Thank You to the Twitter Hackers
Navot Peled, CEO of Gizmox
2009-08-18
The repeated Twitter hacking exposes the complex and serious security issue on the Web. Unfortunately for Twitter (Google Apps, Facebook and others), the problems have unfolded in a public arena, forcing them respond quickly to calm users and resulting in a short term solution (that clearly has not been working!).
What is unknown to many Internet users is that the problem doesn't end with Twitter's band aid approach, nor is the intrusion limited to Internet sites. The security issues don't start here - they start with the platforms and applications that don't enable software to be developed with the proper security. Fortunately for the software developers, but unfortunately for the public, the greater problem has stayed out of the headlines of mainstream media outlets.
It's time to end the "if it ain't broke, don't fix it" attitude. It is broken, even if the public doesn't understand that! Any software technology that will be used by businesses or individuals, as well as by governments or militaries, must have proper security. The recent media attention about the Twitter hacking has generated a panic, which is important because it will force the technological industry to start upholding the security standards that should have been in place long ago.
Everyone enjoyed the Internet more when we weren't aware that we were being exposed and that our personal information was being compromised. But now that we have a real problem, let's talk about a real solution. There are two main issues that need to be addressed, and they both involve the dissemination of information.
First, Internet users need to understand that they are vulnerable on the Web; just because someone may be sitting in his or her own home doesn't mean that they are not on public display. It's like a one way mirror. You could dance around naked without realizing that a room full of people is watching you from the other side. Once you know it is a one way mirror, you may still choose to dance, but at least knowing you have an audience will allow you to make an informed decision about your behavior.
If the public chooses to use the same password on every site, use unsecure cloud applications, or visit sites that demand cookies, that is a chance they are taking, but at least they now know the potential threats and dangers, so that they could make an educated choice about their computer activities.
The second main issue is the responsibility of educating the public that there are secure technological options and they should use the applications and sites which hold by the highest standards. The public believes that technology is weak and penetrable because there is no alternative; unfortunately that is not true. Developers around the world are working around the clock to develop programs and applications that are fully secure, and they have been successful. Unfortunately, their success has been limited by companies like Twitter who simply refuse to use platforms that are adequately secure and which give a bad name to all developers. These irresponsible companies compromise on security at the expense of the public.
When there are physical dangers, we work to increase protection. Whether it is safe driving, or safe health practices, the effort comes from both the top and the bottom - the public demands it, the government supports it and industries comply. It's time for technology to have the same practices that other aspects of our lives do.
Twitter has done a disservice for all of us by having low standards, while the hackers have done a great service is bringing the problems - and the solutions - to the public eye. Let's start rebuilding confidence in technology again.
|
