Stephouse steps into Portland, Ore., void: Local firm Stephouse has built out 5 sq mi of business-grade wireless availability in downtown Portland and 2 sq mi in an underserved part of north Portland using Proxim gear for both Wi-Fi and WiMax service. Wi-Fi use is $20 per month or 1 free hour per day up to 10 free hours per month. The offering seems to focus on the business side, though, in competition with services like Towerstream. Prices aren't listed on the company's site.

Hartford drops Wi-Fi effort: Connecticut's trouble capital city has given up on city-wide Wi-Fi. No surprise. No firms ready to build for free, no money, no tangible goals. My wife grew up in the suburb to the west--West Hartford, prosaically enough--and speculates that the lack of county-oriented government in Connecticut has doomed Hartford to be a civic wasteland. It's recovering a bit as housing affordability goes up, and there's more going on in the city than there used to be. But there won't be Wi-Fi. Incidentally, the Mark Twain House & Museum in Hartford, home of one of the world's first bloggers, is near financial ruin. It's a great piece of American history; I'm hoping it's saved again--it's had many lives since Twain built it and went bankrupt.

Only 6% of the those who responded to the poll, conducted from July 3 thru July 12th, voted that CEP was mature.   If you include those who consider CEP getting close to maturity, 18% of our readers who voted said that CEP was in the final stages of maturity.

How is it possible that 31% of the folks who responded believe that CEP is in the Gartner-defined Technology Trigger stage of maturity, while 6% believe CEP is at the other end of spectrum, in the Plateau of Maturity Phase?

During the poll I received a question from a colleague who asked me if I “still loved CEP?” and “why are you trashing the entire industry that you love?”   

Frankly speaking, I have enjoyed a passion about event processing since my early days at Sprint, circa 1993, during the NSFNET transition to the commercial Internet.   Then, as today, we hoped for the same goals and objectives that network and security management people seek to achieve; high confidence in actionable alerts with a very low false alarm rate, all based on processing myriad distributed networking events, sometimes referred to today as sense-and-respond networking.

Today, we are good at “sensing”.  Events are created, perhaps trillions upon trillions a second globally.   No one knows the exact number of events the world’s networks generate in a single second, much less in a day or a year.      Yet, we are quite good at producing events.

What we do know is that we do not yet have the technology to listen to myriad events and determine complex events and situations with high confidence.   At best, we can detect, sense-and-respond, to simple events and primitive situations.  

On the other end of the maturity curve, there have been some advances.  Some of the notable progress has been in the event stream processing (ESP) space.    ESP is an importart part of the equation but it is nowhere close to the entire solution because rule-based stream processing is at a very low level in most sense-and-respond decision-making models.  Higher level inference requires more sophistication.

Two-thirds of our readers believe that CEP is still in the very early stages.  The majority of our readers envision CEP as a technology, or set of technologies, to solve myriad complex event processing problems and they know we have a long way to go.     On the other hand and with just as much passion, about one-in-six readers think that the technology is mature, and we are at the end of the CEP maturity cycle.

My crystal ball is just as foggy as yours on the future of CEP - but here on The Complex Event Processing Blog, we continue to work hard to “keep it real” for our readers.  

Oakland County, Mich., project officially "on hold": For "on hold," read, "never going to be built." The pilot area in seven communities has been turned off, and MichTel has been unable to obtain the $70-odd million they project needed to build out the county-wide service. The state's ongoing reliance on the automotive industry makes it a hard sell to commit public dollars in advance of a return on those dollars, too.

