading "More on the Electronic Health Record Plan, What's up Doc?"
Wednesday, March 25. 2009
It's that time again, cast your vote for Earth.
Saturday, March 21. 2009
Ways to avoid Mass Extinction
Earth, fire water, are basic elements of the alchemical process. They need to be understood in the larger systems of which we are often unconscious. Deleuze and Guttari talk about curing Schizophrenia in capitalism. This makes sense when we see the limits of consumerism. The market looks for value and that's the economic phase that we are currently in.
We can find value in networks and how we are al connected together, often in random ways. Those interconnections have been emphsized by explosion of information over the Internet. Sometimes it is a different kind of knowledge. D&G discuss the rhizome. How does consciousness establish itself when the parts themselves are not conscious? Here we start to see part of the solution that consumerism could only solve to a certain extent. With unintended side effects that includes pollution and boom/bust economic cycles.
What happens when there is too much unfiltered information, too much involvement with the unconsciousness? D&G talk about this in terms of schizophrenia, and the anti-Oedipus.
Jung documents the alchemical transformation of air, fire, earth and water for the individual. To see it in time lapse in the physical world is something else. It moves the bar past Freud. We see how things are connected, but not in the dysfunctional manner of the schizophrenic @ DSM code 295.3/ICD code F20.0 Making connections and getting past the elements of the unconscious is something that Freud felt might not be possible for the very irrational human.
There is a highly useful connectedness that is evidenced by this rhizomatic thinking that is given by Paul Statmets at a TED conference.
An interview I heard recently by Terry Gross of photographer James Balog had a great comment by Balog about the elemental aspects of fire, water and earth as he saws these glaciers going to die, and exposing thousand year old ice diamonds on the shore. The Nova special will be on PBS called Extreme Ice.
I'm going to order some of Paul's mushrooms to grow on my compost heap or used espresso grounds. This has interesting implications for network authentication and HIT, as well as healthy environments.
Continue reading "Ways to avoid Mass Extinction"
Distributed Identity Medical Security and Privacy
“Finally, federal authorities can
encourage HIT adoption by creating national regulations and standards
in several areas that will improve the confidence of doctors and
patients alike in the electronic management of health information.
These areas include the development of sound guarantees of data
security and patient privacy, as well as the certification of records
that have the capability necessary to support health system
improvement.”
Blumenthal, National Coordinator
for Health IT
The Federal Role in Promoting
Health Information Technology,
The Commonwealth Fund, January 2009
--------------------------------------------------------------------------------------------------------------------
Abstract:
Identity Layer deliverables to connect
Health Network Complex Adaptive Systems to other stakeholders,
Hospitals, RHIOS, Interstate Health Information Networks, Agencies
such as FEMA etc. by population of national identity container other
than centralized systems such as FBI biometric database
(fingerprints).
Those systems can remain as government
internal trusted systems and can also act as Identity proofing
mechanisms for certain populations by comparison of hashed values.
Non centralized system distributed
components form part of an identity meta system or identity
management layer described by Identity Management Task Force 2008
National Science and Technology Council, and also ITU, U.N. Standards
development.
The author argues that national
identity is a shared and valuable resource that incorporates unique
aspects of our culture, and is intrinsically owned by the people who
create and maintain it.
A plan is put forward to allow end
users to participate in a system that will securely network their
local identity to domains or realms that are manged by their
healthcare provider and be able to network that data in a usable form
to other consumers of that data through the idea of meta tagging, and
various ways that meta tagging can be accomplished with COTS
software, and current standards.
An emphasis is put on transparency, and
auditing so the path of the data can be self described, and threats
such as SSL spoofing to web browsers during an https session can be
mitigated for MITM attacks. Without an economical, secure and
private way to network health records stakeholders will resist
adoption even as economic stability threatens the economy and data
will remain in silos.
(This is not a final draft, but a
working paper of initial thoughts as of
comments are welcome, distribution is unrestricted, there is no
intellectual property within this document
Contributions and criticism is
welcomed.
peterb@cequs.com
HIT is a “complex adaptive system”,
it must properly relate to other systems, and maintain function even
when those connected systems degrade in performance. Objects need to
identified, from people to organizations, even down to disposable
medical instruments that present a danger if re-used or end up as
biohazards in the environment. These items must be linked to the
people who use them, and the people on whom they are used.
This can be accomplished in the Bob,
Carol, Ted and Alice use case scenarios of cryptographic systems
where use case actors of these objects can be identified, time
stamped for audit trails.
This means giving identity to objects,
and a container must exist to hold those objects.
If a container and labeling is not
defined, then the risk is that the patient becomes the container of
these objects by proxy, by a failure to identify and track objects
during process lifecycle. The largest working defined container we
have for 50 to 100 million unique objects with defined attributes is
an X.500 directory that scales to the entire U.S. c=US Or country=US.
An open arc for object identifiers is located under the original DOD
arc for the Internet for Cequs, and other arcs are available for
permanent, persistent object identification through ANSI. This
provides guaranteed uniqueness for perpetuity.
Identification of objects in perpetuity
has a very old history where bodies were buried in London from
victims of the plague, (not to be dug up again), and recent efforts
to selectively reconstruct the 1918 flu virus which killed between 20
and 40 million people for study. A similar problem space exists for
spent nuclear fuel where languages may change (will change) in
thousands of years. Perpetual inventory management is required here,
as with seed banks, and other applications. People who choose a
resuscitate order and are put into stasis, will have to have vital
records restored, along with civil rights, and this may include
people who may continue either without physical bodies, (as
information) but digital objects, (with copyrights, etc.) or may have
only partial human content. While futuristic, these legal issues have
already been decided in some countries such as Costa Rica, and
various frozen stem cells created a legal situation here in the U.S.
This amount of data is vast, and it is driving up the cost of health
care to meet requirements. But it has to be done.
Large scale biohazards natural or man
made will require evacuations and will stress health care systems,
the VA with an integrated health care system is able to transfer
records out of disaster areas into recovery areas, but this does not
extend to all providers. Every citizen should have access to their
health records, be able to route them to where they need to go, have
transparency in that process, and physicians or first responders
should have instant access to anyone's health record (say on a
Blackberry) if the patient has given permission to do so, or in
emergency “break the glass” situations.
The doctor is the locality of care, the
system is distributed.
Objects should not get lost, not in the
system, not within a patient. We should never have to ask,
“where's that sponge, Bob?” How
these objects are coded is important, bar codes, RFID, but ultimately
the data has to be stored.
Health providers typically work within
localities. These localities constrain the activities of “agents”
that participate in the system.
What happens to agents that reach a
local maximum or minima?
Patients in the locality may have found
the best or worst health care options though whatever discovery
mechanisms are available. They discover resources.
They may create costs to the overall
health care system that are optimized, average, or very expensive due
to choices made by the agent, choice will always be a factor, since
the agent is going from a position of less knowledge regarding an
outcome, to more knowledge, but even with more knowledge there still
will exist choices.
Doctors describe these combined choices
of a complaint, information gathered about a complaint, diagnostic
codes, tests ordered, referrals made, recommendations and
prescriptions given as work flow.
