WEBVTT - Automatic Cybersecurity 0:00:00.160 --> 0:00:07.280 Brought to you by Toyota. Let's go places. Welcome to 0:00:07.440 --> 0:00:15.400 Forward Thinking. Hey there, and welcome to Forward Thinking, the 0:00:15.600 --> 0:00:18.720 podcast that looks at the future and says, if you 0:00:18.720 --> 0:00:21.160 should get it an email with the subject stinky cheese 0:00:21.239 --> 0:00:24.040 better of protecting your chances under no circumstances should you 0:00:24.120 --> 0:00:28.720 open it. I'm Jonathan Strickland and I'm Joe McCormick, and 0:00:28.760 --> 0:00:31.120 I'm not gonna ask about that. Let's move on to 0:00:31.240 --> 0:00:35.400 the topic today, which is cybersecurity. Yeah, we wanted to 0:00:35.440 --> 0:00:40.280 talk about a recent story about the idea of automating cybersecurity. 0:00:40.360 --> 0:00:43.560 But before we even get into that, let's talk about why. 0:00:43.880 --> 0:00:45.680 You know, I'm just gonna set the groundwork of what 0:00:45.760 --> 0:00:48.240 cybersecurity is all about and why it's such a huge 0:00:49.040 --> 0:00:53.519 challenge in today's world. So, really, when you think about it, 0:00:53.600 --> 0:00:56.800 cybersecurity experts and hackers have always played kind of a 0:00:56.840 --> 0:01:02.120 tick talk game. Really, the hackers, you could argue, Yeah, exactly, 0:01:02.160 --> 0:01:06.840 it's it's it's it's very much a reactionary kind of relationship. 0:01:07.200 --> 0:01:10.600 So it starts whenever a developer releases some software into 0:01:10.640 --> 0:01:15.039 the world. Operating system upgrades would be a major example. 0:01:15.160 --> 0:01:19.000 So let's say that you know, Microsoft releases a Windows 0:01:19.200 --> 0:01:22.040 update or Google and Android update, that kind of thing. 0:01:22.560 --> 0:01:25.440 Hackers then start to look at the operating system and 0:01:25.480 --> 0:01:28.600 start to explore it, probe it for vulnerabilities, things that 0:01:28.640 --> 0:01:33.039 could be exploited. Um. And the reason for that is 0:01:33.080 --> 0:01:35.680 the way a computer works, the way it executes code. 0:01:36.480 --> 0:01:39.560 If you're able to exploit vulnerabilities, you can get access 0:01:39.600 --> 0:01:43.080 sometimes to very important elements of a computer, like to 0:01:43.120 --> 0:01:47.000 the point where you could potentially take it over. Sure, 0:01:47.040 --> 0:01:48.960 you can either bend it to your will, use it 0:01:49.000 --> 0:01:52.919 to do some some upward processing, or or get data 0:01:53.080 --> 0:01:55.680 from that person's computer to to use in some kind 0:01:55.720 --> 0:01:59.000 of criminal way. Oh yeah, absolutely. Uh. It may be 0:01:59.200 --> 0:02:04.320 something as simple as simple in quotes as stealing files. 0:02:04.360 --> 0:02:08.440 It may be something more complicated, like installing a key 0:02:08.480 --> 0:02:11.800 logger that's going to copy everything someone types in so 0:02:11.880 --> 0:02:14.160 you start to get all their their info, like their 0:02:14.720 --> 0:02:16.760 logins and passwords, that kind of stuff. It may even 0:02:16.800 --> 0:02:19.640 be a backdoor access where you can you can control 0:02:19.680 --> 0:02:23.440 that processing power for specific nefarious purposes without the person 0:02:23.520 --> 0:02:25.720 necessarily knowing what's up except for the fact that their 0:02:25.760 --> 0:02:28.240 computer seems to be really kind of sludgy and slow, 0:02:28.600 --> 0:02:31.000 or it could just be fair mischief. Yeah, it could 0:02:31.000 --> 0:02:35.400 just be that, you know, yeah, as they say. So. Meanwhile, 0:02:35.480 --> 0:02:40.120 you've got the cybersecurity professionals who are looking for vulnerabilities too, 0:02:40.120 --> 0:02:42.360 but they're not looking to exploit them. They're looking to 0:02:42.440 --> 0:02:47.480 patch them to to address those vulnerabilities and and tweak 0:02:47.520 --> 0:02:50.360 them so that they're no longer and opening for hackers 0:02:50.360 --> 0:02:55.160 to exploit. They also try to nullify malware that hackers 0:02:55.160 --> 0:02:58.200 are developing. So uh, they're trying to make sure that 0:02:58.240 --> 0:03:01.040 the various worms and virus is and other types of 0:03:01.200 --> 