Slashdot Mirror

← Back to Stories (view on slashdot.org)

2012 Olympics Security to be Chosen by Sponsorship

Posted by Zonk on from the bribery-it's-everywhere-you-want-to-be dept.

denebian devil writes "In an Editorial/Blog at ITPRO, Davey Winder writes of a keynote speech at Infosecurity Europe by Member of Parliament Derek Wyatt. In this speech, which was about the IT security demands of running the 2012 London Olympics, Derek Wyatt MP dropped the bombshell that IT Security at the Olympics will hinge not on which companies show themselves to be the best in their field or to have the technology that best meets the needs of the Olympics, but rather on whether or not the companies were a 'major sponsor' of the Olympics. So who has bought their way into being the security experts of choice, and with whom our security and that of the visiting millions will rest? Visa."

36 of 165 comments (clear)

  1. The Diebold Olympics by LiquidCoooled · · Score: 2, Funny

    Who will win the Pyrite medal?

    --
    liqbase :: faster than paper
  2. This should be good by Hoi+Polloi · · Score: 4, Funny

    I look forward to seeing guards dressed as Ronald McDonald and Mayor McCheese handing out the medals.

    --
    It is by the juice of the coffee bean that thoughts acquire speed, the teeth acquire stains. The stains become a warning
  3. This should not be a surprise by rbanzai · · Score: 4, Insightful

    Business goes to those who spend the most money. It is not based on ability. Why? Because there is no accountability on either end of the process. Unless a company is threatened with the possibility of personal punishment for corporate stupidity then there are only rewards for this kind of system. If a business suffers or fails due to this kind of dumbness those responsible will just get a job somewhere else and leave the mess to someone else.

    1. Re:This should not be a surprise by Lumpy · · Score: 4, Funny

      In the news tonight the Microsoft security teams missed a bomber at the Olympics village that killed 32 olympians.

      Microsoft said they will be issuing a patch next tuesday to fix the problem.

      --
      Do not look at laser with remaining good eye.
    2. Re:This should not be a surprise by polar+red · · Score: 2, Insightful

      Well, why shouldn't you be responsible for your deeds ? I'll make an analogy: If the company kills someone, then you could only sue the company, and not the person behind it ... this creates LAWLESSNESS.

      --
      Yes, I'm left. You have a problem with that?
    3. Re:This should not be a surprise by RexRhino · · Score: 3, Insightful

      Well, why shouldn't you be responsible for your deeds ? I'll make an analogy: If the company kills someone, then you could only sue the company, and not the person behind it ... this creates LAWLESSNESS. The problem is not unique to corporations... the same thing exists with governments, churches, political parties, etc.

      Should we arrest the pope for illegal activity done by a priest?

      Should we arrest you for the illegal activity done by your mayor?

      Should we arrest all members of a political party because some are involved in corruption?

      Limits to liability are not unique to corporations. They exist for nearly any large collective of people. When I can sue you for violating my constitutional rights when you vote for censorship, or gun control, or the patriot act, or for being a member of a church that engaged in brutal crusades in the middle ages (or have you charged criminally), then that is the day you can sue me for owning a handful of shares of microsoft.
  4. Re:Millions of infections by numbski · · Score: 3, Insightful

    Well, in an attempt to NOT be cynical...at least Visa would have plenty of experience on the topic. Just because they are a huge, near-monopolistic entity doesn't mean they would be inept at choosing security. Granted, it's a pretty lame way to choose, but you have to admit, if anyone has experience on the subject...

    We always hear about the big hacks, we don't hear about the countless failed attempts though. Give credit where credit is due. (and make sure it's Visa©, as it's everywhere you want to be!) ;)

    --

    Karma: Chameleon (mostly due to the fact that you come and go).

  5. Duh, it's the olympics. by EveryNickIsTaken · · Score: 5, Insightful

    This should surprise nobody, as the olympics themselves are typically given to the city that spends the most $$ and bribes the most IOC officials.

    1. Re:Duh, it's the olympics. by MightyMartian · · Score: 4, Insightful

      Why anyone bothers with this nationalistic jingoistic drug-fest is quite beyond me. There bringing the whole show to Vancouver in 2010, and we the local taxpayers are on the hook for all the cost overruns. Most of us won't be attending anyways, so the whole thing is a real joke on the unlucky souls who get to foot the bill.

      If they are going to have this stupid over-blown sportsfest, then why don't they just build a permanent facility, say, in Greece (that funny place where it actually began) and then fire every one of those corrupt, worthless bastards in the IOC.

