Rob Malda Casts a Jaded Eye at Amazon's Silk

m.ducharme writes "Slashdot's recently departed editor and Fearless Leader muses about the security implications of Amazon's Silk, which uses Amazon's massive cloud computing services to provide 'pre-caching' for the new Fire devices." Another potential downside to bear in mind (depending on exactly how much Silk relies on the AWS infrastructure) is that it provides a single point of failure, and sometimes cloud services go down.

Huh?

[wsxyz]

Who's Rob Malda?

Re:Huh?

[Sporkinum]

Rob Malda
From Wikipedia, the free encyclopedia
Rob Malda

Malda at LinuxWorld Boston 2006
Born May 10, 1976 (age 35)
Other names CmdrTaco
Known for founder of Slashdot
Slashdot

        Rob Malda (CmdrTaco)
        Jeff Bates (hemos)
        Slashdot effect

This box: view  talk  edit

Rob Malda (born May 10, 1976. in Holland Michigan), also known as CmdrTaco, is founder and former editor-in-chief of the website Slashdot. He is a graduate of Hope College and Holland Christian High School.

In 1997 Rob Malda and Jeff Bates created Slashdot while undergraduates of Hope College.[1][dead link] After running the site for two years "on a shoestring",[2] they sold the site to Andover.net, which was later acquired by VA Linux Systems.[3] Malda ran the site out of the SourceForge, Inc. office in Dexter, Michigan.[4]

Rob Malda also wrote a monthly column for Computer Power User.[5][dead link] In 2002, he was named to the MIT Technology Review TR100 as one of the top 100 innovators in the world under the age of 35.[6]

On August 25, 2011, Rob Malda announced his resignation from Slashdot.[7]

Re:Huh?

I couldn't tell if the gp was being sincere or just trolling.

Isn't that the goal of every slashdot commenter?

Re:Huh?

[bonch]

The guy who infamously responded to the announcement of the original iPod: "No wireless. Less space than a nomad. Lame." So I'm sure we're all interested in his opinion about Silk.

Re:Huh?

[tripleevenfall]

But this only follows the /. standard response to any new device. There is not enough space, it's underpowered, it's overpriced, it doesn't render 3D models, it can't control the space shuttle, it can't beat Kasparov in chess, it can't even construct Kelly LeBrock for us - therefore, /. neckbeards have no use for it. Lame. Fail. Insertmeme

Re:Huh?

His comment was correct, though. The first iPod WAS objectively inferior to the Nomad of the time. Note that the comment was a quality judgment of the product in question, not a prediction that it would fail in the marketplace.

Re:Huh?

[grouchomarxist]

I don't see why this comment was modded informative. The original iPod had less storage space than the Nomad, but it was smaller and had higher transfer rates. Definitely not "objectively inferior".

Re:Huh?

[tehcyder]

The guy who infamously responded to the announcement of the original iPod: "No wireless. Less space than a nomad. Lame." So I'm sure we're all interested in his opinion about Silk.

Because we all know that the original iPod did have wireless and in fact had more space than a nomad, so clearly CmdrTaco was factually incorrect. Oh, wait...

Just because the iPod became incredibly popular doesn't mean you can go back and rewrite history. At the time, the iPod was nothing special, its main advantages were that it was much cooler looking than its rivals, and very easy to use (if you had a Mac with firewire)

Should a tablet be used to do secure stuff anyhow?

[Kenja]

I had much the same thoughts, but then I realized that I wouldn't use a seven inch tablet for work or anything else important. It would just be for when I'm too lazy to get off the couch to look up the name of a movie thats rattling around in my head. Frankly, this goes for all tablets. The mobile browsers have simply not been around long enough for me to say that they are secure, so if security is an issue, dont use them.

And finally, it is assumed that you will be able to install other web browsers at some point. While there are none to speak of on Amazons App Store I have little doubt that someone will figure out how to get Firefox Mobile etc installed.

Single point of failure

[spire3661]

Just like Battle.net, Xbox LIVE, Office 365, netflix (which uses AWS btw), etc etc so on and so forth. There are plenty of services out now with single points of failure.

Good ol' Taco

[multisync]

At $199, the Amazon Fire stands to be shift the whole tablet market into a new (cheaper) place.

Carrying on the proud Slashdot tradition of not giving a whit about copy editing by mangling the very first sentence. We're gonna miss ya, Rob.

Re:Good ol' Taco

[sootman]

I got as far as the fifth paragraph (fourth, if you don't count the obviously unintended break between 4 & 5) and realized the horrible truth: he DID have spellcheckers and editors going over his work while he was here and, God bless their tortured souls, they did as much as they could--they just couldn't completely contend with the torrent of spelling and grammatical errors he sent their way.

My favorite bit is this sentence in paragraph 2:

Silk is the tech amazon [not capitalized] has built to pre-render? [he uses two spaces after questions marks and periods; sometimes three] to pre-cache? web pages on the massive AWS/EC2/S3 network (the same network that Iâm [quotation marks instead of an apostrophe] using to actually host this very web page in fact. [Parentheses not closed]

Slashdot editors, I salute you. *wipes tear from eye*

Re:Good ol' Taco

[ediron2]

To be fair, two spaces after a sentence close is normal

Flat-out wrong. Two spaces after a period only if you're using an actual, physical typewriter or a monospaced font.

