Friday, February 04, 2022

The next frontier that we need to tame.

https://thenextweb.com/news/metaverse-needs-laws-protect-users-data

The metaverse needs laws to protect users and data

The “metaverse seems to be the latest buzzword in tech. In general terms, the metaverse can be viewed as a form of cyberspace. Like the internet, it’s a world – or reality, even – beyond our physical world on Earth.

The difference is that the metaverse allows us to immerse a version of ourselves as avatars in its environment, usually through augmented reality (AR) or virtual reality (VR), which people are and will increasingly be able to access using tools like VR goggles.

While it all seems very exciting, a curious lawyer like me is inclined to ask: who or what governs the metaverse? The way I see it, there are three key areas that, at this stage, are legally murky.

1. A boundless marketplace

2. Data

3. User interactions



This could be useful if the results are timely and can lead to Best Practices.

https://www.wsj.com/articles/biden-administration-forms-cybersecurity-review-board-to-probe-failures-11643898601?mod=djemalertNEWS

Biden Administration Forms Cybersecurity Review Board to Probe Failures

The Biden administration has formed a panel of senior administration officials and private-sector experts to investigate major national cybersecurity failures, and it will probe as its first case the recently discovered Log4j internet bug, officials said.

The new Cyber Safety Review Board is tasked with examining significant cybersecurity events that affect government, business and critical infrastructure. It will publish reports on security findings and recommendations, officials said. Details of the board will be announced Thursday.

The board, officials have said, is modeled loosely on the National Transportation Safety Board, which investigates and issues public reports on airplane crashes, train derailments and other transportation accidents.


(Related)

https://thehackernews.com/2022/02/cynet-log4shell-webinar-thorough-and.html

Cynet Log4Shell Webinar: A Thorough - And Clear - Explanation

Most security practitioners are now aware of the Log4Shell vulnerability discovered toward the end of 2021. No one knows how long the vulnerability existed before it was discovered. The past couple of months have had security teams scrambling to patch the Log4Shell vulnerability found in Apache Log4j, a Java library widely used to log error messages in applications. Beyond patching, it's helpful and instructive for security practitioners to have a deeper understanding of this most recent critical vulnerability.

Fortunately, Cynet Senior Security Researcher Igor Lahav is hosting a webinar [Register here ] to provide "buzzword free" insights into Log4Shell. Based on a webinar preview provided by Cynet, the discussion will cover the software bugs in Apache Log4j that permitted the critical vulnerability, the exploits used to take advantage of the vulnerabilities and the remediation options available to protect your organization.



Do you identify people authorized to access the base, or ‘everyone else.’ (Clearly Clearview is still has an irresistible sales pitch.)

https://www.nytimes.com/2022/02/03/technology/air-force-clearview-ai-glasses.html

Air Force taps Clearview AI to research face-identifying augmented reality glasses.

In a flyer, Clearview said the product “saves lives,” “saves time” and “improves health” by increasing social distancing and keeping officers’ hands free to grab their weapons.

The U.S. Air Force is looking into keeping its airfields safer with help from the facial recognition start-up Clearview AI.

The Air Force Research Laboratory awarded Clearview $49,847 to research augmented reality glasses that could scan people’s faces to help with security on bases.

Last month, Mr. Ton-That said in a public letter that his company would not use its technology “in a real-time way,” but outfitting glasses with the technology to recognize faces seems to fit that bill.



Something to think about?

https://venturebeat.com/2022/02/03/the-state-of-ai-ethics-the-principles-the-tools-the-regulations/

The state of AI ethics: The principles, the tools, the regulations

The Montreal AI Ethics Institute (MAIEI) is an international nonprofit organization democratizing AI ethics literacy. It aims to equip citizens concerned about artificial intelligence to take action, as its founders believe that civic competence is the foundation of change.

The institute’s State of AI Ethics Reports, published semi-annually, condense the top research & reporting around a set of ethical AI subtopics into one document. As the first of those reports for 2022 has just been released, VentureBeat picked some highlights from the almost 300 page document to discuss with Gupta.



Tools & Techniques.

https://www.zdnet.com/article/singapore-releases-software-toolkit-to-guide-financial-sector-on-ai-ethics/

Singapore releases software toolkit to guide financial sector on AI ethics

Singapore has released a software toolkit aimed at helping financial institutions ensure they are using artificial intelligence (AI) responsibly. Five whitepapers also have been issued to guide them on assessing their deployment based on predefined principles.

The Monetary Authority of Singapore (MAS) said the documents detailed methodologies for incorporating the FEAT principles – of Fairness, Ethics, Accountability, and Transparency – into the use of AI within the financial services sector.

The whitepapers were developed by the Veritas consortium, which is part of Singapore's national AI strategy and comprises 27 industry players that include Amazon Web Services, Bank of China, Bank of Singapore, Google Cloud, Goldman Sachs, OCBC Bank, and Unionbank of the Philippines.

The Veritas consortium also developed the software toolkit to automate the fairness metrics assessment and facilitate visualisation of the assessment interface. Available on GitHub, the open source toolkit allows for plugins to enable integration with the financial institution's IT systems.


No comments: