Skip to navigation
   
Simon Bisson & Mary Branscombe's Blog
RSS

Watch(ed)men

By Simon Bisson & Mary Branscombe in Editorial

Posted in Security on February 28, 2009 at 8:13 am

Permalink | Author Profile

The clock is counting down to the 6th of March and the opening of the Watchmen movie. There’s not really much point in watching it, as the real watchmen are among us, and they’re armed with database queries.

Last week we had a meeting with a senior Microsoft VP, who was to brief us on the next steps before the launch of Windows 7. As we sat on the tube we got a phone call - telling us he’d be late, due to some unspecified car trouble.It was only when he arrived, armed with a brand-new anecdote that we learnt just what had happened.

The London Congestion Charge zone is surrounded by cameras, all hooked up to a massive number plate recognition system. As his car crossed through the ring of cameras it was photographed, and the number uploaded onto the system. The car number tripped a rules engine somewhere in the CC database - as it was wanted by the police.

A nearby police motorcycle quickly intercepted his car, and it soon turned out that someone had cloned both its number plate and the taxi company’s petrol card. Someone was using them to defraud garages, getting fuel for nothing.

It took some time to sort things out, and for the driver to prove his innocence (the fact that his car didn’t match the forecourt photographs made a big difference). If it hadn’t been for the cameras and the software behind them he’d have made our meeting on time…

There’s something slightly unnerving about automatic systems sending the police off to stop a car. Any automation can be corrupted, and it’s all to plausible to think of this system being used to delay important business meetings - a real denial of service attack.

Who watches the watchmen? At this point it seems to be no-one!

–Simon

12345
Not yet rated
Loading ... Loading ...

Previous Post | Next Post

 
 
Comments

Trackback by Frankie Hanz - February 9, 2012 on 3:59 am

greenpeace wiki…

[…]have granted their selection prior to Xmas but as the new year methods it now seems to be […]…

Make a comment

* required

* required

We stop spam using reCaptcha.
Type the words below and click Submit Comment.

