 All right, Rock. What's up, Defcon? How you doing? So I have a little bit of a problem here. I can't see on my own laptop, so I'm going to be like walking back and forth, taking a peek at what my slides actually say, and then talking a little bit about them. So my talk is titled Every Breath You Take. A lot of people in this track are talking about, you know, anonymity, privacy, hiding from the internet more or less. I take kind of a cynical approach to that. I don't think it's really possible. In a way, I don't think it's so bad. You can do some useful things with it. So I'm going to go a bit into data gathering analysis and some other cool things you can do. So the main focus of my talk is just data everything that you can possibly do. So I'll walk through a little bit of what I mean by data. We're all smart people here that have our own views of what you mean by data. It could be stuff over the network, stuff in the physical world, anything like that. Gathering, persistence, mirroring, analysis, and kind of forecasting, targeting, what you can do with this data once you get it. So first of all, a quick little introduction. So you know who I am? I'm Jim O'Leary, a.k.a. Jimmy Oh. So I've been doing security work for a while. I'm mostly a corporate, stiff, white-hack guy. I have undergrad background in comp science, like, so that's why I'm really interested in a lot of this human-computer interaction and what it means going forward. And so I am employed. I'm not speaking on behalf of my employer right now, so anything I say is just going to get myself in trouble. And so a little story to get things started. So we started off with this little picture of the world, right? I'd say that it doesn't matter if you're a creationist or like one of these science guys, it's really hardcore. At some point the world happened, right? And we're in it right now. And there's this feedback loop that takes place to kind of maintain the systems that are going on and like, you know, the room you're in right now. And you just try to abstract it up to where you are, right? So you're in a room, you're in Vegas, you're in Nevada, you're in the United States, you're in the Earth, right? So the whole scope of kind of like, it's just tough to appreciate, right? Like you can't grasp all this in one thought. Like everything that's going on right now, it's just amazing. So eventually, right? Depending again on your views, but, you know, we showed up at some point and we're here right now. So the Earth, right? Kind of spins that guy out. And now we have a feedback loop with our environment, right? So it's hot outside. You're sweating your balls off, right? And, you know, you start driving around in your car all the time. You end up with this global warming crap and all that stuff too. So, you know, like it or not, there's a feedback loop there. And I'm also trying to introduce this guy. So this first guy actually could have just been life in general, right? Now we're these higher intelligent beings. We're self-aware. So we can also do things to ourselves, right? And then see how that creates, oops, I'm going to trip over wires here. See, you know, what kind of situations those result in. So lastly, and I can just skip to my whole, like, big picture here, right? So we have computers and everybody in this room works pretty closely with computers, probably spends, I don't know, say like eight hours a day at least on one. And my whole talk here, right, is just trying to kind of bridge this whole loop together to do something useful, right? A lot of people are kind of scared for good reason of the lines between the computer and the person, because it usually isn't a direct line, right? If you're doing something over the internet, there are millions, well, not millions, but lots and lots of people, they can potentially be looking at what you're doing. And even since you're working in their system that they define, like there's no way that they won't be able to know what you're doing, unless you make your own internet, I guess. So my data definition here, this is where I start off more on the physical kind of stuff. It's just everything that you can possibly gather, right? It can be like what time it is right now, where you're at, temperature, all this stuff. You can kind of read it, but, you know, basically I sum it up as just a bunch of stuff. And it is what it is. So on top of your data, you can also classify it into a bunch of different classifications. So this is just a really small subset, but some of which will be interesting to the security folks, right? We have your private data that you want to keep to yourself, public data you don't mind broadcasting, personally identified data, all this kind of stuff that you should be pretty familiar with already. And this is when I made you to walk to see what my slides actually say. So gathering is really, you know, kind of observing this data and pulling it down and getting yourself in a situation where you can actually do something with it. So there are a bunch of different models for gathering this