Norwegian noir meets cybercrime: a Snowden age "faction" stocking filler for your CEO
Last night I had dinner with Carlos Solari, sometime White House CIO and V-P Security for Alcatel-Lucent and CSC, now co-author of eNikita. Carlos was happy for me to blog about the latter and his motives for writing it. eNikita is intended to be the first volume in a crowd-sourced and funded trilogy to draw in readers and educate them in the realities of cybercrime and response as they are today – in the world exposed by Edward Snowden and Mischa Glenny (McMafia and Dark Market ). As I had suspected, everything in the book has happened, but the changing of names, remixing of incidents and excuse that the book is fiction has enabled the authors to get clearance from the FBI and their libel lawyers to go where others have not. On Friday Carlos will be attending the public launch of the book in Oslo – where parts of the book will have a particular resonance. He hopes to organise a similar event in New York where where other parts will have equal resonance.
The decision to use pederasty rather than fraud or extortion as the main linking thread was deliberate, to maximise sales, but the book is actually about the interconnectedness of all three in the quest by organised crime for power over current and potential victims, personal, corporate or state. The short (one page) preface to the book begins with a quotation from Martin Luther King: “I am cognisant of the inter-relatedness of all communities and states. I cannot sit idly by in Atlanta and not be concerned about what happens in Birmingham. Injustice anywhere is a threat to justice everywhere. We are caught in an inescapable network of mutuality, tied in a sigle garment of destiny. Whatever affects one directly, affects all indirectly. ” Carlos and John-Patrick Skaar extend this to the on-line world “where we blend the real and the virtual”.
In this context the positive role of the Guardian in exposing the rot at the heart of the semi-privatised and politicised surveillance operations of the US needs to be balanced against the way it has also greatly weakened the operations of GCHQ, with its very much more robust governance. No one would believe a plot line in which Malcolm Tucker ordered the collection of material to enable HMRC to investigate the tax affairs of his opponents or the police to breathalyze them after a constituency party. Perhaps that was why the US remake of “The Thick of It” failed. US audiences could not relate to the limitations on Malcolm Tucker’s powers. We need to understand just how important it is to move rapidly to build confidence in genuinely trustworthy frameworks for co-operation against organised crime and corruption, not just the terrorist bogeymen of the day and certainly not against political opponents.
I therefore have no hesitation in updating my blogs on how to get main board buy in for your cyber security and the problem of boards with awareness but no strategy . Give a copy of eNikita to your CEO. He may not relate to the pederasty and grooming thread, unless he has children or grandchildren, but he will certainly relate to the parallel hijacking of the retirement funds of one of the parents. Your challenge will then be to provide him with an up-to-date, relevant and evolving, intelligence led, security strategy. On that I hope to blog again shortly,
Join the conversation
5 comments
See also my blog entry questioning why David Miranda was not arrested under the 1920 Official Secrets Act https://www.computerweekly.com/blogs/when-it-meets-politics/2013/08/why-wasnt-the-official-secrets.html
I do, however, share your concern over "power groups lurking at the shadowy intersection of government with the pirvate sector". I am appalled that the Snowden affair should be used by some as an argument for further privatisation as opposed to "improved governance".
But, that said, I am more concerned about the failure to use the capabilities of GCHQ to help track, trace and "remove" (using a mix of civil and criminal law) the organised crime groups (and those providing them with tools and other services) who are undermining confidence in the on-line world. Given that so many of these also have links with terrorist and other ideologically driven organisations, that might also be a more effective way of crippling all three groups.
You might then say that this has not happened because it would also cripple the cyberwarfare operations of our current and potential allies as well as our supposed opponents (alias possible future allies). Instead of replying, I would then then refer you to my blogs on the theme of merchants versus warlords https://www.computerweekly.com/blogs/when-it-meets-politics/2011/08/warlords-versus-merchants-the.html
Ths debate is not in the least new.
It is "merely" that a great many hypocrites and shallow thinkers are being flushing out into the open.
Edward Snowden's flight to Moscow via Hong Kong and Julian Assange's choice of the Ecuadorean Embassy as a refuge against Swedish Law tells me that, whatever my misgivings, I have more faith in the governance of GCHQ as protector of my long term civil liberties than of Wikileaks or the Guardian, with its shadowy ownership via off-shore tax havens, let alone those of ISPs who appear to provide better access to advertisers and IPR enforcement lawyers than to law enforcement.
The problem is very simple. Knowledge is power - as you say, nothing new about that. But the assumption that governance rules alone will suffice to control the abuse of secret knowledge is demonstrably false. They never have, they never will. The banking sector is a spectacular example of how secret knowledge creates a sense of law-transcending entitlement. The torture of prisoners, the existence of Guantanamo Bay, the mass stealing of personal data, all reflect the arrogance that is inevitably bred by the existence of a self-perceived 'secret elite'. The interesting thing is, there's no fundamental difference between these self-appointed 'secret supervisors' and the organised crime groups you quite rightly decry - both are flouting the law for reasons that may appear superficially different, but are actually in danger of converging. And will converge (cf. your accurate depiction of 'semi-privatised' US intelligence, used as much, if not more, for private gain as for public protection) unless we, the public, have a clear idea of the structures that are supposed to be protecting us, what regulatory frameworks these structures are operating in, and what limits are placed on these structures' powers.
The 'clear idea' is certainly not forthcoming from the government. So we are left to rely on the Snowdens, Assanges and Guardians of this world to find out about these things.
https://www.computerweekly.com/blogs/when-it-meets-politics/2013/12/whose-governance-do-you-trust.html
and
https://www.computerweekly.com/blogs/when-it-meets-politics/2013/12/is-edward-snowden-the-soviet-u.html
http://www.theguardian.com/uk-news/2013/dec/20/gchq-targeted-aid-agencies-german-government-eu-commissioner