A $2 Trillion Market Cap and Tops at Diversity and Inclusion
June 25, 2021
Forget the Windows 10 (the last version of Windows once). Forget the SolarWinds’ misstep. Forget the complexity of Teams for a consultant used to Zoom. Think about this milestone. Fortune has named the Redmond outfit the big dog in diversity and inclusion.
For a big tech firm, the company is refreshingly free of discrimination-based scandals. Windows Central reports, “Microsoft Tops Fortune 500 Charts for Diversity and Inclusion.” Writer Sean Endicott shares some data from this year’s Fortune 500 report on the subject:
Fortune and Refinitiv partnered together to gather data and rank organizations based on 14 key metrics, including the percentage of minorities on a company’s board, the percentage of employees that are women, and the percentage of employees with disabilities. This list also includes Measure Up, a ranking of the most progressive companies based on diversity and inclusivity. Microsoft measures well in several key areas. Fortune highlights that it provides day-care services and has an employee resource group voluntarily formed by workers. The company also has targets for diversity and inclusion and policies regarding gender diversity. According to Fortune, 39.7% of Microsoft’s board is made up of racial and ethnic minorities. Overall, Microsoft’s workforce is 49.8% racial or ethnic majorities. 41.3% of managers at Microsoft are racial or ethnic minorities. While Microsoft has positive figures regarding racial and ethnic diversity, it falls behind in gender diversity. According to 2020 data reported by Microsoft, only 28.6% of its employees were women. 26.3% of managers at Microsoft were women in the same timeframe.”
The Windows cheerleaders may see some room for improvement. The write-up reminds us Microsoft makes a habit of emphasizing diversity and inclusion, linking to examples here, here, here, and here. Perhaps Google could learn a thing or two from that company. For example, reduce the management goofs that lead to global awareness of stuff like the Timnit Gibru and ethical AI matter. And Fortune knows a lot about diversity and inclusion, right?
Stephen E Arnold, June 25, 2021
Mitre and Its Mad Ave Inspired Naming
June 25, 2021
I keep a list of neologisms, jargon, and odd ball phrases. Examples include anting (crows which allow ants to clean up the feathery friends of horror movie script writers), industrial athlete (a Bezos bulldozer rah rah for warehouse workers who are sometimes allowed to visit the facilities), and pillbillies (residents of West Virginia and Kentucky who are addicted to opioids). I have others too including AIM (asymmetric information management) which I don’t understand at all.
Now I have a new one: ATT&CK. This is a coinage from a wordsmith at Mitre (the old MIT Research outfit) and its “Engenuity” unit. Those folks are heirs to assorted Boston poets I think. I am not sure what the letters mean, but here’s the explanation in “Tool Lets Users Supplement Mitre ATT&CK Knowledge Base with Their Own Threat Intel”:
Called ATT&CK Workbench, the free and open-source tool was designed to reduce the barriers preventing defenders from aligning their aggregated TTP intel with Mitre ATT&CK’s content. Officially announced today via press release and blog post, Workbench is a creation of Mitre Engenuity’s Center for Threat-Informed Defense, with contributions from Center members AttackIQ, HCA Healthcare, JPMorgan Chase, Microsoft and Verizon.
I want to point out that as far as my DarkCyber research team has been able determine, exactly none of the threat intelligence outfits alerted their customers to the SolarWinds’ misstep.
I have a buzzword for this in my collection too: Nonperformative. I think this means, “May not work.”