data. You know, like Push is something proactive like email or, you know, even in Twitter where you're like actually doing something to create the transmission of data. Pull is a little different, right? So when I want to check all my blogs, I just go to, you know, like Google Reader, check out everything everybody's pushed to me. It's a little different. Voluntary and involuntary. So like I said, any of these opt-in models or it's like Twitter, I send somebody a status update. Like I'm actually volunteering into submitting this data. Involuntary stuff gets interesting, right? This is where your ISP is sitting between all your web requests and you and they're looking at, you know, what you like to browse for, you know, so they can provide targeted ads or start selling your stuff. That's when it gets a little interesting. The other interesting thing here is that a lot of systems say like AOL and Messenger back in the day and I think to this day, right, your status and profile are, you know, just public all the time. And so most people don't really grasp that, right? Because they have this notion of here are my buddies on my buddy list and these are the people that can talk to me. They don't also realize that anybody can query this information and pull it down. So self-regulating, self-aware are more of like you'll see this theme a bunch in my talk where I start running down things that are bigger than I can actually like appreciate. So those things are more just, you know, exercises left to the mind of the reader. And then inadvertent is interesting. I think you'll see that as a pretty common theme and why I'm so hopeless that you can actually keep stuff private, right? You have the AOL data leakage thing. You have, what is it, like Lexus Nexus. Pretty much anybody that does anything with your data is going to lose it at some point. And so how this all started for me and this is more the person to the computer line is I got one of these scales about three years ago and it's pretty sweet, right? The weight, your body fat, actually my boy Vich right there had one back in college and so it's kind of the inspiration. But so it's a pretty sweet little thing, right? You get an actual concrete number as to what you are pretty much at that point, right? It's not everything you are, but it's a measurable, you know, representation of self. So that's cool. It can give you a snapshot of what you are like at any given time. The more interesting thing is right when you start gathering this data. So for a while I would be like, I weigh like 100 something pounds. You know, I'd hop on like a week later and be like, okay, yeah, I weigh more or less the same but I don't remember what I weighed last time. So I started hanging up this sheet right outside my shower. So now every time I get out of the shower, hop on the scale, you know, it takes like 15 seconds right down the weight and body fat and all this stuff. And it's not like I'm, you know, it's like anorexic, you know, body image guy. But it's just cool that it gathered the data and see what happens. So, you know, here's just some readings from, I guess, way back in the day. And that's turned into, these are like both front and back. It's about two and a half years worth of data that I just haven't even put into a system yet, right? Because I know it's there and it's kind of interesting but I also am either like lazy or doing other things. And so at some point, I'll get around to actually putting that in and analyzing. But even just taking quick looks, right? It's like, oh, I've gained about seven pounds over the last two years and body fat has stayed more or less the same. So I was like, hey, you know, that's not so bad. So once I got on this kick, I started seeing like what other things I could personally measure about myself at any given time. So right now, if you saw me when you walked in, I was kind of like fidgeting with this like brozier kind of thing. But it's this heart rate monitor strap and watch that I have right now. So this big honkin watch is taking my heart rate right now. So it's 115 because I'm kind of walking around a little nervous. And also like altitude, temperature, all this stuff, right? So they market it actually as a personal computer instead of a watch. This thing is a beast. It's not cheap, but it's pretty nasty. And so it can generate some pretty sweet data when you just go do normal everyday things. This is the client software they shipped with it that is pretty sweet. This is me just going for a 20 minute run around my neighborhood, something that I do like fairly frequently and would never capture. Now that I have the hardware to do so, I might as well do it, right? I don't think that anything particularly useful is going to come out of this information, but just the fact that I can capture it is cool to me, so I'll do it. So this is a little, actually I'll give it the next one, a little more interesting just from the altitude side of things. It's cool to see that this thing really works. I can't wait to go take it snowboarding this winter because