No Flash on the iPad

The New York Times joins the long list of journals who fail to mention the most likely reason that Apple refuses to implement Flash on the iPad.

Apple has made clear that it's intention is to control both the platform and the applications that run on the platform. Like the Video Game console makers, Apple wants to tax every application provider.

Support for Flash would provide another means of putting applications on the iPhone. And so Apple will refuse to support Flash whatever the status of the specification or the implementation until they abandon the 'application tax' model.

Is there any chance Apple will change? As with every other first generation Apple product, the iPad lacks rather a lot of features that appear essential. It is pretty obvious that the next version will have a camera for doing video conferencing. I think that they are going to find they are forced to support real USB and an SD card as well.

Apple does quite well spinning the fact that obviously essential features are missing. When the first iMac was launched it lacked a floppy drive because the box had originally been made as a 'Network PC' and repurposed as a home PC. Jobs argued that the lack of a floppy or a CDRom was because people would download programs from the Internet. This story has even been repeated this week as evidence for how 'prescient' Jobs has been in the past. Which is rather silly since there was an optical drive on the next iMac and every model since.

When the iPhone came out the big question was not whether it would make a good computer but whether it would be a usable phone. Experience of the HP iPaq range was that computer company phones were to be avoided. Rival phone makers have spent the three years since trying to catch up with the first iPhone. The fact that the iPhone is a vendor locked application platform was not a big deal to me as it was the first phone that you could run a useful application on without the thing crashing (yes, I mean you Palm).

The iPad is a computer and this time Apple is up against the rival computer makes. I don't much care how good Apple's eBook store is, I am going to buy my eBooks from Amazon which lets me read them on my Kindle, my PCs or in the very near future my Macs. The first generation iPad clones will probably be somewhat nasty. But if they have an SD slot and a proper USB port and let me write my own applications they are already looking like a better buy.

Apple is certainly going to try to roll their iPhone/iTouch application tax model onto the iPad but this time its going to fail. And when it does we will probably see the model starting to unwind on the iPhone as well. If Google Android based pad computers beat out the iPad they are going to establish a developer base to make them competitive with iPhone.

Word Stupidity

For years, the defaults for making references to other parts of a document in Microsoft Word have been insane.

First off there is the stupid dialog box.



There are eight default objects that Word lets you link to but the drop down menu only shows the first six. For some reason the options for 'Table' and 'Figure' - i.e. the types of object people are most likely to be adding a cross reference to appear at the bottom so you have to scroll down to see them.

The other bizarre choice is that the default is to insert a reference to the Entire Caption. Does this ever make sense?

The net is that the user has to scroll through two drop down menus every single time they insert a reference. Word does not seem to have an option to add in a shortcut. And the default options are reset each and every time the dialog appears.

Abdulmutallab speaks

So, Abdulmutallab, the 'crotch bomber' has been co-operating with investigators 'despite' the use of standard FBI process [ NY Times].

This should hardly be a surprise. Police are trained to perform interrogations, they have years of experience. CIA agents are not.

Even so, the latest Republican Party talking point is the rather weird claim that reading Abdulmutallab his Miranda rights may have persuaded him to stop talking.

Let us recap the circumstances of Abdulmutallab's arrest. He was taken off the plane he had attempted to bomb. He had severely injured himself in the attempt to detonate the bomb. The passengers and crew had at a minimum removed his trousers and underwear. It seems quite likely that after discovering the bomb in his underpants, the passengers/crew had stripped him completely naked.

Given those circumstances, it seems rather unlikely that Abdulmutallab would have any expectation of a not-guilty verdict.

How could talking to the investigators possibly make Abdulmutallab's case any worse? He can't claim mistaken identity, he can't plausibly deny carrying the bomb, being aware of carrying it or attempting to detonate it.

Abdulmutallab is certain to receive a life sentence regardless of what he says. This is not a difficult case where a confession or an unintended slip is going to make the difference between conviction and acquittal. It is as close to being an open-and-shut case as they come.

The only chance Abdulmutallab has to improve his living conditions during his life sentence or to earn the possibility of parole in the distant future is to co-operate.

Incidentally, the man appears to have burnt away his penis in the attempt. How could torture do anything more than give him something else to think about? If he is being waterboarded he is going to blame his captors for his situation. If he is being being treated as an ordinary criminal he has plenty of time to build up resentment against the group who caused his injury.