0:03:05.680 malicious software that hackers unleash upon the world are nullified 0:03:05.760 --> 0:03:09.360 in some way. It's super tricky to do because you 0:03:09.360 --> 0:03:11.840 remember those old days of the huge downloads of the 0:03:11.840 --> 0:03:16.400 Norton anti virus updates. Yeah, yeah, well yeah, I remember 0:03:16.520 --> 0:03:18.600 the days of like when you're shutting down your computer 0:03:18.680 --> 0:03:22.280 and says, hang on, I need to download about, you know, 0:03:22.360 --> 0:03:25.880 half the gig's worth of data before you can leave, 0:03:26.040 --> 0:03:28.600 and then you think, well, as we'll go get another 0:03:28.639 --> 0:03:32.160 cup of coffee because I'm gonna be here for a while. Uh. 0:03:32.240 --> 0:03:36.080 At any rate, this this is very much the relationship. Right. 0:03:36.080 --> 0:03:40.240 You've got the release of software hackers trying to exploit it. 0:03:40.480 --> 0:03:44.880 Cybersecurity professionals trying to address the vulnerabilities and nullify the malware. 0:03:45.320 --> 0:03:49.720 Hackers go back to trying to find other vulnerabilities to exploit. Also, 0:03:49.840 --> 0:03:53.840 this is not necessarily all just happening back to back, 0:03:53.920 --> 0:03:56.280 because there's a lot of overlap. I mean, just because 0:03:56.800 --> 0:04:02.320 cybersecurity professional identifies and even patches vulnerable opening and software 0:04:02.360 --> 0:04:06.280 that doesn't magically propagated out to everybody who's ever downloaded 0:04:06.320 --> 0:04:11.920 that software. Now, so this is your your responsibility message here. 0:04:12.960 --> 0:04:15.920 Update your browser. Update your browser, update your operating system, 0:04:16.000 --> 0:04:19.480 update your security settings. Make sure that you keep those 0:04:19.520 --> 0:04:23.720 as close to up to date as possible, because while 0:04:23.800 --> 0:04:25.920 it can be irritating to take up time to do 0:04:25.960 --> 0:04:29.360 that sort of thing, it often addresses these vulnerabilities and 0:04:29.400 --> 0:04:32.960 makes you less liable to experience issues created by evil, 0:04:33.080 --> 0:04:36.880 nasty hackers out there. This also means that cybersecurity folks 0:04:36.880 --> 0:04:42.240 are typically a step behind hackers right because often they 0:04:42.279 --> 0:04:45.760 while they're trying to identify the own vulnerabilities, they may 0:04:45.800 --> 0:04:47.640 not be looking in the same place as that hackers 0:04:47.640 --> 0:04:50.599 start looking at, and they have to respond to the 0:04:50.640 --> 0:04:54.440 malware that hackers are creating. So you get this TikTok, 0:04:54.760 --> 0:04:59.320 where the reactionary response to the cybersecurity is to counter 0:04:59.440 --> 0:05:02.360 the move that the hackers have made, but it doesn't 0:05:02.360 --> 0:05:05.320 magically counter the next move the hackers make. You have 0:05:05.400 --> 0:05:08.680 to do it over and over and over again. So 0:05:08.720 --> 0:05:12.200 wouldn't it be cool if we could get an actionary 0:05:12.320 --> 0:05:16.240 system rather than a reactionary or one that is reactionary 0:05:16.520 --> 0:05:19.919 all on its own and doesn't require a human interaction 0:05:20.000 --> 0:05:24.920 at all? Because where the bottle nick really well, especially 0:05:24.920 --> 0:05:26.719 now and I'll get into more of the reason of 0:05:26.760 --> 0:05:30.200 why now it's particularly a problem in a little bit later, 0:05:30.279 --> 0:05:33.080 But as you say, it can be actionary to Lauren, 0:05:33.200 --> 0:05:37.320 you could have software that is actively looking at vulnerabilities 0:05:37.360 --> 0:05:40.320 before any human has even laid eyes apart for the 0:05:40.360 --> 0:05:44.240 developer on the code, and then in that case you 0:05:44.600 --> 0:05:47.120 close off the system before a hacker is even able 0:05:47.160 --> 0:05:50.920 to exploit it. But in other cases where there may 0:05:50.960 --> 0:05:55.159 already be a vulnerability known to hackers, uh, the systems 0:05:55.200 --> 0:05:57.279 could be patching that vulnerability as well as trying to 0:05:57.320 --> 0:06:01.040 counteract any malware that hackers have created. If you were 0:06:01.040 --> 0:06:03.200 able to do this and take humans out of that picture, 0:06:03.600 --> 0:06:06.279 it would be amazing because it would be way faster 0:06:06.360 --> 0:06:10.520 and more efficient than than than a human. But it's 0:06:10.560 --> 0:06:14.320 a tall order. It's really not an easy thing to 0:06:14.400 --> 0:06:19.760 ask for. Who would ask for such a thing? Sort 0:06:19.760 --> 0:06:23.640 of a you're right they did, DARPA asked that thing. 