it'll be pretty sweet. It'll do your vertical speed and everything like that. But you can see how just normal like kind of boring things turn into real computatable data and click around on things. But here, you know, it always takes me a while to actually get out of my apartment and go hit the road, then I run down this hill for a while, run up some stairs. And you can see that the heart stuff is really pretty cool. I think that some more people should look into this body hacking. There's a whole lot of stuff online, but you know, it can be pretty dangerous. It's like overclocking your heart stuff. That's not, you know, particularly safe. But you can see here, right, where I was kind of pushing it from time to time. I think like if you go over 170 beats per minute, you're going to definitely be feeling it. And it's not even that sustainable. So this is stuff that I didn't even like try to slow down. I just had to slow down and take a break. So at one point I think I cracked, it was like 182, like really just pushing myself. I think that, you know, if I were in a little worse shape, it would be a bad idea to be like running all these experiments on my heart just out in the middle of the woods. But, you know, it's really cool just to see, like, you push yourself, you peek, and you're like, man, this thing's pretty sweet. A lot of us in here are big fans of complex systems and everything like that. So, you know, the human body number one is just super, super complex. So you should be really interested in that to begin with. Second of all, like your own, right? This is what you are working with every day, right? And once you're out of there, you're out of there. So it's really interesting to kind of, you know, get some benchmarks on where you are personally and even just track the stuff. I think that if you get enough of it, you can create a pretty good representation of what somebody's life more or less has been like and kind of model out at least some of the, you know, less of these like soft human skills or soft human characteristics. But just the fact like, hey, this guy was here. He was doing this stuff. He weighed this much. It's just really interesting stuff to gather all this data. People that are worried about losing this data, I don't really know why, right? It's terribly uninteresting to almost anybody but me. Maybe my insurance would be interested in this, but even then, I don't know, if anybody can think of some good reasons why my like heart rate might not want to be leaked out. We'll talk in the Q&A. So some of my friends out in Seattle have, you know, kind of come to learn that I'm this weird data gathering kind of guy. So one of my buddies gave me this radiation like gamma detector USB thing, right? So I don't have it with me today because I think that just trying to get on the plane with a lot of these things is a little interesting, right? You have to take off your like heart rate strap and then try to explain the radiation monitor. I think that it's a little strange, right? And we're not even at the best part yet. But so, you know, this is more just like random shit, like who cares, right? This is me waking up in the morning and the radiation level is in my room. I don't know why they dropped down. This is just a 15-minute sample. But, you know, I guess I woke up, brushed my teeth and became less radioactive as the day went on. So, you know, just more cool stuff. It's available and if you think about it from like a world modeling concept, like if you haven't seen the Matrix, go see it several times. And I think that may be where I'm ending up with a lot of this stuff. I'm going to kind of recreate my own mini world and I have like, you know, be playing the Sims with myself. It could be the gyms. And now for the most one part of the talk. And this has been by far the most popular data gathering exercise I've done. But, you know, blood alcohol content, really cool stuff. So this nifty little product here is called the Alko Hawk. It has Do Not Drink and Drive written all over it. Although it says, you know, it comes in this nice little leather handy carrying case. You know, it fits right in the glove box, all this stuff. But you can see that there are a couple different types of people that buy this device. And this is going to be way too small to read. But I did want to squeeze the two types of people joke into my slide somewhere. So the first group, right, it's kind of like these data dorks like me that, you know, they're going to be drinking anyways. They might as well try to gather some data on the fund that they're having and see what they can grab from it. Then we go down one more and we grab some water real quick. Yeah, yeah, just water. I can even blow into the Alko Hawk to show you. And what we're doing here. So this guy, you know, now uses it as a proactive kind of measure. So he got busted once through like a 0.173 or something like this. You know, pretty high. And he's like, now I'm never going to do that again. I got the Alko Hawk to save me. And then towards the very bottom of the spectrum, this