Within that work flow are combined
decision points, with the data to support those choices and the
software to help interpret and display information, for example an
Hl7 Medical Logic Module.
The defined locality is important to
the architecture of a HIT network, since it represents a set of
domains that differentiate themselves from each other in which the
common factor may be the actual presence, either physical or virtual,
of a doctor or health care professional. Thus knowledge and skills
create their own defined localities, robotic surgery could be done in
the same room, or across a network. In that instance there are
commands, and feedback, as well as knowledge that is flowing across
the network. Since there are going to be interactions, then a local
network will also be created that may be ad hoc, or planned. That
local network will likely have the ability to interact with other
networks.
In the simplest form, the architecture
demands a relationship to the locality of the surroundings which was
first noted by Vitruvius on siting medical facilities near springs of
healthy water so that it would fit in with the healing character of
Aesculapius.
Localized patients may not be so lucky
to have access to such a setting, and a patient in the community,
such as Camden, N.J., for example, might instead forgo a drive to a
rural facility in a beautiful setting instead for a number of closely
situated emergency rooms with expertise in gunshot trauma. The timing
of an episode is critical. Some choices have to be pre-planned. This
means moving decision support closer to the patient by notification
systems. Then follow up to find out status, and not overwhelm the
communication system, and communication to significant others.
It is the combined interactions of
agents in the CAS, which includes other systems on which the medical
facility is dependent, or which depend on the medical facility, which
are extended through networks. These may degrade in unpredictable
ways, a backup generator may fail, resources may be unavailable.
Thus the different types of networks,
along with the localities are what makes a difference. This scales to
local, regional, statewide, inter-state, federal, and global levels.
One of the problems of the Internet is
that it is global, right off the bat. It is the internetwork, and
gives everyone equal access, unless artificial borders are created.
It is thus the goal state for interoperability, as is the
telecommunications network, and the next generation network, but the
Internet itself does not respect domains, or borders, and some of
its users will constantly attempt to violate a line drawn in the sand
that normally would be respected. This challenges the openness of
critical systems, which often then do not operate directly onto the
Internet. At the same time the protocols that underly the Internet
offer some of the best possibilities for scaling to large
populations. In the case of each U.S. citizen this means examining
the network protocols and how they relate to other protocols. HL7
does not require a specific lower layer protocol, but describes
itself as being an application (layer 7) protocol.
If we start with a similar concept, we
find that most network protocols are agnostic of the layers
underneath. Although it would be fun to try a desert from a
restaurant that specializes in the art of molecular food, the issue
of choice again enters the system as to how much one would perceive
it as being a desert with enjoyable features, such as sweetness and
novelty, but how it got there might not be as important, unless there
were other concerns about its origins. From an artisanal point of
view that might be very important, but it would be highly dependent
on conditions at that moment. If a medical instrument used to stop
bleeding had come in contact with prions, the origin might be very
important.
From a pure Internet standpoint, the IP
does not care, so you could deliver a cryptographically secure HL7
message via carrier pigeons if you wanted. It would take some time,
but would be just as accurate as a computer, because of protocol
separation.
The idea of abstracting Identity to the
session/presentation layer adds a great deal of value, as well as
attempting to insert into other layers. It is normal to address
someone by their name if you wish to talk to them. Computer systems
do the same thing, but proxy identity in different ways. Have you
ever typed in 209.85.171.100 into a browser? It is somewhat
inconvenient, right? Yet that is how computers address each other,
and by having global uniqueness (there is exactly one 209.85.171.100
in the world, but more than one computer that will answer to that
address) and many different computers will give that web page, we
begin to see that identity is not a one to one association.
Rapidly identity becomes a 1 to many
association, or a many to many association. With computers, networks,
authentication, authorization, and policies in between, and add in a
difficult knowledge domain like medicine, then one cannot look at the
situation holistically unless there is the correct amount of
abstraction, and simplification. This means there exist basic
abstractions that come before other transactions. They are ordered
and binary.
Abstraction #1 Health is a one,
everything else is a zero. If you have your health, and add zeros you
rapidly gain value, if you have zeros in front of your health, the
value is much less. Health comes first, even if people have no money.
Good health creates wealth.
Abstraction #2 If something is too
complex, attempt to simplify. But not too simple. (Einstein)
Abstraction #3 Look at the problem a
different way by using creative problem solving. Triz is one
approach, “Inventing is the removal of a technical contradiction
with the help of certain principles”
according to Altschuller.
What
are a few inherent contradictions of the health care records system
attempting to reach level 7?
HIT
was originally designed for billing systems, not patient centric
care, it was to keep up with insurance systems.
Insurance
systems were built on two mountains of technology and data
Executives
enjoyed parties on both mountains on OPM.
IBM
AIG/Insurance
Companies in general who leveraged computers
Health
care reacted to those mountains (fought fire with fire)
400
software billing systems emerged
Organizations
built within own domain
Systems
did not communicate (silos)
Systems
had different views of patients
Non
cost centric clinical and office management software emerges
Not
just about billing
Changes
interactions more than billing
Billing
requires inputs of codes
Clinical
procedures require codes
Codes
have to be translated across systems
Standards
enforce business processes
Standards
such as prescriptions
Drug
interactions flagged
Does
not inherently change process
Process
is more than technology or standards
Patient
can opt for different processes
Potential
different outcomes
Time
to heal
Costs
Coverage
Expertise
Contradiction:
Adoption Inhibitor
Sometimes
aids, sometimes inhibit work flow
Contradiction:
Work flow is it's own issue
Errors
still occur
Computers
do not inherently reduce errors
Business
process model reduces errors
Rules
Roles
Does
not develop business model
Billing
and revenue is business model
Incentives
not present
Business
model is contradiction
Patient
centric is 1
Incentive via patient
eccentricity to increase value
Contradiction:
Manipulation of patient as a consumer
Freudian understanding of
behaviors to consumerism
Wants instead of needs
Economy crashes on too much
ID (wants)
Economy crashes on only needs
(insufficient demand)
Unconscious, Id, Ego, Superego
Consumerism as replacement for
democracy no longer viable
Increased citizen interaction
(may not be experts but cross domain, usefulness)
Individuation next step from
Freud
Same monsters, different
results if elements are defined
Unbound elements do not need to
appear as events
System opposites security v.
Privacy appear as integrated whole
Unconscious is not manipulated
though advertising, public relations, spin.
Basic needs are met, higher
level needs developed
UNHCR integrated
Room to innovate
Patient centric, treat people as
individuals
Do not create co-dependencies
Rebuild citizen inputs into
system
Town hall meetings for
requirements
Make contradictions clear
Politicize issues
Politics about scarce
resources (David Eaton)
Make current trade offs
evident
Raise the bar for trade offs
that are contradictions
May disrupt current status
quo
Circles of Power (David
Truman)
Inner circles
Detectable by gatherings
featuring >U15 size shrimp on ice
K Street influence
Government/private
revolving door pension plans
Policy Wonks
Influential Loggers
People with more than 4
sets of initials after last name
Corporate Influence (Under
K)
Providers
Associations
Legislators
Experts
Authors
Outer circles
Consumers
Lay People
Citizens
Disenfranchised
Shadow economy workers
Network citizen inputs
Change consumers (choice/brand
pickers due to fear, optimization) to citizens.