0:06:24.200 --> 0:06:27.960 Wait wait, First of all, though, let's remind everybody who 0:06:28.080 --> 0:06:30.440 is DARPA. It's the R and D division within the 0:06:30.480 --> 0:06:33.159 Department of Defense, with the awkwardest name ever being the 0:06:33.240 --> 0:06:38.440 Defense Advanced Research Projects Agency used to be. Or yeah, 0:06:38.440 --> 0:06:41.120 it used to be ARPA. I like. I like that 0:06:41.320 --> 0:06:43.039 the way you deliver that it made me think of 0:06:43.040 --> 0:06:45.400 like defense against the Dark arts, which in a way 0:06:45.560 --> 0:06:47.800 is kind of what we're talking about today. Yeah. I 0:06:48.560 --> 0:06:51.120 actually I'd never heard it put this way before. This 0:06:51.200 --> 0:06:54.160 might be have always been part of its charter, but 0:06:54.160 --> 0:06:57.559 but I didn't come across this description until some stuff 0:06:57.600 --> 0:07:00.640 we were reading for this episode today. But they described 0:07:00.680 --> 0:07:05.560 it as preventing strategic surprise. I watched a video about that, 0:07:05.640 --> 0:07:09.360 and my favorite quote was, surprises are hard to predict. 0:07:10.000 --> 0:07:12.280 I know exactly what you're talking about. I watched that 0:07:12.320 --> 0:07:18.840 same video. I'm like, you don't say. I think you 0:07:18.880 --> 0:07:22.160 said surprises can be hard to predict, Yes, which I 0:07:22.200 --> 0:07:26.280 thought was amazing. It reminds me of the Giant the 0:07:26.320 --> 0:07:29.320 Giant Souvenir shop at Las Vegas, where one of the 0:07:29.400 --> 0:07:35.080 signs says, if it's in stock, we have it, and like, yeah, 0:07:35.200 --> 0:07:38.080 I guess that's I mean, I would have argued that 0:07:38.080 --> 0:07:40.760 that was pretty much obvious, but I'm glad that you 0:07:40.840 --> 0:07:44.920 put it out there. So, uh, yeah, DARPA is it's 0:07:44.960 --> 0:07:49.440 got a long history obviously with technology. I mean, the Internet, 0:07:49.640 --> 0:07:53.560 you could argue, is really a product of work that 0:07:53.640 --> 0:07:55.840 was done when DARPA was called ARPA. There was a 0:07:55.880 --> 0:07:59.240 predecessor to the Internet called ARPA net and during the 0:07:59.280 --> 0:08:01.720 development of our and that many of the protocols that 0:08:01.920 --> 0:08:06.560 underlie the way the Internet works were developed. So very 0:08:06.640 --> 0:08:10.680 much a part of the world of software and hardware. 0:08:10.720 --> 0:08:13.360 Not just hey, can we develop a new thing that 0:08:13.440 --> 0:08:17.000 flies faster and uh and it's harder to detect than 0:08:17.040 --> 0:08:21.720 anything else we've ever created, but things that have benefits 0:08:21.960 --> 0:08:27.720 far beyond just a basic military application. Now, to be fair, DARPA, 0:08:27.800 --> 0:08:31.120 being part of the Department of Defense, is primarily concerned 0:08:31.400 --> 0:08:36.559 with matters of protecting national security and and uh making 0:08:36.600 --> 0:08:41.240 certain that the United States technological capability remains at the 0:08:41.360 --> 0:08:44.320 very front of the entire world as much as possible. 0:08:45.040 --> 0:08:46.520 You know, you've got to keep that in mind. But 0:08:46.760 --> 0:08:52.559 beyond that, the developments of various DARPA initiatives have uh 0:08:52.880 --> 0:08:58.800 much greater consequence than improving our defensive capabilities. Oh sure, well, 0:08:58.840 --> 0:09:01.240 and and started started to say in way that just 0:09:01.440 --> 0:09:04.200 like NASA, getting people into space has a lot of 0:09:04.280 --> 0:09:07.720 further reaching implications in terms of technology and design. And 0:09:07.720 --> 0:09:10.679 we've in fact talked about a few of the darpest 0:09:10.679 --> 0:09:12.839 projects here on the show before. Right, So first we 0:09:12.880 --> 0:09:17.160 should mention DARPA really is more of an administrative organization. Right. 