time and space

seeing what she sees

closeness in spite of distance

knowing that she knows

Digital take-aways

So, what were my take-aways from Art in Digital Environments?

Art as a process. Digital art often assumes participator involvement to an extent where the artwork can be viewed as a process, rather than an object.

Preservation through crowdsourcing. Jon Ippolito argues compellingly that public involvement is the most effective way to preserve digital artworks over time.

Art as resistance. Regarding surveillance, globalisation or capitalism - more often than not, digital art carries a critical discourse.

a lunch stroll

walking that bike lane

as hope surpasses courage

to spot her once more

Art in Digital Environments

Art in Digital Environments is a course on which I'm about to embark.

There is hardly any agreed definition of art. Leaving that aside, what about those digital environments? I can imagine different interpretations.

• traditional analog art being documented and shared digitally
• analog art being digitised for reasons of preservation
• art which involves digital elements but also traditional techniques
• human-created art for a digital medium
• art created by an algorithm

Now, this should keep us busy for a while.

what is "good"?

 

What do we mean by sustainability?

When something is sustainable, it becomes enduring, even persistent. Before there was much talk about sustainability, people would prefer any "good" condition to be enduring - be that individual affection, corporate profit, communal health or territorial peace.

So, what defines a "good", preferably long-lasting, condition? That is a value judgment. The value you and I place on health, wealth and freedom will differ.

To define sustainability, we need to agree on what is "good".

how decisions happen

I've been reading about different perspectives on decision-making.

• I'm a rational individual, I know my preferences, analyse every consequence and choose the best alternative.
• Well, I haven't got the information or the time to make a perfect decision. Rationality is bounded.
• I'm implementing my identity by deciding according to (the right) rules, at the right time, in the right fashion.
• As a decision-maker I'm rarely alone. What happens in a team with conflicting identities and values?

To be continued...

inspiration and energy beyond Trondheim

For pandemic reasons, the 25th conference on Innovation and Technology in Computer Science Education (ITiCSE) had to relocate from Trondheim to Moodle and Zoom.

This was my first ITiCSE. While attendees on other continents were struggling with time-zone differences, I enjoyed travel-less conferencing at my desk. The virtual format worked surprisingly well with a few tolerable glitches.

My main take-aways were inspiration, energy and pointers to new resources in the real world of non-security specialists.

Zeke Wolf has an image problem

From Joakim 8/1980

The Big Bad Wolf is a pathetic figure. He tries to be evil but his actions fail and turn out well. Others cheer him. The humiliation!

So what? Yes, he's fiction. And yet we can learn something.

In InfoSec, we subdivide Threat Sources into the dichotomy intentional/accidental. Villainous Zeke is clearly intentional, he wants to Be Bad. But he always fails. How do we categorise such an actor? Let's think of Threat Sources in terms of their effectiveness. The Three Little Pigs have learned to do just that.

others on risk

Blogs have their lifecycle.

In fact, the blog format has passed its hype and entered what some would call a plateau of productivity.

A blog list is a nice feature, with active feeds bubbling to the top. RSS feeds might seem out of fashion. Still, being able to subscribe to tailored channels is a powerful technique.

Blogs appear, develop and fade. My blog list others on risk (see the sidebar) has been a tad neglected. Some members have been silent for years. Others have now taken their places. Enjoy!

mind those misses

An article in HBR suggests a way to avoid catastrophes by focusing on near misses, situations where luck saved the day.

The authors describe how latent errors (such as gas leakage at an oil rig) combine with enabling conditions (a windless day or a welder working nearby) to cause failure (think of the BP Gulf disaster).

Lessons for InfoSec are to leverage incident reporting to catch smaller mishaps and to explicitly manage vulnerabilities as a precursor to risk identification with threat sources.