Basic authoritative
information on Web
“Should I get vaccination?”
What is the time I should do
this?
Decision Support
Can I pay for this?
Should I fly to India to get
this done?
I got the money, I'm going to
Mayo
Empower citizens
What are actual systemic
costs for everyone?
Other than HIT what are the
potential savings?
Understand behavioral costs
Smoking, obesity (system
savings)
HIT (system savings)
Fixing system (system
savings)
Not changing what works
(preserving investment)
What are systemic
connections?
Unique citizen role
Not tied to official role
Can speak in multiple
languages not just official language
Understanding economic threat
Current system parameters sinks
economy due to resource consumption
Tied to consumerism
Tied to victim injury model,
lawyers versus doctors
Tied to adversary model
Tied to economic bubble numbers
for UN-insured
$13,000 for 3hrs care plus
diagnostics
Insurance company pays less
(one tenth?) than patient out of pocket
Built in societal inhibitors
(must stay in current job, per-existing conditions)
Freezes movement in job market
due to risk
Discourages disruptive
innovation
Deification of status quo
Encourages consumerism (does
not address needs)
Palliative approach to
problems, proxy appears in different areas
Whats an EMPI?
Gateway to SOA within enterprise
Ownership of patient
identification
We provide integrated services
to them
We can tell them apart
We know them
We are on the way to Level 7 EMR
If they are not in the EMPI, we
don't know them (as patients)
Indexes work fast
EMPI requires registration
Registration is essentially
local
May require already processed
referral
Referral comes from per-cert
Originates from primary care
physician
Approved by Insurance
Capitation requirements
Is an outgrowth of billing
function
If first time in system,
identity is unknown
Requires history
Requires consent
Requires back up billing
guarantees
Contradiction:
Patient centric system should recognize patient
Patient as “US Friendly”
Wide Scope
Identity Management Task Force
Report 2008
National Science and
Technology Council
May not require citizenship
per se
Health comes #1 so immigrants
also
Uniqueness for undocumented
aliens for uncontaminated records
Contradiction:
Otherwise recycling of SSN occurs
Contradiction:
Billing Fails
Contradiction:
Medical Identity Theft
Processing outside of justice
system schema
Heuristics to connect with
justice system schema
Trusted third parties
Simple enrollment
Allows for routing of medical
data (does not specify format)
Tags create special
handling, priority in network
Location independent
End to end FIPS-140, AES
Level Encryption, Keystone, Revocation
Common Criteria, Relevant
security standards, etc.
Use knowledge domain to discover
patient eccentricity localities
Cost effectiveness
Everyone enrolled in situ already
Do they meet routing and
security sharing standards?
If not upgrade at minimal cost
Route over VPNS or Internetwork
Identity Proofing Sweeps Data to
best known version
Corrected by end user or agent
of end user
Data trawling prevented
Clinical studies opt in
Transparent policy
Identity outside of records
Records stripped of PII
Linkage to separate PII
(indirection for SOA)
Government at Organization level
Public-Private Partnership
Very low cost
No specific source (not
centralized) identity meta-system
Patient chooses authoritative, or
several authoritative providers for information
Multiple backup locations
Complete audit trail
Voluntary
Open to all participants
All actors covered in use cases
All actors in business process
models in UML
pre-post constraints defined
data dictionary defined
schema and attributes defined
(X.500 root)
webservices defined (Oasis)
contradiction:
only one model of many, outside of SOA bus
master
record header contains PII
security defined (various)
threat surfaces defined
(attackers)
risks defined
contradiction:
PII data spills not currently contained
risks insured
CMMI process improvement model
Project Management
Continue reading "Distributed Identity Medical Security and Privacy"
Thursday, March 19. 2009
Gate
Identity Management Task Force 2008 National Science and Technology Council
Continue reading "Gate"
Tuesday, March 17. 2009
Distillation of Names How-To
notable Greeks, during which he briefly stepped outside. Suddenly, the
roof of the building collapsed, killing everyone inside. During the
excavation of the rubble, Simonides was called upon to identify each
guest killed. He managed to do so by correlating their identities to
their positions (loci) at the table before his departure.
An early example of mapping identity to loci in disaster recovery, cited by Cicero.
So I was wondering exactly how one might start doing this distillation of names, or rectification of names alluded to by Confucius, with due propriety, etc. with the limited resources I have on hand and I'm still convinced that on national scale it makes sense to leverage the value of place, or genius loci.
Many of my fellow networked identity designers consider anything less than global, or personal (host based) to be insufficient, but that has an unintended effect of forcing the U.S. government to build in a back door into the system or continuing to rely on mass identity aggregation.
The fact is that the government has to have some limits in this regard, it is fundamental to the design of the constitution.
At the same time it needs to share information effectively.
What has happened up to this point is that government has been limited in terms of numbers of career employees and thus has employed a large number of contractors. It has been very lucrative for ex-government officials to leverage their former social networks, and after so many years of service, this is a typical strategy for many individuals to make lots of money in the private sector while still doing government work. The fact that this is a somewhat expensive approach brings us into the land of unintended consequences, but one that is very well understood by the participants. It has the effect of creating good plans but not always the political ability to implement them, sort of like Hollywood movies, they start out, and get made years later, with different writers, a different studio, and different producers. If it gets made at all.
In fact do we even need to talk about it? Haliburton, AIG, and Wall Street have the problem that these are specialist roles that we largely ignore. Those that fail to ignore it are fired. So we are consumers of the news from people who supposedly are in the know. But they are looking at the results, the deals, and are reactive. They don't communicate "how are we going to wind down this problem" when so many people are invested.
Until it all hits the fan, then we talk about it incessantly. This is Jon Stewarts point about media irresponsibility. It is not about Cramer. Sometimes it takes fake news to get to the real news when the real news is fake.
It's not a meta point at all, if there "weapons of financial mass destruction" and the financial press does not cover, or make known the risk to the general public, they are not doing their job. It's not like someone is right, or wrong, that's always going to be the case, because the bears are going to get killed during the run up, they will be consistently wrong, until they are right. My point is that is very different than placing money at some degree of risk, and getting some reward, because it's an issue of false information. That is what makes it a scam, rather than being irrational. The checks and balances don't work because people are being paid off in numerous ways, right down to the immigrant doing drywall. At the same time you have this massive identity machine which is supposed to, but does not impact this. And when someone is courageous like Spitzer to start to unravel what is going on, there's plenty of personal scandal to be unsurfaced from the overall surveillance database to stop making any progress in real reform.
The same people cycle between these roles in and out of government because we think they have the knowledge. What do we logically expect? I bake bread, why should I care about credit default swaps being sold in London to Morgan Stanley? In fact people do care, but the system is largely set up to make people unaccountable. And people will not see this while riding the bubble. They see their house going up in price, and therefore they have some equity which they can spend. They don't see the part about securities dealers mixing in bad mortgages with AA rated securities and re-selling them as tranches. They don't see AIG backing the entire scam. They don't see the AIG auditors being fired for trying to uncover and correct the scam. And of yet, the FBI has not uncovered the payoffs. But the public has.