      --
      The world's burning. Moped Jesus spotted on I50. Details at 11.
    2. Re:Duh, it's the olympics. by eln · · Score: 5, Funny

      That's a little unfair. Hosting the Olympics can totally transform a city's economy. After all, look at what's happened to Sarajevo since it hosted the Olympics in 1984!

    3. Re:Duh, it's the olympics. by eln · · Score: 2, Interesting

      Salt Lake City cleared all of the homeless out of their downtown area prior to the Olympics, and they still haven't returned in the numbers they were in before. I don't know what they did with all of them, but I was in SLC in 2000, and again in 2003, and there were far more homeless people the first time. It was really nice being able to go into one of the downtown malls without being hassled by a homeless guy, but you do sort of wonder where they all went.

    4. Re:Duh, it's the olympics. by Rasit · · Score: 3, Informative
      Salt Lake City cleared all of the homeless out of their downtown area prior to the Olympics, and they still haven't returned in the numbers they were in before. I don't know what they did with all of them,[...]

      They were relocalised to a sunny vacation spot. Nothing else happened to them, the fact that the local schools was sold some very cheap steak around that time is completely coincidental.

      Now stop asking questions about it or you will wake up with a goat head in your bed. (The mafia outsourced the horse head department to Sony)

    5. Re:Duh, it's the olympics. by Bazman · · Score: 3, Informative

      Plenty of shooting on US tv. Its called 'The News'.

  6. why is this on slashdot? by Anonymous Coward · · Score: 5, Funny

    This impacts none of you nerds. Everyone here has asthma.

  7. This suprises anyone? by henele · · Score: 2, Insightful

    The British Government makes a shady tech sourcing decision?

    There have already been a bunch - for example, Accenture acts as a 'Premium Partner' supporting the London bid then lands a contract for the back office systems.

  8. The 2012 Olympic Games... by Billosaur · · Score: 3, Funny

    ...brought to you by Nissan... VISA... JP Morgan Chase... Al Qaeada...

    --
    GetOuttaMySpace - The Anti-Social Network
  9. Visa are extremely qualified for the job by malsdavis · · Score: 2, Funny

    Visa are of course an extremely qualified company to look after the IT security of the games however. Regardless of anything else they would be amongst the top couple of contenders anyway.

    1. Re:Visa are extremely qualified for the job by Moofie · · Score: 2, Funny

      What color is the sky on your planet?

      --
      Why yes, I AM a rocket scientist!
  10. Zonk, please stop misrepresenting via headline by rbanzai · · Score: 5, Insightful

    Zonk, your persistent use of misleading headlines to stir up the posters is unprofessional. This is only the latest in a long string.

    Your headline says "2012 Olympics Security to be Chosen by Sponsorship" and with security such an issue of course the reader will at first believe that it is PHYSICAL security in question.

    You know damn well this is not the case. I am just one of the many who want you to start showing a little class and write headlines that accurately reflect the story, not the inflammatory fiction that you would prefer.

    This is a technology site and this is a technology story. To fancy that it is anything else is an extravagance on your part, unprofessional and in the end, juvenile.

    1. Re:Zonk, please stop misrepresenting via headline by Fifty+Points · · Score: 2

      the reader will at first believe that it is PHYSICAL security in question.

      Yes, because it's not like this is some sort of tech or IT news on IT.Slashdot.org
      --
      I'm in between insightful sigs right now...
    2. Re:Zonk, please stop misrepresenting via headline by rbanzai · · Score: 4, Interesting

      It does not free him from the responsibility of writing an accurate headline instead of one he has written to deliberately misrepresent the content, his frequent approach. For a recent example check out this whopper: "HP Stops Selling Printers, Starts Selling Prints." (http://slashdot.org/article.pl?sid=07/04/19/16920 8)

      Of course HP is not going to stop selling printers. But why let that stop him from writing a headline to make the story seem far more significant than it really is? Instead of letting the story stand on its own merit he needs to cook it.

      And no, I'm not going to filter out his stories because I reserve the right to challenge him every time he does it, watering down one of my favorite websites with his bungled content.

    3. Re:Zonk, please stop misrepresenting via headline by radtea · · Score: 4, Insightful

      Eh, c'mon, this is Slashdot, what do you expect? First-class journalism? Pfft.

      I expect headlines that aren't outright falsehoods, which a large number have been recently. Sometimes they just repeat falsehoods in the linked stories ("hot ice burns!") but they are often the pure fabrication of /. editors, who apparently believe that "news for nerds" means, "headlines that lie".