is a little bit of a sad story. But these are the Amazon reviews, by the way. This woman is buying her second Alko Hawk because like her husband is an alcoholic and she makes him blow into it every day when he comes home from work. And somehow this thing, you know, fell into the couch and broke. And she's buying her second one. I think I know how it broke the first time. But, you know, it's just interesting to see the spectrum, right? You got like these dorks like me that, you know, drink and blow into devices and then write it down and like, you know, run around the block and see if their heart rate gets affected and stuff. And then you have these people that are using it as like a, I don't know, relationship maintenance gauge or something like that. So let me see here. I think you're all familiar with the XKCD comic as well. This is Bomber's Curve. Yeah, give it up for XKCD. It's pretty sweet. But as you can see, and I've tested this a little bit. I don't think it actually works out too well with me. But, you know, around like 0.1337 is when you're at your maximum programming skill. After that everything just tends to level off. And so like some data here, right? Most people, has anybody ever blown into a breathalyzer? All right, well, it's actually, you know, more than your average, I don't know, population as far as representative samples. So I don't know if that means we have a lot of criminals in the room or just like people with access to cool equipment. But, you know, you never really have an idea as far as what you're actually at until it's potentially too late, right? You shouldn't be drinking and driving anyways. But even, you know, drinking and operating heavy machinery, perhaps, is something that might be a little more tempting to do. So you can see here just some data that I've pulled off my fridge where I keep most of this stuff. You know, a couple of Hanuken, out playing pool, I wait 45 minutes. I come home, I blow 0.027, I believe. And it's like, oh, it's not too bad. And then you try to, you know, some of my friends take this and extrapolate it out so they're like, all right, I can go drink eight beers and drive home. It'll be totally cool. I don't think that's what this is by design for either. And then the, let's see, another time. I was at a Mariners game. I had three beers and I came home and I blew 0.094 and I was like, wow, this is shocking. You know, I didn't feel that bad. So I had to go recreate it, you know, do it again. And it was 0.072 the next time. So there's a lot of variable to be taken into account of too, right? I think, you know, if I eat a sausage instead of a hot dog, I'll lose a little bit. It depends on how hydrated I am that day. All this kind of stuff. Let me see. Coors light's not very high in alcohol content there. You can see that I pound, there's about like a pitcher, a little bit more. And then, you know, just kind of drinking it over the course of the night. Got out there, blew like a 0.08. So, you know, pretty reasonable. And then this last one was when I was really trying to push it a little bit. Some of my friends are having like a competitive drinking game. And, you know, we all drank pretty significantly. And with the intentions of blowing into the alcoholic pretty much by the time we got home, instead, everybody just fell asleep. So this is seven hours later when I woke up. I blew a 0.121. Pretty significant. Pretty significant. So it's also good because, you know, I called my girlfriend and made an ass on myself. But I had the data to back it up to be like, look, I was legitimately very drunk. And she, you know, just makes it a little bit more okay. So, yeah, you know, I haven't really measured myself as far as like drinking beers and going out on an autocrossing course and seeing how many cones I run into or something like that. But this is a coordination, you know, oriented sport here. You know, be it as it may, it's not really that involved. But you can see, this is the morning I woke up with the 0.121. I had a 9 a.m. softball game. And so these are batting average. I think I'm on the right and my friend's on the left. But, you know, we're pretty consistent. I think, you know, you can, there's this whole realm of statistics you can take with baseball and softball. But people are more or less consistent over the course of different games. Yeah, when I was legally drunk, I just couldn't hit the ball. And I think that just comes down to the whole coordination thing. It's pretty cool to see like that. So with that in mind, has anybody been drinking today? And, you know, like we are in Vegas. Yeah? All right. So I have the alcohol with me. And I'm going to actually, so give it away to the highest blower right now. So if I could get like five people, and I'll continue with my talk. And so actually, you can grab some round of there. The one thing that we're going to have to wait for, you need to, maybe like you can't drink a beer and then blow into it, right? Because it's going to contaminate the results. So I guess if you, you don't have a beer in your hand