It's just that we are all complicit in the scheme of a real estate bubble, and although people have lost money, they also made money on it. So the public is complicit, but there are individuals who actually broke the law in handling mortgages, repackaging them into securities, and then selling them in very complicated, unregulated markets, which created a new form of wealth. Into a global system. These mortgages lost their identity because of how they were re-packaged, so no one knows what they are worth, so the credit markets froze.
AIG was backing them up with the CDOs so the government bailed them out. But since they put up the entire money making part of AIG as collateral, the risk aware part, they leveraged high risk, with low risk. An interesting twist, since Spitzer made them settle for years before for multiple billions about taking tax write offs for risk that was supposed to have gone to a re-insurance pool, which was supposedly owned by someone else, which had the effect of propping up the stock price. However, in a massive case of identity fraud, the company that was supposed to be pooling the additional risk was actually owned by AIG! Let me make it crystal. They hid ownership of an entire company and no one noticed, at least not right off the bat. And the executives kept quiet about it. Well some of them anyway. And now we own AIG. How ironic, since their internal politics which was essentially limited to a small group of people, has now spilled into national politics.
Hippocrates was right, they don't need a doctor, they need a barber. But its like the original Alien movie, you are sitting around the spaceship eating your breakfast, and then bam!
Therefore no transfer of risk, therefore no tax writeoff due, therefore stock should have gone down, but did not due to fraud.
And why? Because no one really understands what companies actually are owned by AIG. They chose to keep that information at the executive level. It's like a great deal of information that no one actually knows, certainly not the insurance regulators, since this was an office in London. You have to an executive, (or an Identity Management consultant) who worked for AIG, to grasp this just how vast they are. And when you don't get it, and the political relationships, then they are "too big to fail", and we transfer billions of dollars into this shadow banking system, since AIG was in effect acting as the FDIC for that system.
So why shouldn't the branch mangers there not get millions of dollars, for the billions of dollars they lost? It was their payoff in the scam.
Privacy advocates have been able to deconstruct the how of telecommunications being split for mass data retrieval by an etalon in a regional telecommunications facility, but have been remarkably deficient in explaining why the NSA should choose to do so as policy and the costs to society of doing the same. At one point your average NSA signals intelligence nerd would have an equally hard time justifying scooping up all that data traffic of U.S. citizens, because at one point it was expressly against the law. We understand why they would tap the satellite phone of OBL, but our military talking to their families?
At the same time there needs to be a global solution, but that is not entirely the same thing, and that set of solutions should in fact be different. So I have c=US, based on the technology of 1993, and then the global identity layer, which is based on different technology, personal DWDM. If you look at the development of both telecommunications, and the Internet, and how and why the protocols are the way they are currently, this should make sense.
I certainly understand it when it comes to a distilled name, and namespace that created a distinguished name, etc. in the X.500 sense, which is sort of the CS approach but I was wondering if there was something basic that I had not yet grasped. So I started playing around with the idea and came across the ancient Egyptian concept of unification of names, and what they had done to try and unite Upper and Lower Egypt.
If one looks at the KV34 site in Egypt there is this story of unity of multiple identities that has been translated into English as Book of Praying to Re in the West, Praying to the United One in the West. Ra or Re, has multiple identities, some of which are well known. Having multiple names is a problem, in terms of multiple systems, but as the old SNL sketch goes, it does not matter what you call people, if they are ok with it, so you can call him Re, or Ra, or Ray. J. Jr., it does not matter. However, it is difficult to login or keep track of different user names, partial identities, nicknames, avatars, and common names. So out of that how do you get Unity? My theory here is that you distill it into a living water, or an aqua vitae. (BTW it is St. Patricks Day so I will be exploring this concept with soda bread and some Jameson)
A spirit. If you start driving fast cars after you make this moon shine and start watching NASCAR, that's a whole different story, (you may be a redneck), this is a networked software based solution.
In terms of Re names or forms, the dung beetle was very common, since it fertilized the ground by rolling balls of dung into its hole. That was translated into the sun being kept in the underworld at night, and being reborn each morning. This particular belief, or motif, or theme had rock star status in its day, being written on all sorts of amulets, monuments, documents and so on. There is this concept of sun equals authority. Along with this common theme are also over 26 other versions of the same idea.
So where does the unity come from?, he's not one of your monotheistic gods. Not only that but he and the Pharaoh are on equal footing here. Theres an early story about a rebellion against Re, from a previous golden era, and during that time, there was no darkness, and hence no need for a circadian rhythm. After he killed most of the people with a mass extinction, which seems to the standard god solution to most of these squabbles from Abrahamic religions to the Popul Vuh, he had to find some place for all the dead people, and thus the underworld was created. Traveling to the underworld is very tricksy business, especially for the South American Quiche, who had the legends (and reality) of the pre-Naismith era final four, or final two. With an emphasis on final. Beating the underworld, or dealing with it, or even surviving it, with identity intact is a pre-occupation of both the Pharaohs, the ball players, and anyone who risks their personal identifying information to modern computer systems due to identity theft.
One of the versions of Re has him wearing a stove pipe hat, besides the traditional hat that one sees more often. At one point Re and the Pharaoh are merged as the same or equal beings, and in the underworld they follow the same journey, in a daily cycle of death and rebirth. The creatures of the underworld apparently suffer from some memory defect, since they don't recognize him, especially when he appears as a migratory bird, but unlike most Re, he is able to speak to them, and therefore they recognize him, before he emerges the next day.
So this obviously multiple, yet united idea for identity is interesting, as is the idea of authentication (coming in a different form such as a migratory bird) so the various full time inhabitants of the underworld don't trap him there, as they do others. Essentially, one of the characteristics of the underworld in the Egyptian and Hellenic senses is the inability to leave.
One of the few characters that is allowed to leave is Hermes. The hermetic tradition is the basis of alchemical distillation that was current up to Newton, who was himself a practicing alchemist as well as a brilliant physicist. This power of speech to explain things is very hermetic. So is the shady character of Hermes. He is born and immediately leaves the cave to go up and steal cattle from Apollo. A cattle rustler.
Then he turns around and creates the Lyre from the cattle intestines and gives the Lyre to Apollo, and creates propriety, a sense of balance. That Pythagorean arrangement of tones is composed of both mathematical theory, and actual vibrations picked up by humans (and gods) as harmony. This underlies the concept of things with are of accord, and discordant.
Democritus had original idea of atomic theory. The librarian at Alexandria had measured the circumference though the use of a stick and a well thought out experiment. The Antikythera Mechanism (probably limited to the very rich) was a complex analog computer that could predict eclipses, and when the Olympics should take place. It would be a while before Babbage started the wheels turning on the difference engine, and WWII at Bletchley Park where Turing would apply his talents to decoding the outputs from the Enigma. We authenticate using cryptography today.