Stephen E Arnold, June 24, 2021
AI: Multi Modal Wu Dao
June 24, 2021
Last summer OpenAI’s GPT-3 text generator was the impressive AI of the season, creating passages of text most could not discern from human-penned prose. Now we are told a model out of the Beijing Academy of Artificial Intelligence (BAAI) has surpassed that software. According to Yahoo, “China’s Gigantic Multi-Modal AI is No One-Trick Pony.” The new deep learning model, named Wu Dao, can emulate human writers as well as GPT-3 and then some. Reporter Andrew Tarantola asserts:
“First off, Wu Dao is flat out enormous. It’s been trained on 1.75 trillion parameters (essentially, the model’s self-selected coefficients) which is a full ten times larger than the 175 billion GPT-3 was trained on and 150 billion parameters larger than Google’s Switch Transformers. In order to train a model on this many parameters and do so quickly — Wu Dao 2.0 arrived just three months after version 1.0’s release in March — the BAAI researchers first developed an open-source learning system akin to Google’s Mixture of Experts, dubbed FastMoE. This system, which is operable on PyTorch, enabled the model to be trained both on clusters of supercomputers and conventional GPUs. This gave FastMoE more flexibility than Google’s system since FastMoE doesn’t require proprietary hardware like Google’s TPUs and can therefore run on off-the-shelf hardware — supercomputing clusters notwithstanding. With all that computing power comes a whole bunch of capabilities. Unlike most deep learning models which perform a single task — write copy, generate deep fakes, recognize faces, win at Go — Wu Dao is multi-modal, similar in theory to Facebook’s anti-hatespeech AI or Google’s recently released MUM.”
Tarantola checked out the researchers’ recent demo. While OpenAI taught us that software can now mimic news stories and similar content, Wu Dao takes language further by generating essays, poems, and couplets in traditional Chinese. It can also take clues from static images to write relevant text and can create almost photorealistic images from natural-language descriptions. With the help of Microsoft’s XiaoIce, Wu Dao can also power virtual idols and predict 3D protein structures a la AlphaFold. Talk about use cases from different ends of the spectrum. BAAI chair Dr. Zhang Hongjiang declares the key to AI’s future lies in “big models and a big computer.” Perhaps those models can divine a way to minimize their own power consumption and work without alleged biases toward everyone not in CompSci 410.
Cynthia Murrell, June 24, 2021
First, a Cabinet, Then a Laptop? Quantum Computing Hype Escalates
June 21, 2021
I read “Compact Quantum Computer for Server Centers.” The write up explains:
“Our quantum computing experiments usually fill 30- to 50-square-meter laboratories,” says Thomas Monz of the University of Innsbruck. “We were now looking to fit the technologies developed here in Innsbruck into the smallest possible space while meeting standards commonly used in industry.” The new device aims to show that quantum computers will soon be ready for use in data centers. “We were able to show that compactness does not have to come at the expense of functionality,” adds Christian Marciniak from the Innsbruck team.
I think this is an interesting idea. The big radio in homes in the 1920s became the micro circuits in a mobile phone. Tiny is better. Quantum computers are going to become smaller too. A desktop device? Maybe a laptop? How about a mobile phone?
Is it important to skip over issues like software and applications, error rates, and figuring out how to know exactly what the constantly vibrating tiny things are doing?
Trivial issues obviously.
The write up explains that the ion trap in the vacuum chamber has been made smaller. That’s good. What happens if someone gives the device a hard knock? Heat? No problema. Commercial use cases? Certainly. How about word processing or calculating whether it will rain this weekend? Absolutely.
What this write up said to me was, “We are doing good stuff and we need more funding.” How many other EU quantum wizards will cite this work and generate non reproducible and non verifiable results? What? Academics fudging stuff? Never.
Stephen E Arnold, June 21, 2021
Microsoft: Timing and Distraction
June 16, 2021
From my point of view, the defining event of 2021 was the one-two punch of SolarWinds and the Microsoft Exchange Server breaches. I call these “missteps” because the jargon of the cyber wizards at the Redmond outfit and the legions of cyber security vendors talk around compromising systems in ways which are mind boggling. Yep, a “misstep.” Not worth worrying about.
I scanned the research data in “Unsuccessful Tech Projects Get Axed During the Pandemic” and checked with my trusty red ink ball point pen, these items. Let’s just assume these data are close enough for horse shoes, shall we?
