Brazil x U.S.A.: the real absurdities about the espionage

The information disclosed by Edward Snowden to the world created a diplomatic incident between Washington and Brasilia. The Brazilian government is fed up with the United States because it seems that our friends from the north are spying on us. We don’t know the real extent of the espionage endeavors, but the press – notably The Guardian’s reporter Glen Greenwald – is saying that Americans are lurking President Dilma Rouseff, her closest interlocutors and Petrobras, the Brazilian state oil company. But why is it so absurd and what can be done to prevent it?

Itamaraty Palace - the headquarters of the Ministry of External Relations of Brazil.
Itamaraty Palace – the headquarters of the Ministry of External Relations of Brazil.

Let me start by explaining what is not absurd: countries spying on each other. Well, that is just how reality is. All countries have intelligence agencies that, among other things, are responsible for gathering information that can be used to take security measures and also to make economic decisions. The diplomats will deny it, specially the economic espionage. The ones who were spied on will pretend to complain. The spies will pretend to change their methods. It is the diplomacy game. It is well known that states naturally tend to expand behavior and control to outside their boundaries. That is basic lateral pressure theory, commonly used on International Relation studies.

The first real absurd about this story is the fact that an employee, in the position of Snowden, could have access to that kind of piece of information. This is just bad information management and security. It is obvious that the United States government is not protecting highly classified information in a proper way. The second point is that they are not using this information effectively. The huge amount of data the NSA collects doesn’t seem enough to prevent attacks like the unfortunate incident in Boston earlier this year. The last absurdity, and more important in my opinion, is what governments didn’t do to prevent espionage as well as information leaks. The open source software community has been ringing this alarm for years. Jon Hall wrote a nice open letter to President Rousseff about this. Open source should be a crucial element for information and technological sovereignty. States as well as its citizens must know how the software used by public administration works exactly. The code must be auditable. Otherwise we are just asking for trouble. Otherwise we are blind.

I have been working with information security for a while now and I am under the impression that people in general don’t care about security until something really bad happens. Don’t do like our governments. Don’t wait until someone steel your data. Of course there isn’t a system or method 100% secure but risks can be minimized in great degree. We live in an information age and we need to take care of our data, and so does the governments.

And please… stop disabling SELinux!

 

9th CONTECSI – Event Report

Last week took place in São Paulo the 9th International Conference on Information Systems and Technology Management. My mission: present my paper named “The Effect Of Collaboration On Knowledge Creation And Production Of Goods”. For further information about the paper take a look at my previous post about the event.

It was the my first time I attended to an academic conference and was an interesting experience to talk about the open source way in such kind of event. Another interesting aspect of that conference is its interdisciplinary characteristic, less focused on code and technical aspects, and more focused on management, business, education and the impact of technology on different areas. I believe it was a good conference to publish the paper due to those characteristics and more important than that: an excellent place to talk about the open source way.

Open source is well established in many universities in Brazil. Several universities have labs exclusively to deal with open source software. That is great, but when it comes to community management, process transparency and the open source way of making business the academic sector in general is not aware of the benefits of those approaches. Therefore was nice to have the paper published on a conference like that and to go there and talk about all that exiting stuff. Plus: São Paulo is an awesome city!

9th CONTECSI

Almost everything is set to the International Conference on Information Systems and Technology Management (CONTECSI), the first event I will attend this year. This conference will take place in the University of São Paulo and will be groundbreaking for me because it is mostly an academic conference, unlike the open source events I have been attending during the previous years.

At this event I will present a paper based on my final graduation monograph entitled “The Effect Of Collaboration On Knowledge Creation And Production Of Goods”. You can check the original paper in Portuguese on a previous blog post I wrote last year or, as you may prefer, the sneak peek written in English.

Although this is not an open source event, the paper is heavily related to the open source way of producing knowledge and software. My own experience being part of Fedora community was crucial to understand how collaboration works in a global level and I am glad that I was able to use Fedora as one of the successful projects studied for the paper. I am really thankful for everything this community taught me and I would like thank the former Fedora Project Leader, Jared Smith, for giving me a short interview for the paper. In addition I would like to thank my employers at Strema for enabling me to attend to CONTECSI and the co-writers for supporting the paper concept.

We are just starting our engines. FLISol, FUDCon Margarita, FISL, and Latinoware are on the horizon as well.