At the time of his arrest Abdulmutallab was probably expecting to be taken to Gitmo and subjected to torture. The point at which his Miranda rights were read would be the first point at which the actions of the authorities significantly departed from his expectations.

iPad - missing the point

All the reviews for the Apple iPad seem to be positioning it as a Kindle competitor.

This is rather silly as the point of kindling is that you use it to start the fire. It is the first fuel to be consumed.

To understand where Amazon is going with Kindle people should look to the fact that there is already a Kindle viewer for the iPhone which according to the Apple site should work on the iPad unless Apple is silly enough to attempt to block it. There is also a Kindle reader for the PC and a reader for Mac is promised.

The point of the Kindle was to allow Amazon to build an early lead in the eBook market and to prevent Apple from dislodging it in the way that Apple has managed to dismantle the power of the record labels. Kindle has clearly met that objective.

The iPad is simply a logical extension of the Kindle concept that is optimized for video, games and pictures rather than a dedicate book reader.

Rather too much is also being made of Amazon's recent 'change' in their pricing policy. Under the old pricing policy the publisher got 30% of the recommended retail price which Amazon routinely discounted by a third. So the publisher would recommend a price of $15 which Amazon would discount to $10 and receive $4.50 per copy. Under the new scheme the publisher gets 70% of the sales price provided they agree to a recommended price of $2.99 to $9.99 that is at least 20% lower than the hardcover price and agrees to enable text-to-speech. So the royalty rates are actually rising from 45% to 70% and only if the publisher is also willing to take a considerable price cut. The net result is that it makes little sense for a publisher to charge more than $9.99 for a Kindle book unless they are going to charge a minimum of $23.33.

Amazon is still making a nice profit from Kindle sales, but their cost of sales is no longer negligible. Associate fees are 10% of Kindle sales and the costs associated with payment processing and running the Amazon site and brand are likely to take up another 10%. Kindle royalties might rise a little further in the future, but any rise is going to significantly cut into Amazon's profit.

Why charging illegal entry?

Someone asked me why O'Keefe has been charged with illegal entry rather than wiretapping.

The answer is that this is likely a holding charge. The prosecutors have all the evidence they need to win a conviction for attempting to gain entry to Federal property for the purpose of committing a crime. That alone carries a sentence of ten years. Burglary is the act of breaking and entering for a criminal purpose. The actual taking of property a separate offense: theft.

But the FBI and the prosecutors will almost certainly be adding additional charges before taking the case to a grand jury. They will also be looking to see if the group have attempted any other breakins and in particular the possibility that they might have succeeded.

What charges are likely? Well the Pellicano case is a fairly close comparison. Pellicano was eventually sentenced in December 2008 to 15 additional years in prison, and ordered (with two other defendants) to forfeit $2 million [Wikipedia].

Pellicano was engaged in his activities for several years and so he was charged with RICO Conspiracy. He also attempted to cover up his activities and so he was charged with witness tampering, false statements and destruction of evidence.

Of the Pellicano charges, the charge of Interception of Wire Communications does not apply on the basis of the facts set out in the indictment. It would apply if the conspirators had been allowed to actually place the wiretap and it was used to intercept a communication. But had that happened I would expect it to have been reported in the affidavit and charged as per the indictment. It may turn out that the conspirators intercepted other communications in which case they would be liable for either a one year or a five year sentence depending on the circumstances.

A count of Posession of an Electronic Communication Interception Device (18 USC 2512) seems likely, but that only has a sentence of five years.

According to the facts as we currently understand them, the activities of O'Kefee and his conspirators were nowhere near as extensive as those of Pellicano, nor did they succeed. But against that there is the fact that they attempted to bug the telephone of a United States Senator.

Another third rate burglary

The FBI Affidavit provides some very interesting information on what Democrats are now referring to as the 'Louisiana Watergate'. Conservative propagandist James O'Keefe and three accomplices were caught allegedly attempting to tap the phones of Senator Landrieu.

As the Senator's office is on Federal property, the holding charge of attempting to gain entry to Federal property for the purpose of committing a crime carries a maximum ten year jail sentence.