So Re has multiple identities, but is united in the west. In Epidaurus, Aesclepius has the Tholos built, and the floor is a heliocentric map of the known solar system with the orbits of the planets. Its the same basic plan as the Kiva of Hopi, and Hermes is called upon there again as the trickster, I assume as coyote, who puts the stone on the portal to the underworld, again enforcer (and guide) of the different levels. He also shows up as Loki in the Norse sagas.
The sun in the center sends out arrows, or rays. The lyre is there, so music is also there, so we are distilling the concept.
The patients encounter the Tholos as a way to communicate with, but not live in, their unconsciousness. So the Tholos works as ancient diagnostic machine, leveraging universal forces, (like gravity) and resonance (through harmony and alignment) with input from the unconsciousness (psychotherapy), but with suggested cures, (go get more exercise, etc.), that we build currently as a super conducting quantum interference device.
In short Tholos was a symbolic version of a MRI. And the theater next door supplied the catharsis of subconscious images brought to the stage, so they did not need to be internalized by the patients, with predictably tragic results. Throw in a sphinx that asks riddles, and you got some great entertainment. This then translates to the more modern theater (passing by the Passion Plays) of the bard, and into modern theater that plays with the wall separating the audience from actors. While the bard has his role, so to speak, in the fates of star crossed lovers, where does the distillation of names take us?
The outside of the temple has multiple columns which mark the solstices. A labyrinth underneath or nearby is full of snakes that aid in healing. The rod of Aesclepius is surrounded by a snake, in a sort of mobius strip, and becomes the symbol for healing which is turn linked to a constellation through which the sun travels (zodiacal) which in turn is not part of the standard 12. A missing part of the Zodiac to be filled in by symbolic identity management. Go ahead, find it, and when you do, you can update Wikipedia, just do it before Colbert finds out, he's already doing a great bit on the Vikings and Armageddon.
The names become a problem in Judaism because at one point it becomes impossible to talk to god. Yet the letters themselves are directly connected. In terms of a feedback loop there is the famous Urim and Thummim device, which was originally in Solomon's temple. Some Rabbis argue that since talking to God was no longer possible, the breastplate of the High Priest would light up when presented with a question, and a light would appear in various jewels on the breastplate in a pattern that indicated the answer. Others believed that it was a divination by placing rods with yes or no, and picking one. The Chinese casted yarrow sticks to consult the book of changes with lines solid or broken, forming trigrams and hexagrams. A sort of interesting path in the protection of names would be the line of thought that a lost tribe of Israel did in fact make it to the U.S. at some point, in the same way you find Jewish artifacts in Africa. If they had sacred writing they would have had to bury it, if they could not continue. It would not just be a treasure, per se, but a respect for the name itself in the same way a terma would be hidden by a Buddah. The uncovering of that would require an emergent property, of time and place, or a cledon, (key). The key is not lying around, but produced from what otherwise would be meaningless.
This also would be a maintenance of names, or a Shemot in a Genizah. The metaphor of activation of a golem hidden in a Genizah by inscribing on its forehead a letter, giving it life, as a kind of doomsday device is not entirely lost.
Joseph Smith rediscovers the Urim and Thummim device in the U.S.according to the Book of Mormon, and thus is able to transcribe the book from the tablets which otherwise would be unreadable, and they begin a massive effort in preserving family names and genealogy in a distilled form. Certainly there is a native U.S. fascination of being in touch with a holy spirit, or depending on one's religious bent, the holy spirit, which would result in glossolia, and that in turn can be viewed as inspiration or meaningless babble. Which is interesting, because if it were something non-random it seems something would appear out of it.
To touch Marvin Minsky for a moment, "A frame's terminals are normally already filled with "default" assignments" Thus one think that there would be some coherence present in any names uttered while filled with the spirit. If one were attempting to work with basic design patterns of the universe, these would be the defaults, like the heliocentric pattern. Or not. Minsky talks about the patterns of frames 9accessible in this case via the Orant), as generalized, when there is no specific proof, and subject to replacement if something more accurate is realized, a sort of hypothesis which then is filled in, or replaced by a better model. To locate those frames, a matching algorithm is created, and thus names provide a handle into that system, but gradually acquire some status when the system becomes more static and hierarchical, like Linnaeus, who created taxonomies that could then be named.
So partial information is the norm, but we want some evidence of distillation of names. How about an extended value digital certificate?
A frame, once evoked on the basis of partial evidence or expectation,
would first direct a test to confirm its own appropriateness, using knowledge
about recently noticed features, loci, relations, and plausible subframes. The
current goal list is used to decide which terminals and conditions must be
made to match reality.
So isn't that what we are doing when clicking on the browser to assure ourselves that the name is distilled, we are making test to confirm noticed features that the browser is supplying, or not supplying, such as loci, and whether the subframes are plausible. It used to be a sniff test when it came to spam, but faked and real websites can look very much the same, fake SSL certificates can be generated, DNS can be poisoned, etc. Ultimately the identity of truth or falsehood will come out in the wash, but at what effort. I hear you can make a lot of money with Bernie Madoff, or flipping houses can make you a lot of money because I sent away for the kit from the guy on cable tv at 3 in the morning. If it works now, where does it fail the sniff test of the subframes later?
Continue reading "Distillation of Names How-To"
Sunday, March 15. 2009
The Alchemical Distillation of Names
The topic is continued as to whether man is the measure of all things, or whether there is a metric standard for Identity, and specifically national identity. Right now there are discussions regarding the use of cards to represent identity, a recycling of the older v-card concept, and one that is fairly well known, since people use cards to convey their communication access points, and known physical locations.
These identity attributes can be considered to be PII, but it is really more of a matter of putting some reachability information into a larger network. PII in the privacy sphere may be the information that you do not want to share, except in situations in which you give a form of consent.
What is interesting is the user centric nature of cards, (except for managed cards) which test the ability of a self issued claim to be accepted. My personal experience with the various forms of ICards is that they don't yet have the ubiquity necessary, but represent a needed evolution.
Oasis is working on a meta-layer for acceptance of the Icards. If I am totally caught up in my development environment, either in Linux or Microsoft, I can get an Icard to work, including a managed card with a secure token, but it is very operating system centric. If I'm in the Microsoft world, it works pretty seamlessly at this point, although this was not always the case with various software updates. Trying to use my self generated ICard that is not Microsoft, not such good results, so I'm looking at WS security and wondering to what extent is will be a "standard" or an extension of a specific form of software.
How would we see the transformation of identity, by alchemical means, via Hermes, a typical example being the distillation of the alembic, a purification, heated by a furnace, and then cooled down. The alchemical process, as described by Jung, is mirrored both in psychology, and the actual physical world, providing a kind of object oriented approach. This is not a top down, or bottom up view, but levels that are linked to each other in ways that are not obvious.
This linkage can also extend to resolve ideas that are, often in a fundamental sense considered to be opposite, and the union of opposites is a very powerful and useful concept.
It is this process which creates individuation, which otherwise would be a sameness, and a loss of being able to clearly distinguish between this and that. This does lead to some strange loops, in regards to identity, if one considers the "identical" definition of identity, which means identity relates to individuation, having both same and different elements rooted into some sort of context.
