Scanning the Internet for External Cloud Exposures via SSL Certs
2012-02-23 Marc Davis MIT Media Ventures Presentation
1. Innovating with
Personal Data
in the “Web of the World”
Marc Davis
Partner Architect
Microsoft Online Services Division
Marc.Davis@microsoft.com
@marcedavis Marc Davis http://marcdavis.me
2. From the “Web of Pages”
@marcedavis Marc Davis http://marcdavis.me
3. To the “Web of People”
@marcedavis Marc Davis http://marcdavis.me
4. To the “Web of the World”
@marcedavis Marc Davis http://marcdavis.me
5. The Mobile Phone and its Metaphors
• A personal device carried on the body
• A two-way voice communication device
• A two-way text communication device
• A media consumption device
• A media production device
• A sensor device in a sensor network
• A social and cognitive prosthetic device
that enables our collective embodied
intelligence
@marcedavis Marc Davis http://marcdavis.me
6. WHO: Social Data and Metadata
Who
@marcedavis Marc Davis http://marcdavis.me
7. WHERE: Spatial Data and Metadata
Where
@marcedavis Marc Davis http://marcdavis.me
8. WHEN: Temporal Data and Metadata
1 2 3 4 5
When
@marcedavis Marc Davis http://marcdavis.me
9. WHAT: Object Data and Metadata
What
@marcedavis Marc Davis http://marcdavis.me
10. Contextual Metadata for the Web of the World:
Where + When + Who + What
1 2 3 4 5
When
Where
What
Who
@marcedavis Marc Davis http://marcdavis.me
11. WHO: Social Data and Metadata
Who
@marcedavis Marc Davis http://marcdavis.me
12. People as Uniquely Identifiable Digital Entities
From “Marc Davis”
to
https://www.facebook.com/marcedavis
and also…
https://twitter.com/#!/marcedavis
http://www.linkedin.com/in/marcdavis
etc.
@marcedavis Marc Davis http://marcdavis.me
13. Social Graph Atoms
A B A B
A B A B
@marcedavis Marc Davis http://marcdavis.me
21. “Personal data is the
new oil of the internet
and the new currency
of the digital world.”
— Meglena Kuneva
European Consumer Commissioner
@marcedavis Marc Davis http://marcdavis.me
22. Personal Data: Where Are We Now?
• “If personal data is the currency of the digital
world, then where are the banks?”
• And the exchanges?
• And all the other institutions and instruments we
have developed for storing, managing, and
trading (money)?
• We are in the very early days of becoming a
digital society and digital economy...
@marcedavis Marc Davis http://marcdavis.me
23. “Everything I Make and Do Online
and in the World”
Identity and Relationships
Context
Activity
Communications
Content
Asset Inventory
Financial Data
Health Data
Governmental Data
Academic Data
Employer Data
@marcedavis
Other Personal Data…
Marc Davis http://marcdavis.me
24. Personal Data Value
All
Personally
Identifiable
Information
None
Never Retention Forever
@marcedavis Marc Davis http://marcdavis.me
25. New Economic and Societal Value from
User-Centric Personal Data Aggregation
Searches & Sites
Social
Graph Calendars
Interests Location
Purchases
@marcedavis Marc Davis http://marcdavis.me
26. Example: Who Has What Rights
to the Record of Your Being Here Right Now?
@marcedavis Marc Davis http://marcdavis.me
27. Example: Who Has What Rights
to the Record of Your Being Here Right Now?
Network Operator Data Aggregator
Phone Manufacturer Building Owner
OS Manufacturer
Application Provider
Public Health
Law Enforcement
City Planners
Employer
Family Member Data Subject
@marcedavis Marc Davis http://marcdavis.me
28. Rethinking Personal Data:
TOS and Privacy Policy
Lawyer Readable Human Readable Machine Readable
@marcedavis Marc Davis http://marcdavis.me
29. Web of the World Today:
Flows of Data, Rights, and Value
Individual
Public Private
Sector Sector
@marcedavis Marc Davis http://marcdavis.me
30. Web of the World Tomorrow:
Flows of Data, Rights, and Value
Individual
Personal and
Social Agents
Public Personal Private
Sector Data Sector
Agents Services Agents
Public Private
Sector Sector
@marcedavis Marc Davis http://marcdavis.me
31. World Economic Forum
“Rethinking Personal Data” Project
Launched in 2010, the Rethinking Personal Data project is a multi-year project
intended to bring together private companies, public sector representatives,
end-user privacy and rights groups, academics and topic experts to deepen the
collective understanding of how a principled, collaborative and balanced
personal data ecosystem can evolve.
@marcedavis Marc Davis http://marcdavis.me
32. “IT’S YOUR DATA”
“WE CAN KEEP IT
SAFE FOR YOU”
“WE CAN PUT IT TO
WORK FOR YOU”
@marcedavis Marc Davis http://marcdavis.me
37. The Political Economy of the Internet Today
“Digital Feudalism”
• We don’t own our
names
• Or our bodies
• Or personal property
or a domicile
• We lack freedom of
movement and
expression
• Our labor benefits the
lords of the manor
who own the land
• We are “data serfs”
@marcedavis Marc Davis http://marcdavis.me
38. Towards a New
Political Economy of the Internet
“Digital Enlightenment”
• Human Rights
• Property Rights
• Civil Society
• Free Markets
@marcedavis Marc Davis http://marcdavis.me
39. “Consumer Privacy Bill of Rights” 7 Principles
1. Individual Control
- Consumers have a right to exercise control over what personal
data organizations collect from them and how they use it.
2. Transparency
- Consumers have a right to easily understandable information
about privacy and security practices.
3. Respect for Context
- Consumers have a right to expect that organizations will collect,
use, and disclose personal data in ways that are consistent with
the context in which consumers provide the data.
4. Security
- Consumers have a right to secure and responsible handling of
personal data.
@marcedavis Marc Davis http://marcdavis.me
40. “Consumer Privacy Bill of Rights” 7 Principles
5. Access and Accuracy
- Consumers have a right to access and correct personal data in
usable formats, in a manner that is appropriate to the sensitivity
of the data and the risk of adverse consequences to consumers
if the data are inaccurate.
6. Focused Collection
- Consumers have a right to reasonable limits on the personal
data that companies collect and retain.
7. Accountability
- Consumers have a right to have personal data handled by
companies with appropriate measures in place to assure they
adhere to the Consumer Privacy Bill of Rights.
@marcedavis Marc Davis http://marcdavis.me
41. A
Brief History
Of
Cloud Computing
@marcedavis Marc Davis http://marcdavis.me
42. Brief History of Cloud Computing
1965
1965
@marcedavis Marc Davis Mainframe
http://marcdavis.me
43. Brief History of Cloud Computing
1985
1965
@marcedavis Marc Davis Mainframe
http://marcdavis.me
44. Brief History of Cloud Computing
1995
1965
@marcedavis Marc Davis Mainframe
http://marcdavis.me
45. 2005
1965
@marcedavis Marc Davis Mainframe
http://marcdavis.me
46. Brief History of Cloud Computing
2015
1965
@marcedavis Marc Davis Mainframe
http://marcdavis.me
47. PHYSICAL
PERSON
@marcedavis Marc Davis http://marcdavis.me
48. LEGAL
PERSON
@marcedavis Marc Davis http://marcdavis.me
49. DIGITAL
PERSON
@marcedavis Marc Davis http://marcdavis.me
51. Innovating with
Personal Data
in the “Web of the World”
Marc Davis
Partner Architect
Microsoft Online Services Division
Marc.Davis@microsoft.com
@marcedavis Marc Davis http://marcdavis.me