The affidavit itself reads like a bad script for an episode of the A-Team. Two members of the group dressed up as telephone repairmen and attempted to gain access to the telephone closet. They headed for the Senator's office, attempted pretexting and were directed to the GSA office down the hall where the plot was uncovered when the pair were asked for identification and claimed to have left it in their van.

Now it is quite possible that a GSA employee would have been trained to recognize a telephone company ID badge, but I don't know what one looks like and the typical security guard at a non-government facility wouldn't either. For a few hundred bucks the conspirators could have bought a second hand badge printer on EBay to create their own badges and greatly reduced the chance of getting caught.

Using fake ID reduces the risk of being caught but increases the penalties if caught. Possession of a fraudulent access device is a federal crime, as is possession of means to create fraudulent access devices. Using real identification greatly increases the risk of being caught, but some do so anyway.

So how does a facility protect itself against this type of attack?

At this point we do not know where the conspirators first aroused suspicion, it is quite likely that they were considered suspect from the minute they walked in the door. A well designed security process has multiple layers and multiple checks:

• Check Government ID
  
• Confirm Corporate ID
  
• Check contact name
  
• Confirm with contact
  
• Escort visitor
  
• Defined process
  

The first line of defense is to ask for government issued ID. With fifty states, there is considerable variation in driving licenses, but they are at least a closed set and a telephone repairman handing over a New York drivers license in Louisiana should be asked for an explanation. Most state driving licenses have anti-counterfeiting measures built in and are printed on distinctive stock.

Corporate ID provides an additional check but is not a substitute for government issued ID. Corporate ID should of course match the government ID.

My experience of government buildings is that government issued ID is required to enter the building. This alone would make the conspirator's claim that they left their ID in their van very suspicious.

Another thing that is required to enter a government building is a contact person. It is quite likely that the conspirators bypassed this requirement by giving the Senator's Office as the contact. 'Walk-ins' are a common occurrence at politician's offices of course, but a tradesman coming to perform work without a specific contact name should be a red flag.

In most government buildings, visitors require an escort unless they are visiting a separate area that is specifically designated as public access. Most of the newer corporate offices in Silicon Valley now have meeting rooms that connect directly to the lobby. This allows employees to meet visitors without bringing them into the part of the building where company confidential material might be on display.

Security procedures of this sort have become standard practice in most US companies in the wake of 9/11, at least with regard to the form which is easily copied. What is not easily copied are the less visible parts of the system such as what should happen when work needs to be done on the telephone system.

The most important security control is to have a defined procedure so that the person responsible for implementing it knows what to do. In the case of a GSA facility, there will be a written policy describing precisely which individuals should have access to the telephone system and under what circumstances. That process will anticipate the possibility that a bogus telephone repairman would turn up attempting to place a wiretap, not least because the process will have been extensively reviewed and quite possibly red-teamed by CIA teams responsible for attempting similar operations against foreign powers.

Crotchbomber changed return flight

Much is being made of the failure of the authorities to catch Farouk AbulMutalab aka the 'crotchbomber' despite suspicious activity such as flying on a one-way ticket.

Only according to the Nigerian press, Farouk's ticket
was a return and he even went so far as to change the routing on the return leg.

The Twitter DNS attack

Praetorian Prefect has a comprehensive rundown.

RealID farce continues

The Washington Post report that states will get more time to comply with Real ID.

This is nonsense, what is actually going on here is that RealID is dead and the administration has put off recognizing the fact for another 15 months. The 46 states that are non compliant know full well that the next deadline will be extended as well.

This was all totally predictable when RealID was passed as a rider to the 2005 Iraq war appropriations. The Senate never got a chance to debate RealID at all, it was added to the bill in conference without any Democrats present.

At present 25 States have passed laws that prevent compliance with RealID. Even if the number of states was smaller it was never very likely that any administration would have made good on the threat to refuse use of those state's driving licenses to board planes.

Belgian coma man

Hearing the story of a Belgian coma victim who has 'woken' after 23 years on the radio made me wonder if we are not going to have another re-run of the Terri Schiavo circus.

According to James Randi's JREF, there is nothing there. The alleged awakening is hardly of Lazarus proportions. The patient is still immobile and the communication consists of 'facilitated communication' with an assistant doing the actual typing.

As always, once the credulous media have publicized a false claim it will be impossible to persuade wishful thinkers otherwise. The story of the Belgian man who awoke from a coma after 23 years will be transmuted into fact.