0:09:17.200 --> 0:09:19.600 It's not so much that you go to DARPA and 0:09:19.679 --> 0:09:22.320 you enter into a world of shiny labs with lots 0:09:22.360 --> 0:09:26.720 of beakers and and beeping computers and stuff and and 0:09:26.720 --> 0:09:31.240 and technicians and scientists running everywhere with like crazy alien 0:09:31.320 --> 0:09:34.720 looking devices. That's not really what DARPA is. What DARBA 0:09:34.920 --> 0:09:40.040 really is is the organization that provides funding to other 0:09:40.200 --> 0:09:44.120 research organizations. They what what DARPA does is identify a need. 0:09:44.720 --> 0:09:49.080 They say, we need for this type of technology to exist. 0:09:50.320 --> 0:09:52.640 Who out there thinks they can do it? And then 0:09:52.920 --> 0:09:55.280 we've got some money for you, exactly, And then you've 0:09:55.320 --> 0:09:59.440 got different organizations that respond and they'll say I think 0:09:59.440 --> 0:10:02.679 we can do it, and then DARPA reviews the various proposals, 0:10:03.000 --> 0:10:07.959 decides which organizations are the most likely to succeed based 0:10:08.000 --> 0:10:10.920 upon those proposals, and funds them in order to try 0:10:10.960 --> 0:10:16.000 and develop that technology. Uh. And sometimes what DARPA does 0:10:16.240 --> 0:10:18.800 is they do this in the form of a competition. 0:10:18.880 --> 0:10:21.640 It's not just hey, hey, we need this one type 0:10:21.640 --> 0:10:24.800 of technology. Who thinks they can do it? It's hey, 0:10:24.840 --> 0:10:27.600 we've got this idea for a crazy thing we want 0:10:27.640 --> 0:10:30.680 people to be able to do with with technology. We're 0:10:30.720 --> 0:10:35.000 gonna pit you against other groups that also want to 0:10:35.040 --> 0:10:37.640 do this thing, and whoever wins gets a big old 0:10:37.840 --> 0:10:41.760 fat prize, which may or may not be equal to 0:10:41.760 --> 0:10:44.319 the amount of money that these organizations have to pour 0:10:44.440 --> 0:10:46.880 into their research and development to create the technology in 0:10:46.920 --> 0:10:49.160 the first place. But they still own that technology and 0:10:49.240 --> 0:10:53.280 can use it to make the money. Absolutely so, we 0:10:53.400 --> 0:10:57.880 have talked about them multiple times. Uh. The first time 0:10:57.920 --> 0:10:59.880 that I was able to find using the handy dan 0:11:00.200 --> 0:11:05.360 control f feature on our RSS feed was from November eighth, 0:11:05.400 --> 0:11:09.040 two thousand thirteen, when we published robot you Can Drive 0:11:09.120 --> 0:11:12.480 My Car? How many times have we made that joke. 0:11:12.520 --> 0:11:15.959 I'm almost convinced. I'm pretty convinced I made that that title. 0:11:16.280 --> 0:11:19.880 I could be wrong. I could be wrong, but yeah. 0:11:20.440 --> 0:11:23.720 So it was one of our earliest episodes about autonomous vehicles, 0:11:24.320 --> 0:11:27.040 and in that episode we talked about how DARPA played 0:11:27.040 --> 0:11:30.480 a key role in getting the development of driverless cars 0:11:31.160 --> 0:11:36.400 rolling because they have wheels. Uh. But yeah, the the 0:11:36.400 --> 0:11:41.200 original Grand Challenge that DARPA issued was about autonomous vehicles. 0:11:42.000 --> 0:11:44.720 On May eighth, two thousand fifteen, we published an episode 0:11:44.720 --> 0:11:48.200 titled What's Up with DARPA, which really was more of 0:11:48.240 --> 0:11:51.760 an episode to explain what DARPA really is all about 0:11:52.240 --> 0:11:54.839 and some of the projects that DARPA was overseeing at 0:11:54.840 --> 0:11:58.560 that time, um and mostly leading up to the Grand 0:11:58.640 --> 0:12:01.600 Robotics Challenge, which of course we already kind of covered 0:12:01.640 --> 0:12:04.559 in the previous episode, and then we had on June seventeen, 0:12:04.640 --> 0:12:08.480 two fifteen, So not long after that one, we released 0:12:08.480 --> 0:12:11.960 our episode about the DARPA Robotics Challenge. They are not 0:12:12.080 --> 0:12:14.360 the not the Grand Challenge, which was autonomous cars, but 