   
Tag cloud

disk space Acrobat Pro dvi malware workflow CardSpace HTML 5 Adobe bug HP office politics Beacon beta test HTC VSSAdmin IBM eu switch OFCOM MWC 2.0 data centre police Mini-Note keyboard video upgrade DOS conferences routing firewall desktop. PC voice Corsair case old software green IT ribbon october gamer BBC mapping RSA 2008 griffin infrastructure geotagging privacy fault oracle cellcrypt Active Directory Girl Geek Dinners Google IO exchange T-Mobile RIM open source Ruby greenplum emulator social networking AMD mobility Microsoft aws BlackBerry ProCurve Istanbul atom lost server wildfire tele atlas windows HMT hacking SMB 2 advertising web2expo Frauenhofer GPS bletchley park cracking CUDA xT9 NexT Tablet PC .NET Verbatim Qualcomm DLP Firefox security paradox SKU control panel microsoft security essentials insert SIM Linux Barracuda Smartbook M&A streaming media IM Safari radeon instant messaging AskEraser Tom Hogan hardware security Skyfire mysql virtualisation user experience ec2 hibernation Numenta active digitiser SSD Wyse display project docking station system center application compatibility Bill Cheswick mobile network uninstall power supply enterprise green printing hierarchical temporal memory BT distributed computing Loki Asus Windows Server AuthenTec Tablet Kiosk data mobile working utilities system management monitor business continuity how do I get the back off? Live Mesh cloud service google online applications android business model downturn office 2010 market share performance isp laptop forensics network maps machine learning Bing Large Hadron Collider Intel Opteron multiple monitors pgp management g-1 phone settings twitter design ipsec bolt data loss prevention Tombstone Objects 64-bit calit2 hard drive Treo Pro windows server 2008 r2 Greasemoneky private cloud RSS search troubleshooting city utility Bill Gates fonts london anti-virus TouchSmart demo09 offload Crossfader IT transformation fingerprint windows 7 2009 gaming dual display lawsuit IIW2008b goview safend Mozilla Jeff Jones cables evernote installer LiveID business technology optimisation bea relocation Palladium netiquette migration mscape open d2c GPL business technology automation information productivity interoperability futura service oriented enterprise mobile Linux cam email CPU apps Windows 7 vs Windows Vista Ruby On Rails information cards Internet battery life Netscape catalyst cloud Google Sets Tripit Visual Studio media center backhaul media colossus visualisation macbook citrix mainframe 965 telecoms NAS semiotics codec Netscan trends O2 bbc iplayer Fire Eagle web 2.0 expo magic Quest Moonlight Ask.com anti-patterns parallel computing wireless USB Mono Apple setup flex mobile ofcom network geek tourism enterprise architecture developer T9 IT policy Mark Hurd microsoft research Windows Live Enterprise 2.0 culture installation natural interface Xen RBL MIX yahoo venture capital DisplayLink cosmic rays storage christmas rich client DOSBox OpenID GPU Salesforce moblin Sony processors power saving IDF FUD winhec2008 Credentica co-processor encryption Seagate amazon BitLocker adfs hp microsoft research competition LHC education phone management licensing patch Tuesday browser screencam electricity price regulation designer credit crunch Lenovo business navigation power cuts spam Embarcadero Dopplr icons Web 2.0 MIX08 thin client spam fighting Dell IO security theatre logitech Java HSDPA Opsware 3G rtm lockdown exabytes community thermo Xobni appzero Pal i-mate Chrome Windows Server 2008 rc applications RIA hdmi business intelligence mobile data tariffs ANR ClipMate ports deperimeterization terabytes congestion charge no signal transcoding traffic benchmark Nuance legacy pixetell CTO flash drive images fingerprint scanner public cloud mythbusters MRDA HSPA SP1 quiz flash Gartner wave identity theft CES Internet Explorer people ontier virus amherst mobile claims iPass networks navteq CIO tablet netbooks ATI Hp 2710p secure Vodafone Google Spreadsheets user interface robot usb bugs task bar IT value Itanium biometrics numbers TechEd 2008 international roaming acquisitions clean install target IT automation BES Windows Mobile macro identity metasystem cisco Volume Shadow Copy Opera EMC software html appstore accelerator Hugh Thompson national museum of computing fire future in review tennis it pro search WPF Trampoline verdana WEI Magny-Cours social engineering accessories O'Reilly teched g-2 p2v Palm bombe MacWorld 2008 bandwidth direct access Google data centre transformation gameboard server sprawl database OQO EEE cold fusion ucsd Location Previous Versions consolidation disaster recovery high performance computing identitity power politics voice recognition mash-up vulnerabilities NGSCB Internet Explorer 8 drivers meaning Express Gate mms 2009 screen iPhone patent outlook wifi wes Facebook context Wimbledon wubi SapphireSteel Mercury Protected View hold music merger Toshiba Portege R500 development Eee PC vmware web turing Secunia WWW annotation RAZR cloud computing information rights management collaboration data loss Trolltech SBS augmented reality Reqall dual boot QWERTY regulations demo sun beta whitelist remove back ruggedized camera TSA timezones server etech history ballmerbot ultraportable WinHEC MAX Silverlight Clear RX toshiba pre-boot smartphone todo list virtual desktop Tim Berners-Lee isps innovation CERN Vista Motorola mobile broadband Ray Ozzie AIR ADFS 2.0 geneva optical interconnects pen computing analytics moscow legislation fibre data tariff connectivity netbook anti-trust OEM training DSL ubuntu hyper-v ikea ipv6 office UMPC Nokia NVIDIA Gears gabriola webkit support MING disk conference Trend Micro nvision08 geocaching Delphi MacBook Air Jeff Hawkins deborah adler
Advertisement

   
Archives

   
Most commented posts

   
Highest Rated Blog Posts

Advertisement