- 30 percent of a sample of 700 plus “professionals” say they killed one or more unsuccessful digital transformation projects. Okay, one third failure rate. How’s that work if one is building 100 school buses? Yep, one third go up in flames, presumably killing some of the occupants. Call it 20 children per bus when one detonates. That works out to 600 no longer functioning children. Acceptable? Okay for software, just not for school buses.
- 65 percent of the sample are going to try and try again. Improving methods? No data on that, so we can figure one third of these digital adventures will drive off a cliff I assume.
- Making the right decision is almost a guess. The article’s data suggest that 29 percent of those in the sample “struggle to keep pace with technological developments.” So let’s do marketing, maybe hand waving, or just some Jazz Age razzle dazzle, right?
That what I thought when I read “Windows 11 Has Leaked Online: What the Next Version of Windows Looks Like.” This write up does not talk about addressing the software update methods, the trust mechanisms within the Windows ecosystem, nor the vulnerabilities of decades old practices for libraries and dynamic linked libraries, among others. Nope. It’s this in my opinion:
Image source: Noemi P.
A new look, snappy dance moves, and distraction. The tune is probably going to be a toe tapper. The only hitch is that the missteps of SolarWinds and Microsoft Exchange Server missteps might throw the marketing routine off beat.
Stephen E Arnold, June 16, 2021
Are 15 Square Feet Enough? A Question for the Google
June 15, 2021
I flipped through the dead tree edition of the outstanding sun-like Wall Street Journal this morning (June 15, 2021). And what did I find inside the edition which sometimes makes its way to Harrod’s Creek, Kentucky? The answer was a four page ad in the Murdoch infused Wall Street Journal. Each page is about 23 inches by 24 inches. That works out to 552 square inches (give or take a few due to variances in trim sizes) per page. With four pages, the total is more than 2,208 square inches of dead tree space or larger than the vinyl floor protector under my discount store office chair and that of one of my assistant’s floor protectors. Which is better vinyl floor protectors or dead tree paper? I am on the fence.
Above is a thumbnail of the four page Google ad in the June 15, 2021, Wall Street Journal.
What’s the message in the ad? At first glance, the ad is pitching a free Google service. Some people perceive Google free services as having a modest cost. Here in Harrod’s Creek, we love the freebies from the Google. In this particular case, Google is pitching this message:
If you want to show the world how it’s done, you have to change the way you do things.
Change is hard, and it depends on whether the change is motivated internally like the good old but out of fashion notion of self improvement, gumption, and Go West, young man! Or whether the change is imposed on one; for example, Rupert Murdoch had constraints on unauthorized telephone tapping imposed on his otherwise outstanding organization. There is also an Orwellian type change which can be more difficult for those lacking critical thinking skills to identify. A good example of this is assertions made under oath in the US Congress that certain high technology companies will do better. The companies then keep on keepin’ on as some in Harrod’s Creek say.
The interior two pages convey this message:
Say hello to Google Workspace.
The text explains that Google Workspace is pretty much like Salesforce Slack, Microsoft Teams, and the ever wonderful and avant garde Cisco Webex service, the somewhat popular Zoom, among others. The most interesting passage in the advertisement is the explanation of “how we do it here too”:
All 100K+ Google employees – from engineering, to marketing, to the PhDs in the quantum lab—relay on Google Workspace every day. Our scientists leave comments in research doss, and the security team keeps our inboxes clear of spam and viruses. Google’s entire business is riding on it, just like yours. Because no matter the task at hand, when your customers are depending on your. Google Workspace is how it’s done.
What came to mind was “how it’s done” in staff management. Dare I mention Dr. Timnit Gebru? No, I don’t dare. What about the subtle management vibes at DeepMind. Nope, I know zero about that too. What about … Nope, no more of this management thinking. Life’s too short. (I wonder if critiques of Dr. Gebru’s AI ethics paper were handled within this Workspace thing?)