0:12:14.480 --> 0:12:19.240 rather the challenge of building a humanoid robot, or at 0:12:19.280 --> 0:12:23.520 least a robot capable of following over a lot. They 0:12:23.840 --> 0:12:26.559 people excelled at that part of the challenge, which really 0:12:26.600 --> 0:12:28.600 wasn't part of the challenge. You didn't want your robot 0:12:28.640 --> 0:12:30.679 to fall over, but to be able to do a 0:12:31.040 --> 0:12:36.560 series of of steps, a series of tasks that would 0:12:36.600 --> 0:12:41.079 potentially be part of a rescue operation or an emergency 0:12:41.120 --> 0:12:44.200 response operation in the wake of a disaster, similar to 0:12:44.320 --> 0:12:49.840 the uh the Fukushima plant when the tsunami hit. So like, 0:12:49.880 --> 0:12:52.120 one of the tasks was walked to a door and 0:12:52.240 --> 0:12:54.760 open it. Man, that was that was a tough one. Yeah, 0:12:54.760 --> 0:12:56.600 it turned out to be a lot hard. Like robots 0:12:56.600 --> 0:12:59.480 were not being able to grab the weren't able to 0:12:59.480 --> 0:13:01.600 perceive where the doorknob was accurately, and so they kept 0:13:01.600 --> 0:13:04.040 trying to grab at places the doorknob definitely was not. 0:13:05.040 --> 0:13:08.360 Stepping through the doorway was bad, Yeah, which is a 0:13:08.440 --> 0:13:11.240 very difficult thing to mechanize. That. They had to pick 0:13:11.320 --> 0:13:14.000 up a drill and like use it. Yep, they had 0:13:14.040 --> 0:13:16.719 to climb us as stairs, which also turned out to 0:13:16.760 --> 0:13:18.640 be super tricky. Yeah, there are a lot of things 0:13:18.679 --> 0:13:23.120 that we humans typically find fairly easy. I mean, even 0:13:23.160 --> 0:13:26.040 if we couldn't do all of the different tasks, we 0:13:26.160 --> 0:13:28.640 might find at least, some of the tasks pretty natural 0:13:28.920 --> 0:13:31.920 for us to complete, but for robots that's not the case. 0:13:32.040 --> 0:13:35.000 There is no natural for a robot. Uh. And it 0:13:35.040 --> 0:13:37.520 turned out that a lot of those what we thought 0:13:37.520 --> 0:13:40.280 of as simple tasks were really complicated. So those are 0:13:40.280 --> 0:13:45.120 the episodes where we specifically focused on DARPA. But today 0:13:45.120 --> 0:13:49.640 we want to talk about the more recent Cyber Grand Challenge, 0:13:49.679 --> 0:13:53.680 which comes into the concept we're talking about here about 0:13:53.760 --> 0:13:59.640 creating an automated system capable of recognizing vulnerabilities and patching 0:13:59.679 --> 0:14:02.920 them in real time. That's the basic idea, right, Like 0:14:03.000 --> 0:14:07.480 DARPA's like, hey, this is what we want, uh, you team, 0:14:07.679 --> 0:14:11.400 you know, start forming teams out there to do competitions, 0:14:12.040 --> 0:14:15.680 and we'll have a big challenge and whoever wins gets 0:14:15.679 --> 0:14:20.240 a prised. That's the basic idea, um. But it's interesting 0:14:20.280 --> 0:14:26.800 because it's using an approach that humans have been following 0:14:26.800 --> 0:14:29.960 for a while. It's it's not not like they've invented 0:14:30.000 --> 0:14:33.360 a game that the robots have to compete in. The 0:14:33.400 --> 0:14:38.480 game already existed and in fact has a a bit 0:14:38.520 --> 0:14:43.360 about an interesting name. It's it's a capture the flag game. Yeah, 0:14:43.640 --> 0:14:48.000 which is funny because it doesn't actually resemble Capture the Flag. Yeah, 0:14:48.440 --> 0:14:51.600 so what what is the capture? They have these tournaments, right, 0:14:52.000 --> 0:14:54.560 so capture the Flag tournament might be a thing. A 0:14:54.560 --> 0:14:56.960 bunch of hackers show up too, and it's a model 0:14:57.040 --> 0:15:00.880 for testing people's skills at cybersecurity challenge. Just so a 0:15:00.960 --> 0:15:04.280 CTF tournament you might see something like this, a bunch 0:15:04.360 --> 0:15:08.160 of cybersecurity pros all show up and get a piece 0:15:08.200 --> 0:15:11.720 of target software and then they go to work trying 0:15:11.720 --> 0:15:14.360 to be the first to discover security flaws in the 0:15:14.400 --> 0:15:18.480 software and then release a secure patch to fix the problems. 