Some opposites chosen by Jung are listed below. One of the basic concepts of alchemy, "what is above is below", seems to follow this theme. The practical ability to distinguish names means a refinement from a common name, which requires a fairly long string, which have attribute value pairs. This uniqueness is an engine, or furnace to create additional distillation, or services which are bespoke to the individual. This series of steps is necessary, but ultimately has its own limitations that must be overcome. The ladder is necessary to reach a certain point, but then it becomes a limitation and must be kicked aside.
The Effective and the ineffective.
Fullness and Emptiness.
Living and Dead.
Difference and Sameness.
Light and Darkness.
The Hot and the Cold.
Force and Matter.
Time and Space.
Good and Evil.
Beauty and Ugliness.
The One and the Many.
One of the early experts in medicine, Avicenna, invented an alembic to create essences.
Can names be distilled, rectified? It's certainly an interesting concept, because along with this idea is the idea of adulteration, where words and names no longer represent what they did, and therefore lose value, or worse yet, they come to represent their opposite. There is also the sheer fact of inaccurate information, duplicated information regarding people, which can best be addressed by getting people to update information themselves. If that is a one to many association, this is a chore. If the end user is the source of authoritative information (which still can be verified) the one to many association can be managed using more effectively in a pub-sub arrangement.
Pollution of names
Names which no longer mean what they say are propaganda, explored in depth by Hannah Ahrendt.When we discuss about why and how we discuss, this gets to a "meta" level, which can be difficult to keep straight, if only because there is such a long history of thought that must precede any discussion, with people taking positions over thousands of years.
Boundaries begin as an outgrowth of the forces that animate the earth, creating a gap that law is supposed to fill, like the all thing, and law rock that formed the first parliament, located right on the fissure of the the North American, and European tectonic plates.
Virtruvius, who inspired DaVinci, places a great deal of emphasis on place. Literally it is not something to be ignored. Place is special, because every place has a character, that character is transmitted to the people who live there.
There are exceptions since expressions of certain migrations, gangs, or cliques extend to anywhere. That makes certain forms of culture, say Crips and Bloods exportable to suburbs, and Mexican drug cartel violence out of Mexico to anywhere in the U.S. based on transportation systems and migrant populations. This exportability and objectification of place is dealt with very early on by Vitruvius, as sign and signifier.
Skip from Roman times to modern Rome, and you have Umberto Ecco saying the exact same thing in his works on semiotics. Or even in his popular works like the Name of the Rose. We might suppose that Paris really is a movable feast or Nathan Detroit can keep relocating his dice game anywhere, but there still is a unified thereness that says Paris is in its individual neighborhoods, and Nathan Detroit is in New York and not Chicago. Some of the context of uniqueness of place is not dependent on sameness, but on the reiteration and re-discovery of it's uniqueness, a pleasing repetition of the Fibonacci sequence, a melody that hangs together because there is a inner harmony.
That place looks different with different views. A flower looks pleasing to us because of the symmetry and color, to an insect that will pollinate the plant, it looks like the markings of a heliport. This multiplicity of meanings is self explanatory and does not take away from the essential nature of the rose.
Despite all the rushing around, there is a sense of place, or as Vitruvius put it, a natural development that aligned forces from a specific place. That aligned the elements of the architecture around basic concepts, one of which was symmetry, another eurythmy (practiced most recently by those exposed to Rudolph Steiner), and also propriety, economy and order. Propriety, was very much in the mind of Confucius, in terms of making things fit, in all sorts of situations. In particular the importance of naming in creating that propriety in the architecture.
A superior man, in regard to what he does not know,
shows a cautious reserve. If names be not correct, language is not in
accordance with the truth of things. If language be not in accordance
with the truth of things, affairs cannot be carried on to success. When
affairs cannot be carried on to success, proprieties (li ) and
music (yüeh) will not flourish. When proprieties and music do not
flourish, punishments will not be properly awarded. When punishments
are not properly awarded, the people do not know how to move hand or
foot. Therefore a superior man considers it necessary that the names he
uses may be spoken appropriately, and also that what he speaks may be
carried out appropriately. What the superior man requires, is just that
in his words there may be nothing incorrect
Analects 13.3
That fitment was also dependent on the overall spirit of place, or genus loci. For health, he recommended exposure to good air, for architecture of health, he wanted a pastoral setting that would encourage the natural spirit.
Finally, propriety will be due to natural causes if,
for example, in the case of all sacred precincts we select very healthy
neighbourhoods with suitable springs of water in the places where the fanes are
to be built, particularly in the case of those to Aesculapius and to Health,
gods by whose healing powers great numbers of the sick are apparently cured. For
when their diseased bodies are transferred from an unhealthy to a healthy spot,
and treated with waters from health-giving springs, they will the more speedily
grow well. The result will be that the divinity will stand in higher esteem and
find his dignity increased, all owing to the nature of his site.
A familiar concept in Christian belief is transubstantiation. Identity now, and identity later, but identity later is based on going through the design pattern of the gateway, the entry to, and exit from the physical body. So we do need to go beyond birth and death vital records, to Maxine's concept of long term digital identity.
Maxine funded the great mambo chicken idea of uploading your various identity artifacts into a permanent digital storage. A helpful idea, and even a more helpful idea if you are pursuing the path of dealing with multiple incarnations, because, (just like they identify the latest incarnations in Tibet, by showing objects and toys, favorite items to the child that has appeared out of the Bardo Thodal), you would have the option of picking up where you left off in a past life, sort of the ultimate Memex.
Descartes proposed you got there by activating the pineal gland. This could happen unavoidably at death, or deliberately by sleeping. The gland secretes melatonin, which is a synchronizing force for circadian cycles.
So the rectification of names is the start of governance according to Confucius. He has a good point.
Renaming "captured soldier" which fell under the Geneva Convention for humane treatment of enemy soldiers, to "enemy combatant" gave former President Bush leave to torture prisoners, as documented by the International Red Cross, which did independent investigations at Guantanamo. President Obama has rescinded this designation.
While these people were actually tortured, that had a bad connotation, so another term was invented in it's place, since "torture" was illegal. This propaganda is very Orwellian, very 1984.
Can we go past our Cartesian concepts of identity duality by a quick check of the pineal gland, our often quoted "third eye"?
Or is the invocation of names enough? Given the proper distillation, maybe that is enough. According to the Taoists, a quick recitation of Guanyin would be enough to forestall torture, but that would be hard to do with a cloth over one's face, strapped down, and water being poured over the face to create the feeling of drowning. The Taoists believed that Guanyin could instantly appear and fix things, like shipwrecks, torture, etc.