The final page lists alleged customers (users) of Google Workspace. These include Grandma’s, Operation BBQ Relief, and Ms.. Kim’s class, among others.
Some observations are warranted by this lavish presentation of the Google Workspace message in the dead tree edition of a traditional newspaper nestled within the woke empire of News Corp. Herewith:
- I find it amusing to think that the world’s largest online advertising outfit is pitching its Workspace product in a medium which is centuries old, non digital, and mostly reporting that water which has passed under the bridge over information
- I would like to see the ad reach data and conversion estimate for pulling new customers based on this rather impressive expanse of newspaper. My hunch is that the Google wanted to send a message, probably to Microsoft. Why not email the outstanding leader working hard to eliminate cyber security risks?
- The organizations mentioned as customers (users) are interesting. Links to case examples of what’s shaking at Grandma’s or Ms. Kim’s class would be fascinating. The wonky little icons in the ad are interesting but “yinka” was a bit of a puzzle to me.
Net net: Is Google changing or does Google want others to change from Microsoft Teams to Workspace? My hunch is that Google is assuming that the Greek god Koalemos will make their endeavor a home run.
Stephen E Arnold, June 15, 2021
Don Quixote Lives: Another Assault on Data Silos
June 3, 2021
Keep in mind that in some organizations data silos are necessary: Poaching colleagues (hello, big pharma), government security requirements (yep, the top Beltway bandits too), and common sense (lawyers heading to trial with a judge who has a certain reputation). Data silos are like everywhere. The were a couple of firms which billed themselves as “silo breakers.” How is that working out? The answer to the question resides in an analyst’s “data silo.” There you go.
Security is the biggest reason much-maligned data silos, also known as fragmented data, persist. Google now hopes to change that, we learn from “Google Cloud Launches New Services for a Unified Data Platform” at IT Brief. The company asserts its new solutions mean organizations can now forget about data silos and securely analyze their data in the cloud. We have yet to see detailed evidence for that claim, however. We will continue to keep our sensitive data separated, thank you very much.
Writer Ryan Morris-Reade describes the three new services upon which Google is pinning its cloudy unification hopes:
- Datastream, a new serverless Change Data Capture and replication service. Datastream enables customers to replicate data streams in real-time, from Oracle and MySQL databases to Google Cloud services such as BigQuery, Cloud SQL, Google Cloud Storage, and Cloud Spanner. This solution allows businesses to power real-time analytics, database replication, and event-driven architectures.
- Analytics Hub, a new capability that allows companies to create, curate, and manage analytics exchanges securely and in real-time. With Analytics Hub, customers can share data and insights, including dynamic dashboards and machine learning models securely inside and outside their organization.
- Dataplex, an intelligent data fabric that provides an integrated analytics experience, bringing the best of Google Cloud and open-source together, to enable users to rapidly curate, secure, integrate, and analyze their data at scale. Automated data quality allows data scientists and analysts to address data consistency across the tools of their choice, to unify and manage data without data movement or duplication. With built-in data intelligence using Google’s best-in-class AI and Machine Learning capabilities, organizations spend less time with infrastructure complexities and more time using data to deliver business outcomes.”
We learn consulting firm Deloitte is helping Google implement these solutions. That company’s global chief commercial officer emphasizes the tools provide “enhanced data experiences” for companies with siloed data by simplifying implementation and management. We are also told that Equifax and Deutsche Bank trust Google Cloud with their data. I guess that is supposed to mean we should, too.
But Google is quite the fan of data silos. Remember “universal search.” Google has separate indexes for news, scholarly information, and other content types. Universal implies breaking down “data silos.” But it is easier to talk about solving the data silo problem than delivering.
And what about Deloitte? This firm was fined about $20 million US because it had data silos which partitioned some partners from the work of the professionals working for Autonomy.
Yep, data silos. Persistent and embarrassing when someone thinks of “universal search” and Deloitte’s internal oversight methods.