right now, we'll let you blow first. Anybody else? Anybody else? Anybody else who had a really rough night last night wants to test my 0.121? No? And so yeah, I mean this gets to come home with you. All right. So you just got to give it a really deep from the lungs kind of breath. And so I'd wait until this yellow light stops flashing and then give it a go. And so I'll just keep on moving along as people are blowing and then announce the results. Yeah. Give it a shot. All right. Very nice. So 0.023. You know, respectable. Respectable for what is it? Like just afternoon or something like that. Yeah. Give the man a hand, right? All right. You can just grab it. If you don't have a beer in your hand, let you go last if you've seen like the most recent drinker. So this whole thing I'm trying to get out of this, right, is data awareness. Before you never had any idea really, like what you weighed on a day-to-day basis or you were putting on pounds or, you know, what kind of, you know, how drunk you are after a few beers. I think that I've really learned now after this feedback loop, right, you tend to, you know, run around the block and this thing that does my body fat percentage also takes like how much water I have, so how hydrated I am. So I'm at the point now where I can hop on my scale and pretty much know what my body fat and almost weight are going to be when I step on there. So did you press this button? All right, cool. So this is the same now, like whenever I have a couple beers and I'm feeling a little buzzed. I'm like, I wonder what my alcohol level is right now. So last night I actually went out with these two guys. We did some pretty good drinking until about like three in the morning. So at 3.30, I blew a .087. You know, it's pretty respectable for having drank a good amount. And then I didn't hydrate before bed, which is a big mistake. So I woke up at 7 and blew a .02. So, I mean, not crazy, but it would have made my morning a lot more enjoyable had I not been too tired and lazy to actually drink some water. And the water, I'm staying in a circus, circus. Not that good. So, anyways, a little tangent there. So data awareness, right? The fact that I'm aware of this stuff now, right? Just gives me another kind of... What do you got there? Zero. Oh, all right. We have a... Oh, really? All right. Well, you, my friend, are good to go and do anything you want to do. Pop one out. So, yeah, getting back to awareness, right? If you look at where we are right now, right? This is like the anti-awareness capital of the world. All Vegas is really about is just distracting you, like, you know, a bunch of hand-wavy stuff and just taking all the money they possibly can from you. So, you know, some things that point this out. Try to find a clock anywhere near a gaming table. They keep the lights at the same level all the time to trick your body and to think, you know, it's like, what is it, two in the afternoon now? It's really two in the morning and you've been gambling for the last 10 hours. What else is there? The tokenization of your actual cash, right? People have been working for a while to get this notion of, like, I'm working for money. Now, we have another .02. Was the other one .02, three? I think it was, right? So, you got a .0003. And this good thing, I bought the three-digit accuracy model or else we'd have some problems. But, yeah, this abstract tokenization of your money just means, like, you just see it as you're playing a game. You have no real awareness that you're betting, like, you know, your kid's college tuition or something like this instead of just some stupid chips. So, the free drinks are a problem. And, like, you can definitely, I don't know if the pit bosses would let you bring the alcohol to a table or not, but they don't like you talking on the phone. They don't like you, you know, even, like, checking your watch. They don't want you to know what's going on in the outside world. All you should think about is putting your money on the table right now. And then, you know, they'll have, like, these chummy pit bosses, these, you know, scantily-clad waitresses, all to be like, oh, look, we're your friends because you're giving us money, all this stuff. So, moving a little bit from the awareness to kind of, like, the privacy security side of things, which is, what do we got there? Oh, 013, not bad. And then, yeah, this is the last one. I guess you may just have to brush it off. And so, my only request is that this makes it to the TCP IP drinking game at some point, too. Just, or, you know, it should be passed around. And so, yeah, now moving on to, like, data, what you do with this data, this is more stuff that's taking place on the internet, more digital, digital, instead of any of this physical to digital transaction, or, yeah, moving, jumping around. So, talking about data gathering, right, and this goes back to, I talk a little bit about the AOL presence or anything that it'll give status on somebody. You should be able to, if it's a one-time thing and you have access to it, there's nothing