      One of the things that distinguishes nerds from normal people is that nerds have a low tolerance for falsehood. This is why we don't have any friends. The technology we work with every day has no sense of humour. The system of 19 coupled differential equations I am banging my head against right now doesn't care how I feel or what I think: the only thing that matters is that my code--and my math--is exactly right.

      This is the way nerds approach the world, and we have nothing but pity for people who are so stupid as to put anything ahead of truth, because we know that the truth is what moves the world. Everything else--however deadly or destructive it sometimes can be--is just the transient flailing of sad little people who want to put their fantasies in place of reality.

      --
      Blasphemy is a human right. Blasphemophobia kills.
  11. Most to lose by CustomDesigned · · Score: 3, Insightful

    The policy is not completely loony. The biggest sponsors have the most to lose monetarily from a serious problem. The problem is that when corporations get too big, they seem no longer capable of acting rationally in their own financial best interest (e.g. Sony, Microsoft long term), so the profit motive loses effectiveness.

  12. Can't Wait by styryx · · Score: 3, Funny

    I hope there's going to be some funny messages popping up on the screens on live TV.

    You couldn't buy that kind of comedy...Oh, wait; nevermind.

  13. Why is this a problem by OeLeWaPpErKe · · Score: 2, Insightful

    Have you checked what industry visa is in ? Obviously they know a thing or two about both physical and electronic security.

    That they succeeded in the banking business obviously means they know to strike a good balance between security and costs. And that's exactly what the olympics is looking for.

    1. Re:Why is this a problem by PTBarnum · · Score: 3, Insightful

      I'm not sure what your point is. All security involves balancing risk and cost; spending too much on security is no better than spending too little on security. If I spend $10 to prevent $5 in losses, I'm being foolish.

      In the context of the Olympics, you can have perfect Olympic security by simply not having any Olympics. Otherwise there is always a risk of either electronic or physical intrusions. Somebody has to evaluate the risks and the damage they could cause, evaluate to what extent a given security plan mitigates that risk, and decide if the expected damage reduction is worth the cost of the security.

      For example, consider the possibility that somebody is able to hijack the Olympics home page, and it takes an hour to fix the problem. Such a defacement is clearly not "acceptable", but what is it worth? Would they pay $1 to prevent it? Almost certainly. Would they pay $1,000,000,000 to prevent it? Probably not.

  14. Overblown by Moggyboy · · Score: 2, Insightful
    I'm utterly amazed that any of you are surprised or outraged by this. With an Olympic Games staging costing host cities billions of dollars, it's a no-brainer that they'll pander to the whims of any company willing to subsidize this cost, and thus reduce the organising committee from having to pull all of the funding out of taxpayers dollars.

    It's just business kids, get over it.

    --
    Work smarter, not harder.
  15. Re:Ah, Smell that? by k1e0x · · Score: 4, Insightful



    No its not, its Corruption.

    Corporations are an affront to the free market. Governments have allowed rich people to create legal fiction to protect themselves if there business were to do something questionable. Laws allowing people to incorporate and receive such special protection are wrong and not part of pure Capitalism.

    What if something does happen.. So you think the "security company" will be head accountable for providing poor security? Unlikely.. maybe the CEO will retire with a large payout.. err.. I mean "step down" .. In a pure capitalism society that man would be liable not the fictions corporation.

    --
    Bringing liberty to the masses. - http://freetalklive.com/
  16. Commercialization by ZeroConcept · · Score: 2, Insightful

    Modern Olympics are a distant image from the virtuous competition they once were, commercialization has saturated any space it had for admiration. To the athletes kudos for enduring this, to the management shame on their lack of ethics.

  17. Re:Visa... by Mantaman · · Score: 3, Funny

    Ticket for Olympics for 2012 £1500. Over priced food £200 for a hot dog. Getting nuked in the arena because there isnt any security .. PRICELESS :)

  18. A Sponsorships Is OK, Just Not This Way by Phat_Tony · · Score: 2, Interesting

    Evaluating security products effectively can be very difficult and expensive. I have no problem with them doing this by sponsorship. But they shouldn't just hand over technical security to whoever happens to be the biggest advertising sponsor, even if it's McDonalds or Microsoft or someone else who doesn't know anything about it. They should solicit bids for a security sponsor. That is, companies place bids separately to run the security services for the Olympics. These bids could be positive (they pay the Olympics) or negative (how much the Olympics has to pay them), along with a proposal explaining what they will do to keep things secure and their experience in the field, etc. They also get a certain amount of advertising on things, "Olympic IT Security Provided by Whoever." If the ads say "Olympic Security Provided by Symantec," and the headlines are "Olympic Security in Shambles; website defaced, credit card numbers stolen, official Olympic records changed," this isn't so good for the company. Realizing this potential ahead of time, in placing bids, security companies will have a very strong incentive to submit competent proposals.