Cynthia Murrell, June 03, 2021
Making Life Easier for Professional Publishers: A Call for More Blatant Fraud
May 31, 2021
I enjoyed “Please Commit More Blatant Academic Fraud.” The intent is to highlight the disgusting underbelly of academic underbellies of naked mole rats. The author picks up on the fraudulent peer cheerleading for research related to artificial intelligence, but when tenure is at stake, I wager that professors teaching ethics can be manipulation minded as well. It just depends upon how one frames the argument, right?
The essay has a very interesting quote; to wit:
It would, of course, be quite difficult to actually distinguish the papers published fraudulently from the those published “legitimately”. (That fact alone tells you all you really need to know about the current state of AI research.)
I want to add a slightly different quantum entanglement to the nuclear nature of the academic fraud issue. The professional publishers must be considered. These are the outstanding executives who often publish research known to be wonky. The professional publishers create journals filled with hocus pocus, wrapped in the magic of peer reviewing, and totted up to be the beacons of “real” information.
If anyone wants more and crazier research written by authors and institutions willing to pay assorted fees to get their estimable contributions to knowledge published, it is the publishers. When an author makes a change, the outstanding professional publishers often charge to fix up a passage. Want reprints? Just get out that electronic payment system. Order away.
The professional publishers are struggling to get libraries to buy, subscribe, license, and renew automatically if possible. More junk research and increased content manipulation will improve the professional publishing system itself.
Imagine. Bogus research in medicine, social science, and quantum computing. When something actually reproducible and substantive becomes available, a researcher will have to spend more time on for fee commercial databases, apply more research assistant labor, and scan more tweets to figure out what’s “real” and what’s fake.
The advancement of knowledge is enabled, and even the professional publishers can get behind the call for action expressed in “Please Commit More Blatant Academic Fraud.” Marketing is more important for everyone it seems now.
Stephen E Arnold, May 31, 2021
Marketers Assert AI Perfect for eDiscovery
May 24, 2021
Automated eDiscovery firm ZyLab makes a case for AI in the law firm with its post, “A Chief Legal Officer’s Guide to AI-Based eDiscovery and Analytics,” shared at JDSupra. Writer Jeffrey Wolff begins by outlining the job of a CLO. He notes lawyers in that position tend to be most comfortable with the “traditional” duties of risk mitigation, monitoring legal matters, and minding laws and regulations. According to a Deloitte study, however, executives would like to see their CLOs work more on guiding the company culture and squaring legal concerns with company goals. Wolff suggests outsourcing this part of the CLO role. (We observe his company happens to offer such expert professional services.)
After that pitch, we learn why CLOs should consider AI. We’re told:
“AI excels at sifting through massive quantities of data to identify specific terms or concepts, even when those concepts are expressed in different terms. Because an AI system can scan data faster than any human and doesn’t get tired or distracted, it can evaluate data sets faster and more easily than a human while maintaining accuracy. A machine can also manage repetitive, laborious tasks quickly and effectively without falling prey to boredom or wandering attention. Legal departments can therefore use AI to streamline processes, reduce costs, and increase their productivity. Given that ‘nearly two-thirds (63 percent) of [legal department] respondents say recurring tasks and data management constraints prevent their legal teams from creating value at their organization,’ AI offers a way for CLOs to offload those time-consuming responsibilities and focus on the strategy and growth priorities that matter to the company’s future.”
A good place to start is with ZyLab’s specialty, eDiscovery. That area does involve a mind-boggling amount of data and AI can be quite valuable, even indispensable for larger firms. Wolff describes six ways AI tools can help with corporate eDiscovery: completing early case assessment, structuring data through concept clustering, using Technology-Assisted Review, redacting personal information, generating eDiscovery analytics, and managing eDiscovery costs. See the write-up for more on each of these tasks.