Virgin Mobile buys Helio: The last vestiges of EarthLink's three-pronged approach to fighting the wireline monopoly appears to be at an end. EarthLink pushed its 50-50 partnership with SK Telecom in mobile virtual network operator (MVNO) Helio as one prong; its municipal Wi-Fi division as another; and its DSL business as a third. The muni division is nearly out of operation, and DSL lines continue to fall in quantity quarter over quarter. Dial-up is still their cash cow. Helio lost hundreds of millions to obtain just 170,000 subscribers (that number down from 200,000 at the start of 2008). EarthLink will receive a pittance for its investment, part of the $39 million in stock that Virgin will pay for Helio; SK Telecom will invest in Virgin Mobile to obtain a total 17 percent state. Virgin itself makes just a very tiny sliver of profit. MVNOs buy minutes and data from carriers, and Virgin Mobile involves Sprint as a partner, making it the only tolerably successful MVNO.

O2 will offer iPhone 3G for free along with extensive Wi-Fi coverage: AT&T may still be sorting out how Wi-Fi service will be included in its cell plans, but O2 had already provided free Wi-Fi to supplement scanty EDGE service in the UK. The new iPhone 3G will be offered fully subsidized to subscribers of £45 or higher tariffed services, along with 9,500 hotspots through BT OpenZone and The Cloud.

SanDisk buys MusicGremlin: The innovative Wi-Fi-enabled music player was and remains far in advance of the features found in the iPod touch, iPhone, and Zune, but the company behind the product couldn't get a fire lit under it. Sales figures were never disclosed, but it's never been on the list of top-selling players in the market. SanDisk's acquisition will shut down the product and its music service, but it will absorb the people and technology. I met with the founders of the company many years ago, and were impressed by how far ahead they were of everyone in the industry.

Zyxel introduces VOIP-connected Wi-Fi camera: I think they threw a bunch of buzzwords into a blender, but it's rather clever. The camera connects to a network via Wi-Fi, and has SIP (Session Initiation Protocol) embedded. SIP is used for VoIP and as part of gatewaying Internet telephony. The V750W gets its own phone number, and can be controlled remotely through either a real phone using the public telephone network, or a soft phone using SIP. It's being resold, not sold to consumers directly, as a monitoring tool. It includes two-way audio. The camera can also place a phone call if an intruder monitor is tripped. Why not just give it an IP address like other such cameras? SIP, if implemented correctly, can traverse private networks' NAT (Network Address Translation) gateway limits.

Image via Wikipedia

Actually they were forced to step up. Steven Musil reports that according to this NY Times article, NY State Attorney General, Andrew Cuomo has forced several of the largest ISPs including Verizon, Sprint and Time Warner Cable to institute blocking of web sites and usenet groups that traffic in child pornography. I say what took so long. For years now the ISPs have wrapped themselves in first amendment issues and claimed that they had no responsibilities for individuals communicating with other individuals. But as Musil reports, Cuomo said that at some point if they knowingly allow such illegal activity they do bear responsibility. Cuomo's office had to threaten legal action before the ISPs would agree to get involved though.

The I don't have responsibility defense used by the ISPs has been frustrating for a long time. When I was in the hosting business, some web hosts said the same thing about hosting web sites with illegal content (porn, warez, etc.). Law enforcement was quickly able to pierce that veil and get web hosts to take down illegal sites. Cuomo I think said it best, “No one is saying you’re supposed to be the policemen on the Internet, but there has to be a paradigm where you cooperate with law enforcement, or if you have notice of a potentially criminal act, we deem you responsible to an extent”.

Of course the question is: who picks what is objectionable. Child porn is easy, but what about other types of porn, gambling sites, etc. Once we put the power to filter content in a private companies hands, we entrust them to filter only what is illegal. But it would be naive to think they won't filter for their own best interests either.

While I applaud this step and give Andrew Cuomo credit for bringing the ISPs to heel, I think you have to put some process in place to make sure that legitimate and protected communications and freedom of speech is not suppressed.