    Visa isn't tied in so much in this way, because their bijillion ads won't specify that they're handling security. Also, if they got this by favoritism based on advertising sponsorship, and not based on competitive bids, then the Olympics is probably paying them too much for what they're getting.

    --
    Can anyone tell me how to set my sig on Slashdot?
  19. MOD PARENT UP by rockout · · Score: 4, Interesting

    I, for one, get Slashdot stories via an RSS live bookmark on Firefox, and I don't know that the headline refers to a story at it.slashdot.org - I have to agree that Zonk's headline is extremely misleading, as when I see "Olympics" and "security" I immediately assume the headline refers to physical security.

    --
    I've learned that they're worthless, so I don't read AC comments anymore.
  20. Re:Millions of infections by magarity · · Score: 3, Interesting

    the past few decades have demonstrated empirically that huge corporations seem to do crummily at the whole security thing
     
    It's also show that government beauracracies do just as poorly or even worse. So what is one to do? At least the corporations seem to waste a little bit less money doing security poorly.

  21. They'll subcontract out what they don't know by davidwr · · Score: 2, Insightful

    Visa will be the general contractor. They'll do what they know how to do and farm out the rest.

    --
    Knowledge is how to play a game, intelligence is how to win, wisdom is knowing what game to play.
  22. Re:Millions of infections by plover · · Score: 5, Informative
    I still maintain that Visa is responsible for killing advances in credit security, rather than their current wrong-headed PCI approach to "enhance" them.

    A decade ago, Mastercard came up with the Secure Electronic Transaction (SET) protocol. This protocol cryptographically ensured the security of credit card data, and was designed to be implemented in hardware at the retailers. Each one of those PIN pads is capable of participating in the SET protocol.

    Visa killed it, because it rendered them irrelevant.

    Visa itself isn't a credit lender. Visa is a commercialized industry group, very similar to the RIAA, providing a common badge to paste on the front of thousands of banks, and a common mode of operation for those banks. When you get a Visa card, it looks and acts like any credit card from any of the member banks. That's important because you (and the merchants you shop at) trust that if your card has a Visa logo that it will be honored. Back in the late 70s, that was vitally important because most credit commerce was conducted off-line. But now that we have ubiquitous electronic networks and everyone authorizes credit cards before accepting them, that logo means almost nothing. Now, it's a question of "does the merchant trust that they'll get paid?" The Visa logo lets the cashier know that his store does (or does not) trust the bank on the other end of the transaction. It assures the merchant that yes, this Visa member bank will pay them. But with a fully online transaction, the payment could happen automatically and securely. The merchant wouldn't care where the card came from, since the authorization went directly to the customer's bank, and their bank transferred their money instantly before the customer even walked out the door. There would be no need for intermediaries to skim their transaction fees for operating a special bank-only network, as the secured transactions themselves could take place over any public network.

    This would have killed Visa. Instead, they swept SET under the rug and we've been dealing with phony cards and ID theft ever since. Now, they have a program called PCI-CISP, and it's used by Visa to deflect the blame to the merchants for leaking stolen data.

    --
    John
  23. Re:Ah, Smell that? by profplump · · Score: 3, Informative

    Apparently you've never employed anyone, or been a member of a partnership. Employees and partners aren't slaves or children, and their boss can't control all their actions. Therefore their boss should not be held accountable for all their actions.

    Let's say Joe from IT uses his access to the business systems to get the backup encryption key and then steals one of the archived DB backup tapes. When he gets home he extracts a list of credit card numbers and sells or uses them. In this scenario the business policy provided reasonable protection of the credit card numbers -- the business systems were secured from general access and the tapes were encrypted. But Joe used the access he was necessarily granted to do his job to violate the trust of his employer and steal credit card numbers. Why should the CEO be personally liable?

    Or for a small-business example try this one: you and your partner start a business. You hire skilled and reliable workers, you do good work, and your customers love you. Everything is going great and you land a big contract. Then your partner takes all of your liquid assets including the contract payment and skips town. Your business now has no cash to complete the contract or issue a refund, and you didn't do anything wrong, other than trust your partner -- should you lose your home because your business partner turned out to be a thief?

    There are scenarios where the directors or owners should be held accountable; any time that the management of a company makes decisions that hurt people though direct action or negligence they should be held accountable. And contrary to your apparent belief it is possible to sue the directors and owners of a company personally in any case where they were actually at fault. It's just not possible to sue them personally in cases where they were not at fault, and there are socially valid reasons for making that distinction.