Meh, I'll toss in a token 'get over yourself, kid' for all of us grumpy oldsters that were taught to touch-type with 2 spaces after each sentence (. or ? or !). Doublespacing periods isn't a sin. It's not 'flat out wrong'. It's an innocuous habit I still have due to decades of typing and an edge case: I go back and forth between monospace code and publishable material like this post. I could do a lot worse. For starters, I could be a grammar nazi while (squints at screen) typing 2 sentence fragments and a -- sweet web-formatting jesus, did you really use just 12 words to anchor a link while telling us 2 *INVISIBLE* spaces is bad juju?! Get the Hell. Off. My. Lawn.

tl;dr: parent = grammar nazi post that has mistakes. There ought to be a meme for this...

Yes, but

[slim]

I agree about the security/privacy implications.

On SPOF though -
1. Amazon has a *huge* interest in keeping its cloud services up and running. Downtime is likely to be negligible.
2. From what I understand, the Silk browser can fall back to a more conventional mode of operation.

My stance on this is:
  - Read and understand Amazon's privacy policy
  - Decide how much you trust their security
  - Put your Silk browser into client-only mode when you think it's appropriate -- e.g. when doing online banking.

Single point of failure?

[adturner]

Well depending on how Amazon is using EC2, they could be doing the pre-caching in multiple zones so there may not be a single point of failure. But seriously, is this really a concern when:

1. The Kindle Fire screen, battery, PCB, etc are all a single point of failure
2. Your WiFi base station is probably a single point of failure
3. Your home cable/DSL modem is a single point of failure
4. The wires running between your home and the network POP is single point of failure
5. The DSLAM/whatever it's called in cable-speak is a single point of failure
6. etc etc etc

Yes, I know if you're using it at work you prolly have multiple WiFi access points and possibly redundant routers/connections to the internet, but why are you watching movies and playing angry birds at work?

Hell, the whole internet has gone down for large segments of the US due to construction workers/etc indiscriminately using backhoes to create huge fiber cuts, not to mention under sea cables being cut for various reasons.

I mean there's a lot of valid reasons why you may not want a Kindle Fire (I'm personally not interested in tablets at all), but I find this to be one of the weakest arguments out there.

Its all about the latency...

[nweaver]

This sort of structure for a web browser has huge potential latency savings.

Web pages consist of lots of pieces, from lots of places, and lots of dependencies. (Open up Firebug, open the HTTP console, and open up the New York Times to see). Latency is the huge limiting factor on page loads, and is why it takes 1.7 seconds for the NY Times to load for me, even though it only transfered 300 kB of data (which is only .12s on my Internet connection).

The Silk-style structure beats the latency bottleneck in two ways.

For NEW content, the Silk proxy is much closer to the content itself. If its just 20ms closer, that will still save 40ms for each dependent fetch from a different site, 20ms for each dependent fetch from an existing site.

And for content that Silk has CACHED, its even faster, shaving basically ALL latency off the fetch.

IT doesn't hurt that the Fire probably has too small a processor and too little memory to run a real browser, but the latency wins make this structure attractive even for real browsers.

Re:Its all about the latency...

[wsxyz]

And for content that Silk has CACHED, its even faster, shaving basically ALL latency off the fetch.

I shaved all the latency off my fetch too. Now it's silky smooth.

Jaded is polite.

[koan]

Is this what we are in for? Hardware dependent on cloud services, essentially a dumb terminal with content pushed to it, an item relatively useless if there are no supporting cloud services.
I realize at this point that description doesn't fully fit Fire, but mobile tech seems to be headed that way, seemingly turning the Internet into TV.

Re:Failure Not a Big Deal but Security Risk is

[icebraining]

No, parent is right.

All of the browser subsystems are present on your Kindle Fire as well as on the AWS cloud computing platform. Each time you load a web page, Silk makes a dynamic decision about which of these subsystems will run locally and which will execute remotely.

The server can preprocess the web page for you, but it's not required.

So what?

[argStyopa]

So, cloud services sometimes go down? My local browser client crashes occasionally too.

The point being that if it's a system that will allow (generally) faster/smoother delivery of content to mobile endusers, that's a great thing. Yes, the 'cloud' might fail occasionally, but I don't know if you've ever browsed through your phone before but it's a fairly shitty experience anyway, and you'd ostensibly have a current-standard client browser available as a backup if the cloud-failure is persistent, no?

It Can Be Turned Off

Amazon has stated that the split browsing mode is optional and can be turned off so that Silk is like a conventional browser accessing its content directly instead of from Amazon.

http://arstechnica.com/gadgets/news/2011/09/amazons-silk-web-browser-adds-new-twist-to-old-idea.ars

Opera

[Zebedeu]

Opera Mini has the same problem.
Instead of avoiding the issue like Amazon though, they admit it openly: http://www.opera.com/mobile/help/faq/#security

I remember reading that FAQ few years ago, and they were even more candid about it. It used to say something along the lines of:
"Yes, technically we have access to every website you visit, even if it's encrypted. We promise, however to respect our user's privacy and never look, but ultimately it's up to you if you trust us. If you don't, please do not use Opera Mini to access sensitive websites".

Unfortunately I can't find that quote anymore. I guess some MBA must've found it "unprofessional" or something.

Rob Malda...

[sortadan]

He's some guy that wants the cloud kids to get off his lawn. It's Android, if you don't want to use Silk (and I'm sure it will work fine without using AWS), there are like 50 other webkit browsers you can download for free, so this is not an important point. The larger issue is privacy in my mind but the public doesn't seem to care (the market has spoken).