In any event now the security folks can blame the ISP for why certain executives web browsing to quesitonable sites is being blocked ;-)

• History of the marathon and Pheidippides
• Discussion of the race length and how it was changes so that the Queen could watch the finish
• World records and what our chances are for making one today
• Graphics of the race course showing the key hills and the “sprint to the finish”
• Talk about the womens’ marathon including Joan Benoit and Kathrine Switzer
• Description of energy depletion and “The Wall”
• Stats as the leaders hit the finsh line
• Shots of “back-of-the-pack” runners and the race against yourself

Well, I now present to you the formula for FISMA Report Cards:

• Paragraph about how agencies are failing to secure their data, the report card says so
• History and trending of the report card
• Discussion on changing FISMA
• Quote from Karen Evans
• Quote from Alan Paller about how FISMA is a failure and checklist-driven security
• Wondering when the government will get their act together

Have a read of Dancho’s response to the FISMA Report Card.  Pretty typical writing formula that you’ll see from journalists.  I won’t even comment on the “FISMA compliance” title.  Oh wait, I just did.  =)

Some myths about FISMA in particular that I need to dispell right now:

1. FISMA is a report card:  It’s a law, the grades are just an awareness campaign.  In fact, the whole series of NIST Special Publications are just implementation techniques–they are guidance after all.  Usually the media and bloggers talk about what FISMA measures and um, well, it doesn’t measure anything, it just requires that agencies have security programs based on a short list of criteria such as security planning, contingency planning, and security testing.  It just goes back to the adage that nobody really knows what FISMA is.
2. FISMA needs to be changed:  As a law, FISMA is exactly where it needs to be.  Yes, Congress does have talks about modifying FISMA, but not much has come of it because what they eventually discover after much debate and sword-waving is that FISMA is the way to write the law about security, the problem is with the execution at all levels–OMB, GAO, and the agencies–and typically across organizational boundaries and competing master agendas.
3. There is a viable alternative framework:  Dancho points out this framework in his post which is really an auditors’ plugin to the existing NIST Framework for FISMA.  Thing is, nobody has a viable alternative framework because it’s still going to be the same people with the same training executing in the same environment.

Urban Cell-Phone Fire Myth photo by richardmasoner.  This myth is dispelled at snopes.com.

Way back last year I wrote a blog post about indicator species and how we’re expecting the metrics to go up based on our continual measuring of them.  Every couple of months I go back and review it to see if it’s still relevant.  And the answer this week is “yes”.

Now I’ve been thinking and talking probably too much about FISMA and the grades over the past couple of years, so occassionally I come to conclusions .  According to Mr Vlad the Impaler, the report card is a bad idea, but I’m slowly beginning to see the wisdom of it:  it’s an opportunity to have a debate and to raise some awareness of Government security outside of those of us who do it.  The only other time that we have a public debate about security is after a serious data breach, and that’s not a happy time.

I just wish the media would stop with the story line that FISMA is failing because the grades provide recursive evidence of it.

Bookmark to:

MetroFi was one of the three most prominent pure play metro-scale Wi-Fi firms, if you count EarthLink's municipal wireless division as a separate operation, and Kite Networks, which was a subsidiary of a larger telecom firm. Each company had made a unique network hardware choice--MetroFi, SkyPilot; Kite, Strix; and EarthLink Tropos plus Motorola--and each had a sort of specialty. Interestingly, a fifth firm, BelAir powers Toronto (a small but super-fast Wi-Fi network) and Minneapolis (the only putatively completed large-city Wi-Fi network), and will be behind Cablevision's nearly $350m New York Wi-Fi plan.

MetroFi was the only major firm to back ad-supported no-fee access, coupled with paid, no-ads service, and higher tiered commercial offerings. They built mostly smaller cities, with Portland being their only real big city win. The firm began with the notion of building Wi-Fi out gradually as a way to provide broadband in communities that lacked service, with no municipal involvement. That plan required sparser networks and typically a home signal booster designed by SkyPilot. (Kite mostly focused on the Southwest; EarthLink on big cities.)