The company’s technology dates from 1983 (38 years ago). Today’s ZyLab supplies eDiscovery and Information Governance tech to large corporations, government organizations, regulatory agencies, and law firms around the world. The company launched with its release of the first full-text retrieval software for the PC. It’s eDiscovery/ Information Management platform was introduced in 2010. ZyLab is based in Amsterdam and has embraced the lingo of smart software like other eDiscovery firms.
Cynthia Murrell, May 24, 2021
What the Colonial Pipeline Affair Has Disclosed
May 21, 2021
I worked through some of the analyses of the Colonial Pipeline event. You can get the “predictive analytics” view in Recorded Future’s marketing-centric blog post “DarkSide Ransomware Gang Says It Lost Control of Its Servers & Money a Day after Biden Threat.” You can get the digital currency can be deanonymized view in the marketing-oriented “Elliptic Follows the Bitcoin Ransoms Paid by Colonial Pipeline and Other Dark Side Ransomware Victims.” You can get the marketing-oriented “Colonial Pipeline Ransomware Attack: What We Know So Far.” Please, read these after-action reports, pull out nuggets of information, and learn how well hindsight works. What’s hindsight? Here’s a definition:
the ability to understand an event or situation only after it has happened (Cambridge.org)
The definition edges close to the situation in which cyber security (not Colonial) finds itself; namely, I have seen no names of the individuals responsible. I have seen no identification of the sources of funding and support for the group responsible. I have seen no print outs illustrating the formation of the attack plan or of the log data making explicit an attack was underway.
The cyber security industry is a club, and the members of the club know their in-crowd has a license to send invoices. Not even IBM in its FUD days could have created a more effective way to sell products and services. These range from real time threat intelligence, to predictive reports explaining that lighting is about to strike, or smart autonomous cyber nervous systems sounding alarms.
Nope, not that I have heard.
Here are some issues which Colonial raised when I participated in a conference call with a couple of LE and intel types less than 24 hours ago:
- The existing threat intelligence, Dark Web scanners, and super AI infused whiz bang systems don’t work. They missed SolarWinds, Exchange Server, and now the Colonial Pipeline affair. Yikes. Don’t work? Right. Don’t work. If even one of the cyber security systems “worked”, then none of these breaches would have be possible. What did I hear in Harrod’s Creek? Crickets.
- In the case of Colonial, how much of the problem was related to business matters, not the unknown, undetected wizards of Dark Side? Who knows if the bad actors were the problem or if Colonial found the unpleasantness and opportunity for some breathing room for other activities? Where are the real journalists from Bloomberg, the New York Times, the Wall Street Journal, the Washington Post, et al? Yep, sources produced nothing and now the after action analyses will flow for a while.
- What about the specialist firms clustered in Herliya? What about the monitoring and alerting systems among Cambridge, Cheltenham, and London? What about the outfits clustered near government centers in Brussels, Berlin, and Prague? I have not heard or seen anything in the feeds I monitor. Zippo.
Let’s step back.
The current cyber security set up is almost entirely reactive. Any breach is explained in terms of China, Iran, and Russia. Some toss in Iran and North Korea. Okay, add them to the list of malefactors. That does not change the calculus of these escalating cyber breaches.
The math looks like this: 1 + 0 = 32
Let me explain:
The “1” represents a cyber breach
The “0” represents the failure of existing cyber security systems to notice and/or block the bad actor’s method
The 32 means the impact is exponential—in favor of the bad actors.
With no meaningful proactive measures working in a reliable function, the cyber security systems now in place are sitting ducks.
Some body said, “Our reaction to a situation literally has the power to change the situation itself.” Too bad this aphorism is dead wrong.
When the reactions are twisted into marketing opportunities and the fix does not work, where are we? I would suggest in a place that warrants more than sales lingo, jargon, and hand waving.
The talk about cyber security and threat intelligence sounds similar to the phrase, “Please, take off your shoes.”
Stephen E Arnold, May 21, 2021
-
- Subscribe to Beyond Search
Feature archive
News archive
-