One could say, "9/11" was so horrible, certainly it was justifiable to torture these people, people that might have been directly involved". That was the position of certain people in the last administration. That further extended to a loss of national identity, since the administration no longer trusted its own citizens, largely because it failed to follow the law itself. It reverted to a pre-legal stance, and the choice of words is deliberate, since in some respects it was able to retroactively get its actions declared legal. But the pre-legality is different from illegal, it is essentially a lower form of trust where there had been a barrier to tapping the phones of citizens, and then the officers of the NSA then began to intercept phone calls of U.S. citizens which was in violation of the charter, which was focused on national security. All of a sudden there was no distinction, and thus in the virtual world of telecommunications, national identity was affected. What has not been addressed so far would be the actual interference of communication, rather than passive intelligence gathering, which would be a freedom of speech issue.
I don't mean to sound hypocritical, but the horrible events of 9/11 represented no form of justice what so ever. It was an opportunity for the Nation to learn how to protect itself, and protect itself by asserting our humanity. We could have done so. Instead we squandered that good will by attempting to impose a police state, a reaction that OBL wanted.
All those reactions were not the compassion that the 9/11 victims needed. Were they understandable? Yes. Could they have been transcended? Yes. There was the opportunity to heal.
Hell could have been turned into paradise, but instead, we saw the reaction spin into a failure of names, and we chased ghosts around the planet, off this cliff, and another. We tortured and called it something else.
It is not like this has not happened before, our civilization has condoned torture in different time periods, in different places for a variety of reasons, using a fiendish assortment of tools and techniques against people, guilty or innocent, who would be eventually willing to confess to anything. And the evidence that was gathered, destroyed.
So to rectify, is to reestablish the value of names.
To show compassion. To show so much compassion, such boundless compassion that our national identity transcends the horror that we sometimes find ourselves in, and extends itself through time. The interesting thing about these types of things is that no country is without blame, but once that is understood, the question then becomes how to move beyond.
It is a time for healing.
Continue reading "The Alchemical Distillation of Names"
Sunday, March 8. 2009
Alignment
We have often thought that things have to be big to scale, big government, big business, big everything. And then someone said, hmm, small has some great potential. So we invented microchips, and nano-technology and have developed great value in small.
At one point people figured out "connected is good", and they shipped around the world, creating vast value chains that existed for rare items that could sold at profit where these items did not exist, and a global trade system evolved, along with political concepts such as merchantilism. Nations bankrupted other nations, nations even addicted other nations. The world became globally connected. The world became capable of destroying itself in 15 minutes.
And the world became oddly similar. There was a demand for sameness, not just standard roads and rails, but common outlets that resulted from these value chains. This is not a new thing, cultures and economies became fixated on similar materials and technologies, concrete, steel, and working those things into complex, interrelated systems providing more and more value.
But if you go to Braddock PA, or Chester PA, you can see the remains of what these big mono-cultures achieved. You have some brilliance, say the first Carnegie Free Library and you have ruins.
The same goes for Detroit. It's not like it hasn't been happening for a while. Take a few minutes and contrast my childhood in Michigan watching movies about the ever expanding car culture, and the fifties following the horrors of WWII, and the Hopi theme of balance with nature. They deliberately kept it minimal so they could live where no one else wanted to go. They took the small corn, the one that was not mixed with anything else. We took the larger corn and mixed it, not only genetically, but culturally.
It's not that we did not appreciate nature. We just had to head north in our cars to get there. But is was that unbalance, the monoculture that probably would be fine in small doses, or distributed. It just warps things.
Watch this movie about the unbalance.you can watch it for free on Hulu. When that unbalance started invading the virtual monetary world, we of course faced the same crisis.
There was argument in 1800's regarding industrialization versus agrarian goals. Whether the industrial mechanisms which produced jobs and goods could do so without ruining the country. The Schuykill was already polluted, people still celebrated Tammany, in trying to stay in touch with the native cultures. They sensed they had already lost something, but there was always the opportunity to pack up to a less polluted place, for some.
Work in the factories drew in people, and for some it was good work and money, if dangerous. But the idea of producing goods for a national, or global market began to create strains. To pull off these big things required massive resources, and talented people. With systems this interconnected they became very complex. Looking at a matrix of what a natural disaster does, show all these interconnected systems. When that's the only way to interconnect, then there has to be a way to achieve balance. Clearly, we don't want that balance imposed on us, it has to arrive somehow from our existence. When some of these systems fail, they don't degrade gracefully. It's not like some of these large degrading systems are not built with the best of intentions, or to meet some pressing immediate need. There has to be deconstruction to see what network effects various actions will have, something that artists can show us.
In "Three Standard Stoppages" Duchamp explores the idea of the metric standard, but adding the element of time, the 4th dimension. By dropping a meter line, from one meter, the shape changes, he then cut out shapes and used those shapes as templates, and in another work. If networking is essentially about topology we begin to see artists confronting the 4th dimension attributes by using COTS, or as they put it, "Readymade".and wonder how the 4th Dimension can be leveraged for Identity. Not just time/motion studies, but how time can act as an emergence factor, part of a natural Fibonacci growth sequence that is sustainable and less likely to crash.
In terms of standards or "Etalon", the meter uses the earth itself for reference. One ten millionth of the distance from the equator to the north pole. So not only is it exact as it can be, but it is designed to scale to the earth itself. As opposed to man, and the concept that man is the measure of all things. The all thing is now more a part of Duchamp's stoppage, or invisible mending, or the connections between the thousand plateaus.
As we grow more comfortable with standards we then look to hermneutically link humanity with those standards, something that I have attempted to research in showing some threads of the invisible mending.
So it's clear, that the idea of dropping the thread a set distance, from a set length began to play with the standard, and actually to interact with the standard. And this then sets into opposition those who can quickly revert back to the heuristics of what humanly makes sense, what gets the job done, without requiring all the "metrics". Those who can quickly judge the various parts and make something come together, make pieces come together that fts, in short a rule of thumb. How to accomodate both, because we crave both accuracy and humanity at the same time. But time changes that. Sure you can serve billions of something, and it may not be the best, but it is consistent, it may not be the best, but it won't kill you either. Which I think is the appeal of brands and value chains which replicate standard goods and services. But on a large scale, that of the U.S, which is the point of the blog, what caused us to get to this point?
For this I think the "all thing" is important. One can look at the division of lines on a map and realize that over time, those lines are going to be redrawn. But people settled, and named themselves based on occupations and geography, and sometimes stopped migrating, took root as it were.
For the U.S. we of course encouraged movement, (with exceptions) but came to what seem to be natural boundaries. Sea to shining sea. The fact that it was not always so, and the costs associated with that expansion are of course worth discussing, as are the costs associated with maintaining those boundaries.
Let's just say, it is what it is. We are not trying to take over any more territory, as was the practice of the colonialists, or create a merchantile economy, or an imperial political system that wants to impose our will on the rest of the world. We have the Monroe doctrine, we had a Bush doctrine, (even if no one could remember what it was), but clearly we have a sphere of influence that is larger than our sphere of ownership. The doctrine about where the U.S. is in cyberspace apparently is defined here, and by various cyber security folks at the NSA, since the alphabet soup of cyberczardom seems to be torn between the model of we have no one in charge of the Internet and it is all host based, to something else. To be clear, I'm claiming a virtual image of the U.S. in the 5th dimension, and did so when I renamed the U.S. to honor Native Americans. To be more accurate, it's a form of stewardship so that we don't suffer the slings and arrows of what the Hopi described at the U.N. I certainly am not the pahana, but I'm willing to acknowledge that fact in the way back machine, there is a major problem, an ethical problem that has to be resolved. The way back geological machine that supports our existence, and can, if we are not careful, result in mass extinction. Thus in the requirements analysis I literally leave no stone unturned, (especially the Fire stones) and can trace the requirements back thousands of years.