stopping you from storing that yourself locally. So, you can potentially have a local database that you maintain of everything all your friends have ever done online and such. What do we got there? Oh, you got to repeat it for some reason. I didn't like it. So, you just got to hold on. I hope you take it down. You got the PBR hat on and everything. I feel like you're the, you know, the favorite. So, yeah, if you can gather all this information on people, it's just pretty cool stuff to do. You know how it'll affect your friendships and everything. I personally don't do this, but it's just interesting to be able to mind what people are doing. So, this harvesting can be pretty expensive, though. You know, if you pull down all this data that people are putting out, we got anything? Oh, one-seven. So, we have a winner right here, my man, the .023. Very nice, very nice. Came out of the gate strong, put up some numbers that held up. I got to say, a little disappointed, though. No legal intoxication at, you know, DEF CON at one in the morning afternoon. But, anyways, back to stuff that actually matters. So, this data harvesting can be expensive and really time consuming. A lot of the kind of big search engines and stuff will do this for you. I think Greg Conti's talk that's going on either next door, I know it's at the same time, so I didn't like the competing with him was a little difficult because we're talking, at least this part of my talk is really similar as far as, like, all this data that's getting piled up on the internet, what's it going to mean to you down the road? So, this quick demo, I actually don't have internet on here, so I'm going to skip over that and just keep talking. But, the best thing you can do, right, is just speak HTTP. Like, write your own clients. So, don't mess with browsers anymore. Just to pull this data if you're interested in it, just speak raw HTTP, parse the HTML, grab what you want out there, and store it. So, social networking has a huge component to all this. There's the hacking social networking talk, which is good, I caught it blackout. But, at least from my perspective, I keep stepping on that cable. You know, there are a couple big players here, and more or less everybody knows what they do already. But, the news feed in Facebook, right, when that first came out, it was a really big deal. A lot of people didn't like it. I saw that, you know, using the news feed, I could see that all my friends were joining these, I hate the news feed groups, and they were learning about them using the news feed. So, it's a little ironic. But, you know, people really hated it at first. The thing is, with any of these kind of invasive technologies, they say, hey, you know, I guess you can opt out of it now and all this stuff. But, at first, they said, if you don't want to have this, then just, you know, get the fuck off Facebook. People liked it too much, and, you know, the users can really be worn down to just accept privacy compromises pretty easily, right? If you just offer enough cool stuff, people will give it up. So, this is like the, you know, candy bar for the password study that gets done every year, and everybody gives it away, or like, you know, the hot girl asks you for your password and you give it to her. I think that, you know, the bar is actually kind of low when it comes to what people will compromise for usability. So, let me see. And I came into the Facebook bank a little on the late side. You know, I graduated 04. I didn't have it because I went to a small school. Sorry, I didn't mean to cough directly into the microphone. But, you know, I feel like I'm an old, crappy guy now when I say kids these days. But, if I go back, and I need to go back to Boston and stuff like that, I hang out with some college kids and they're just totally embracing this, right? Everybody has digital cameras. You go out to a party. Before, you used to be able to do dumb things, and, you know, the legend would live on, as, you know, told by your friends and stuff like that. Now, everybody's going to capture digitally, and it's not going anywhere, right? It's going to be there forever. So, I liken this to the Facebook paparazzi a little bit. Yeah, alright, so that thing's going online somewhere. And I'd actually say hi to my digital audience, on YouTube or whatever, it's getting recorded. But, yeah, so you go to a party now, and you're just trying to have a good time, and everybody's taking pictures of you, and you're like, dude, just cut it out, man. But it's just that, you know, I'm hanging out with these younger kids that are totally used to doing it now, and it's just the way it is. Also, it's added some, I guess, interesting complications to the dating scene in general, right? People always have this problem now. It wasn't existent before about the interrelationship struggle. So, on Facebook, right, you can be single, or it's complicated, and it's always with somebody else, right? So, say you're in a long-term relationship, it ends. Big move, right? It's who's going to set their status a single first. You