EarthLink was in many ways largely responsible for the mess that all Wi-Fi providers found themselves in last year by offering to build Philadelphia's network back in 2005 at no cost to the city--in fact, paying the city and the local utility fees. That set the stage for nearly all the RFPs that followed where, if EarthLink were a bidder or the city was aware of the alternatives, the notion was that no city dollars would be spent, even if taxpayer money wasn't "at risk"--that is, even if a city could save money by switching current line items in their telecom and data budget to a wireless network.

Haas noted via email that MetroFi has been working towards anchor commitments by cities for nearly two years, but the inertia of those early networks led municipalities to reject those options. In Toledo, where MetroFi had negotiated an anchor commitment, a change in administration led a new mayor to retreat from the plan.

Is there a future for metro-scale Wi-Fi? Yes. With thoughtfully constructed, outdoor-focused deployments centered on municipal purposes, with public access a secondary issue, it seems like these networks could still provide an inexpensive way for relatively high bandwidth compared to the alternative of cell data networks.

However, that advantage is likely short lived in larger markets. The near-future certainty now that there will be multiple provides offering wired broadband speed service starting later this year with Sprint/Clearwire's WiMax, and continuing through into 2012 with significant network buildout by Verizon and AT&T in several bands (including their new 700 MHz holdings).

While Sprint/Clearwire is talking about 120m to 140m homes passed by 2010 with their network, obviously focusing only on major markets, many of the 700 MHz licenses purchased by AT&T and Verizon carry buildout requirements with penalties. So cities outside the top 100 population markets and rural areas will still see some benefit. In those mid-tier markets, there's also the 3.65 GHz band for shared licensed use, which is a model that Azulstar is pursuing with new WiMax deployments, as I wrote about recently.

Competition will likely push the cost of mobile broadband far below its $60 per month 2-year contract rate of today, which then would beg the question why a city or county with good commercial coverage would need to build its own Wi-Fi network. There are still plenty of reasons to build dedicated, first-responder 4.9 GHz public safety networks, of course.

I've always described Wi-Fi on a metropolitan scale as the best, worst technology. The best, because everyone has Wi-Fi in their laptops and increasingly in handhelds and gadgets. The worst, because the technology is absolutely not designed for the purpose, unlike CDMA and GSM evolved cell standards and mobile WiMax.

It's possible that in the long term, looking five years out, that Wi-Fi on a metro-scale will only be needed in small towns, odd markets, and for highly particular purposes. Or, perhaps in a bit of irony, where companies like Cablevision feel Wi-Fi is necessary to retain the loyalty of their highly wired customer base.

This is the first large-scale Wi-Fi network announced that had no public/private component to it. While Verizon once said they'd blanket New York City with payphone-based Wi-Fi nodes, that never materialized, and it was unclear how seamless the coverage would ever be. This is a full-blown metro-scale network that's not beholden to any political interest, and which can likely use mounting rights already available to Cablevision. (In the past, I've said this, and folks have said that franchising agreements would exclude additional mounted equipment of this kind. Years later, I have to say I've never found anything to support that opinion, but welcome more documented information in the comments.)

The idea is for Wi-Fi to act as a mobile broadband component for Cablevision, to dilute the impact of the Sprint/Clearwire deal announced yesterday. While cable companies rarely compete in a given territory, the Sprint/Clearwire joint venture will make it easier for a customer to get home and mobile broadband and voice from one company, and then turn to another firm for video. This buys Cablevision a quadruple play (voice, video, data, mobile broadband) with a future quintuple play by adding (as they say they will) voice over Wi-Fi service.

Sources indicate that BelAir equipment will be used, which makes sense given BelAir's release nearly three years ago of a cable-plant compatible Wi-Fi node designed essentially for precisely this contingency. This is a nice win for BelAir, which will likely be selling somewhere north of 15,000 nodes based on the coverage area and service described. BelAir gear also powers Minneapolis, the only successfully completed big-city Wi-Fi network in North America.