When we do that, as was the case of the neo-cons, it was based on the intellectual sense, if not the practice, that we were not telling people how to be, but allowing them to be themselves, by exporting democracy.
But in practice, as Bruno Latour put it, it's not just as simple as inflating a large rubber raft and calling it a legislature, so the mechanism of how that takes place, of "exporting" our own experiment in government, as opposed to other forms of government is something that has mixed results. We do a much better job exporting pollutants, but other nations are catching up.
Whether it is Hillary Clinton giving gag gifts to other super-powers, or invading Irag without a plan to fix the country after we defeated their regular army, there is some desire to show the rest of the world that we have something different and valuable to offer, in how we structure the dialog, even in our slang, which is the ultimate summing up of a moment in time. But there is a "slang" gap, versus diplomatic speech. Slang is much faster, and coining new terms, like IDM, involves roots into larger concepts.
These different conversations contribute to a Habermasian legitimacy, and when words don't mean what we expect, that legitimacy begins to evaporate. Hence while we all enjoy the wild west show, when it comes to buying the snake oil, (as used in terms of digital security) we are naturally skeptical. And we should be. So we search for heuristics that can approximate what we need, perhaps without the exactness required in different parts of the system. For medical systems that means preserving or increasing the quality of care, limiting medical identity theft, limiting access to information to those who need to know, and minimizing the spread and scope of data that the patient needs to communicate, while being able to securely network it where they choose. There are many other requirements that I am working on in the OWL ontology, such as data retention, but largely the problem is solved by patient centricity, which relates to identity management.
So big rule of thumb for the U.S., we are situated in North America. North America is in turn created by the latest version of techtonic plate shifts, moving a few inches here and there, gradually shape shifting. Geologic time is of course something else. We are newcomers to the earth, but we can measure it. We have the etalon, but may also fail to see the stoppages, or the invisible mending of a tailor made solution for the U.S. And the solution can be bespoke. We might not all agree to the Treaty of Meter, despite the fact that most of the world has adopted it. This has costs, we lost a multi-million dollar spacecraft going to Mars because of a failed mathematical conversion. But we can explore with Duchamp the idea behind the metric, and how that extends into the 4th dimension. How it incorporates chance, and becomes for a moment anti-rational, before returning back as an Etalon. We are interested in where time, the 4th dimension, takes us three dimensional people, and we understand that flatland people, have their own dimensional problems, the least of which is getting painfully poked by a triangle which you don't see coming.
During this geologic time frame there have been mass extinctions.
We are concerned that we may be heading for, or in fact causing another mass extinction as a result of our by now normal patterns of existence. Patterns that were in fact set into place as Hamilton and Jefferson argued about capital formation and federalism versus states rights. Suffice to say that there are costs associated with our industrial economy, especially when one looks at where it comes in and takes over, like Detroit, Braddock, Chester and provides lots of jobs making things, like cars, steel, or ships, that require lots of people. Note that it was very different to build a Delorean, than to build a standard car. It's very different to build these new green cars, because the infrastructure is slanted in a particular way. It was very different to mass produce Liberty Ships, versus the individual technical skills of specialists who understood how to make a compass, how to lay a keel, etc. The mass industrial approach with scientific management of the 20th century and time and motion studies, and enforced separation of duties is different than combining individuals with a passion for their work, that might hire a few more people, but never a vast amount, and thus the effects were based on projects, rather than production.
So the geologic features caused natural barriers. Eisenhower saw the autobahn and wanted to get rid of those barriers, so the Interstates were built. Intercontinental Ballistic Missiles with nuclear warheads also transcended those boundaries. The Internet transcended those boundaries. The economy is global. But in the midst of all this globalization and long supply chains, brands, and big multi-nationals, the locality of place began to corrode. That is a value that began to be lost. The interstate took away the flavor and uniqueness of locality, like in the movie "Cars", but with thousands of examples. So there are two conflicting themes, people want the convenience of connectivity, but the benefits of locality. They may be willing to pay more for locality. Some people are willing to pay less, and have a supply chain which might have less accountability. Here we have a choice. But an identity architecture has to take into account these factors. People don't want to be treated like a number, but they are not always willing to support systems which give them more personal attention. Computers are very good at localization. They can adapt to different keyboards, different languages, and still provide the same services. They will adapt to a next generation network that has rationalized identity.
That should be true also with an identity architecture. Take it as a given that the techtonic plates are in fact an influence, because they formed boundaries, energy from the earth causes different features to appear. These features are in fact localized, and have major economic impacts. The fact that there is more movement is a significant difference geographically, and culturally. States are in fact different, and have different needs. This is generally a given, as is the Federalist viewpoint that there is a force in uniting. That union has been tested and found to hold. As a result we have the benefits of both.
Logically, we would want to extend that theory of localism, and choice, to the concept of union, without losing the features of either, or getting more negative aspects of either in an identity system. So since the entire system of laws is based largely on this concept, within the boundaries, it is important to leverage that work, while also recognizing the animating spirit that feeds that, which is the larger cultural identity, as opposed to political identity. Fuel injected on Highway 9, that means something. Your community means something. That's what makes c=US relevant because it is not government, government is there because it has a cybernetic function, and function is what we want to focus on in the identity infrastructure. This is an important feature, because the we the people form the identity, and not the government. However, the government (along with a few gag gifts) does represent us to other nations. Those relationships are highly structured, highly based on protocols, and thus sometimes very effective, sometimes very protocol based and dependent on not-ruffling feathers. This can get extremely nit picky, (such as the order in which people exit elevators) and is largely in a different world than the everyday. Even diplomatic language has its own rules, and thus can be subject to a great deal of interpretation. IDM was such a term. It is designed to be filled in. And if has been elevated to an international standard by the ITU, which was one of my goals!
Continue reading "Alignment"
Calendar
|
March '10 | |||||
| Mo | Tu | We | Th | Fr | Sa | Su |
| 1 | 2 | 3 | 4 | 5 | 6 | 7 |
| 8 | 9 | 10 | 11 | 12 | 13 | 14 |
| 15 | 16 | 17 | 18 | 19 | 20 | 21 |
| 22 | 23 | 24 | 25 | 26 | 27 | 28 |
| 29 | 30 | 31 | ||||
Syndicate This Blog
Calendar
|
|
March '10 | |||||
| Mo | Tu | We | Th | Fr | Sa | Su |
| 1 | 2 | 3 | 4 | 5 | 6 | 7 |
| 8 | 9 | 10 | 11 | 12 | 13 | 14 |
| 15 | 16 | 17 | 18 | 19 | 20 | 21 |
| 22 | 23 | 24 | 25 | 26 | 27 | 28 |
| 29 | 30 | 31 | ||||