0:15:18.480 --> 0:15:20.080 So they've got to sort of they have to like 0:15:20.160 --> 0:15:24.560 reverse engineer the software, figure out what its vulnerabilities are, 0:15:24.920 --> 0:15:29.600 address those vulnerabilities, and get them fixed. Uh. And so 0:15:30.360 --> 0:15:34.400 that sounds like a good test of your steel as 0:15:34.400 --> 0:15:39.280 a cybersecurity professional. But what if you removed the human 0:15:39.320 --> 0:15:43.120 hackers from the competition, right, Like, so in this case, 0:15:43.320 --> 0:15:48.400 the people competing aren't competing directly in searching that software, 0:15:48.480 --> 0:15:52.440 finding the vulnerabilities, and patching them, but rather developing software 0:15:52.520 --> 0:15:56.480 that can do that on their behalf automatically. Yeah, so 0:15:56.520 --> 0:15:59.360 that they aren't the ones guiding the software. Very much 0:15:59.400 --> 0:16:02.280 like in the rival less car scenario. You were not 0:16:02.360 --> 0:16:07.040 allowed to have any kind of remote control of the vehicle, right, 0:16:07.160 --> 0:16:09.720 The vehicle had to be able to do everything on 0:16:09.760 --> 0:16:13.240 its own, and if it failed, it failed. Same sort 0:16:13.280 --> 0:16:15.320 of thing with this kind of software. The idea being 0:16:15.320 --> 0:16:19.280 that you don't get to guide the software. It has 0:16:19.320 --> 0:16:23.400 to be able to analyze that that target software and 0:16:23.480 --> 0:16:27.120 identify the vulnerabilities and patch them all on its own. 0:16:27.440 --> 0:16:31.840 So why even bother doing this? Well, it's because computers 0:16:32.280 --> 0:16:37.400 are everywhere now, They're pervasive, they're integrated into our daily experience, 0:16:37.440 --> 0:16:42.160 and they're on all scales. Right, the stakes have never 0:16:42.200 --> 0:16:45.480 been higher as far as cybersecurity goes, and they're only 0:16:45.520 --> 0:16:50.360 getting higher exactly right. So it used to be higher, 0:16:50.720 --> 0:16:53.040 or it used to be you know, the early days 0:16:53.040 --> 0:16:55.240 of viruses, you know, way back in the day where 0:16:55.760 --> 0:16:58.240 things weren't even necessarily networked yet and people were spreading 0:16:58.280 --> 0:17:01.440 viruses via physical discs and oh yeah, uh, you know, 0:17:01.520 --> 0:17:03.520 the worst that was going to happen is you might 0:17:04.000 --> 0:17:07.400 cause a lot of damage to your computer. Yeah, and 0:17:07.480 --> 0:17:10.000 that's not good. I mean that could have you know, 0:17:10.119 --> 0:17:14.520 potentially disastrous consequences for somebody's personal I don't know, personal 0:17:14.600 --> 0:17:21.520 projects or whatever. But you wouldn't have um extremely dangerous, widespread, 0:17:21.880 --> 0:17:26.680 society wide consequence. It's not not a catastrophic event. It's 0:17:26.720 --> 0:17:29.040 something we're not going to kill anybody. Right. On an 0:17:29.080 --> 0:17:34.640 individual basis, it could range from inconvenient to financially difficult, 0:17:34.720 --> 0:17:36.920 depending like let's say you know, my dad, for example, 0:17:37.440 --> 0:17:40.119 is an author, and if he had had a computer 0:17:40.200 --> 0:17:44.000 virus affect our old computer upon which he was writing 0:17:44.200 --> 0:17:48.160 his novels, that would have had a very profound impact 0:17:48.200 --> 0:17:50.439 on his ability to do his work as an author. 0:17:50.920 --> 0:17:54.200 But it's not like that would suddenly also affect all 0:17:54.240 --> 0:17:57.399 the other computers in the world. It's happening on a 0:17:57.520 --> 0:18:00.639 very individual machine. Right. But then, okay, so once you 0:18:00.760 --> 0:18:03.920 start networking computers all over the place, suddenly you can 0:18:04.000 --> 0:18:10.480 spread viruses uh and malware and vulnerability knowledge much more easily, 0:18:10.640 --> 0:18:15.080 and you can exploit sensitive information and you can uh, 0:18:15.240 --> 0:18:17.560 you can you can have much more far reaching consequences. 0:18:17.600 --> 0:18:22.080 You can cause economic disaster. Um. Now, imagine expanding this 0:18:22.160 --> 0:18:25.480 to the next level beyond just network devices. Our devices 0:18:25.480 --> 0:18:29.080 are no longer just information devices. There, uh, you know, 0:18:29.200 --> 0:18:33.919 standard infrastructure devices, devices that control the world around us, 0:18:34.520 --> 0:18:37.600 power plants in our own HVAC systems and all all 0:18:37.600 --> 0:18:41.160 sorts of things. Yeah, so we elevators everything, right, Yeah, 0:18:41.240 --> 0:18:44.240 we started with things like your desktop computer. But then 0:18:44.280 --> 0:18:46.640 we're also like, okay, well we also have laptop computers. 0:18:46.920 --> 0:18:49.080 And now we've also got uh cell phones. Oh and 0:18:49.160 --> 0:18:53.720 smartphones came a little bit later, tablets to other computer systems. 0:18:54.359 --> 0:18:59.360 In uh, traffic lights to not just within an entire 0:18:59.400 --> 0:19:02.160 system of try lights, but within an individual traffic lights 0:19:02.240 --> 0:19:08.720 or appliances or televisions or sensors. I mean we as 0:19:08.760 --> 0:19:12.159 we approach the Internet of things, we have more and 0:19:12.240 --> 0:19:16.200 which you could argue that era is already upon us. 0:19:16.240 --> 0:19:19.080 We are in the Internet of things era. Now we 0:19:19.119 --> 0:19:23.119 have more and more devices that are partially or fully 0:19:23.160 --> 0:19:27.280 dependent upon computerized systems, which may and in fact you 0:19:27.320 --> 0:19:30.400 might as well say, do have vulnerabilities in them. They 0:19:30.400 --> 0:19:33.840 may not all be identified, but there's almost certainly a 0:19:33.880 --> 0:19:37.879 vulnerability in every system that human beings have produced, because 0:19:38.800 --> 0:19:43.560 we can't necessarily predict the vulnerabilities while we're making them, 0:19:43.640 --> 0:19:45.840 Like they really shouldn't have released that smart of and 0:19:46.000 --> 0:19:48.720 has the vulnerability where somebody can get it to throw 0:19:48.760 --> 0:19:51.760 you inside and turn on self cleaning mode. HANSL. And 0:19:51.800 --> 0:19:54.200 Gretel five thousand. I told them not to do it, 0:19:54.560 --> 0:19:57.200 but you know, they just might not have been able 0:19:57.240 --> 0:20:00.800 to predict that that vulnerability was there. Yes, when you're 0:20:00.800 --> 0:20:03.520 in the middle of developing, it can be difficult to 0:20:03.520 --> 0:20:07.240 see that, right because your number one goal is to 0:20:07.359 --> 0:20:10.720 get the thing you want to happen to happen. Yeah, 0:20:10.800 --> 0:20:13.480 you want, you want the whatever it is, whatever the 0:20:13.480 --> 0:20:16.760 the end goal is of the code you are writing. 0:20:17.440 --> 0:20:20.199 You want to achieve that goal. So let's say that 0:20:20.240 --> 0:20:23.160 you're just writing a program. It's a really simple program. 0:20:23.160 --> 0:20:25.760 It's like, let's say it's a word processing program. So 0:20:25.800 --> 0:20:27.960 you're just trying to create a word processing program, and 0:20:27.960 --> 0:20:30.960 you wanted to have all the basic elements of word 0:20:31.000 --> 0:20:34.440 processing involved in it. You're concerned with writing code that 0:20:34.520 --> 0:20:38.480 creates a working word processor. You may not notice that 0:20:39.040 --> 0:20:42.240 in the way that you develop this code, you have 0:20:42.320 --> 0:20:47.520 created a vulnerability that would allow a hacker to access uh, 0:20:47.640 --> 0:20:51.840 let's say some administrative level commands on an operating system 0:20:52.040 --> 0:20:54.919 through the code you've made. Because that wasn't what you 0:20:54.920 --> 0:20:57.440 were thinking about when you were building your word processor. 0:20:57.480 --> 0:21:00.879 You weren't trying to you weren't even thinking that that 0:21:00.920 --> 0:21:02.600 was a possibility. You were just trying to make a 0:21:02.720 --> 0:21:05.560 working word processor. Yeah. Yeah, And and and for all of 0:21:05.600 --> 0:21:08.720 these all of these computers, people are writing so much 0:21:08.760 --> 0:21:13.719 code every day, trillion lines of code a year. That 0:21:13.800 --> 0:21:15.840 was in the early two thousands, so we're talking about 0:21:15.880 --> 0:21:18.160 way more. And and you think about you think about 0:21:18.200 --> 0:21:21.040 the number of platforms that have increased since the early 0:21:21.080 --> 0:21:24.560 two thousand's. That's before the smartphone was really a thing. 0:21:25.240 --> 0:21:27.199 You know, think about two thousand seven. That's when the 0:21:27.240 --> 0:21:30.320 iPhone gets introduced. That's when the smartphone, at least in 0:21:30.320 --> 0:21:34.240 the United States, really becomes a consumer product. Before that time, 0:21:34.280 --> 0:21:37.000 it was something that you might see some executives having 0:21:37.040 --> 0:21:40.280 as part of the way they interact with their businesses, 0:21:40.320 --> 0:21:42.639 But the average consumer in the United States didn't have 0:21:42.640 --> 0:21:45.720 a smartphone until after two thousand seven. At that point, 0:21:45.920 --> 0:21:50.000 you've got so many different devices now that people are 0:21:50.000 --> 0:21:53.439 developing code for, and some of them aren't even you know, 0:21:53.680 --> 0:21:56.560 your traditional computers or smartphones or tablets. They might be 0:21:56.840 --> 0:22:01.400 hardware that the consumer is never interacting in a way 0:22:01.440 --> 0:22:04.359 where they're even all where their software involved. Sure, like 0:22:04.560 --> 0:22:08.920 every single Intel chip that's sold has has stuff hard 0:22:08.920 --> 0:22:11.640 coded into it, and that's it's not just Intel every 0:22:11.720 --> 0:22:15.720 every chip, sure yasically many chips and your basic firmware. Right, 0:22:15.720 --> 0:22:20.120 the idea that you've got programming that is physically codified 0:22:20.160 --> 0:22:23.520 into a system, it's not. It's not like some ephemeral 0:22:23.720 --> 0:22:27.040 software that exists for a moment and then it's gone. 0:22:27.080 --> 0:22:30.320 It's it's actually part of the device itself. So we've 0:22:30.320 --> 0:22:34.040 got all this code, huge amounts. Now, imagine it's your 0:22:34.119 --> 0:22:37.280 job to go through code and find vulnerabilities, and you're thinking, 0:22:37.359 --> 0:22:41.320 there's more code generated every day than I could possibly 0:22:41.359 --> 0:22:43.480 get through in a week. It's kind of like the 0:22:43.600 --> 0:22:46.080 issue with YouTube where you talk about how many hours 0:22:46.359 --> 0:22:50.800 per minute get uploaded to YouTube. There's no way to 0:22:50.920 --> 0:22:54.800 watch all the content because it's physically impossible. Yeah, you 0:22:55.119 --> 0:22:58.320 could say, well, how could we monitor all that content 0:22:58.440 --> 0:23:02.400 to make sure people aren't uploading copyrighted movies and stuff 0:23:02.440 --> 0:23:05.000 like that? But you know what you could do. You 0:23:05.000 --> 0:23:08.600 could design a program to look through all of that 0:23:08.640 --> 0:23:11.920 stuff and compared against the database of copywritten material, it's 0:23:11.920 --> 0:23:15.159 alood easier than hiring Bob to try to watch an 0:23:15.160 --> 0:23:18.600 impossible number of YouTube videos every day. Yeah, so, yeah, 0:23:18.600 --> 0:23:21.120 you've got and if you've seen you've seen people trying 0:23:21.119 --> 0:23:23.440 to get around this, I bet right on YouTube where 0:23:23.480 --> 0:23:27.840 they like they upload copyrighted material, but it's like obscured 0:23:27.960 --> 0:23:30.600 and flipped and zooming in and out in weird ways 0:23:30.640 --> 0:23:34.080 to try to prevent auto detection. Right, have you seen this? Yeah? 0:23:34.200 --> 0:23:37.960 Or people you know, people just have like a a 0:23:38.160 --> 0:23:42.080 section of whatever the view would be. Yeah, those are 0:23:42.119 --> 0:23:45.359 the worst, right where you're like, oh, it's the lower 0:23:45.400 --> 0:23:47.879 two thirds of a television screen so that this doesn't 0:23:47.880 --> 0:23:51.480 get picked up. An awful, awful sound quality. What a 0:23:51.520 --> 0:23:54.359 wonderful experience I'm having right now. I'm going to go 0:23:54.400 --> 0:23:56.840 buy the movie. Man. Really we think about it, it's 0:23:56.840 --> 0:23:59.240 more of a great tool to convince people to purchase 0:24:00.040 --> 0:24:03.400 this stuff legitimately in order to have a decent experience. 0:24:03.400 --> 0:24:06.000 But at any rate, Uh. One of the things that 0:24:06.240 --> 0:24:09.600