know, somebody's going to have some feelings about that, like genuinely, which is really interesting, right? Because this is one of those divides where it hops from the digital, or the physical to the digital, and then the digital back to the physical, right? Like, your feelings actually get hurt because somebody changed their relationship status. And also, you get into a new relationship, then, you know, the talk starts coming like, hey, how come you guys aren't in a relationship on Facebook yet? And, you know, then it's kind of like, it's just a little, not exactly uncomfortable. It's funny that this kind of, I don't know, totally abstract representation of what's going on in your life has come to mean so much, and even so commonplace, right, that non-techy nerds will start asking you these questions. My space, I don't know, I guess I do mean to bash them, but they have pretty much more of the same thing. I think that a lot of people on there are actually a lot more willing to just give up all the information you could possibly want. These surveys that go around in the bulletins, they're like, you know, and you know that just on the other side of this, some smart or, I don't know, some marketing guy somewhere, he's just loving it, right? He's just like, oh, just keep giving it to me. Here, just keep sending your stupid surveys around, and I'm just gonna take all this data and either sell it or do something with it. So persistence, how am I doing on time? Is it 1.37 right now? Is it all right? All right, cool. Persistence is more this kind of capturing that I talked about with digital photography will do it. I'm kind of doing it right now and persisting like I'll log my work out I'm getting right now. But also, if I move up and down, my altitude will change a little bit. And it'll be cool that I can even play this along with the stream of the video, right? And you'll see probably when I goofed up, my heart rate went up a little bit. It's just kind of interesting stuff. But the thing with kind of like this whole Web 2.0 and how was it like times, person of the year was you, is that all these kind of nodes are getting connected now, right? So just now, I think like a handful of people have taken pictures of me just on stage, right? So before, maybe you'd get one like corporate photographer who like that was his job to come take one picture of the thing captured in the moment now. Pretty much anybody can do it and does do it. And so you end up with just lots and lots of representations of the same thing. And they're all more or less pretty true, right? Like if somebody photoshopped, you know, like a beer in my hand or something like that, then all these other copies of the same event would work to kind of like bring out the truth. So let me see. Yeah, and so a little Wu-Tang quote here, you got, you know, what's been done can't be undone, son. So if you don't want something to be captured, just don't do it to begin with. But, you know, once the bits are uploaded to the network, you know, in the worst case situation, you know, somebody's spying on your traffic so they got it, your ISP is looking at everything they do, everything you do so they have it. You know, say like Facebook gets it, you're like, oh, that's a horrible picture. I don't want people to see it. You remove the tag that, you know, indicated it was you. I don't know. There's still a lot of residue, at least in their system, your system, just tying it all together, right? So once it happens, it's pretty much happening. If it's been captured digitally, there's no finding it. So everybody knows, right, this is kind of like the time-tested principle, that security through obscurity, horrible idea. I don't think people really thought about privacy through obscurity, right? People are like, I'm going to take all these naked pictures of myself, but I'm just going to put them on my hard drive and that'll be cool. But then you get owned, right? And then they end up all over the internet. So I think that the only way to really guarantee that these kind of breaches don't happen, or even, you know, the case where you post it on, you know, like a lockdown, like Google share, you know, some box you shared, even that will get owned at some point. So if you really think that you can capture something and, you know, keep it from all prying eyes, you're kind of hopeless as my take. So, you know, this is just a real quick, like if you don't, if you want privacy, either, you know, don't do what you are about to do and want to keep private, or, you know, do it, don't tell anybody about it, or do it, tell your friends about it. But you know, the more this information spreads, the more out of your control it's going to be, and, you know, you just end up losing your control over it. I think that jumps into, like, the sex-tabe era, right? I think we're in right now. And so these are Google trend results, and you can see the, you know, omnipresent spikes there, where there's no corresponding news articles, but this is when everybody jumped up to search for, you know, Paris Hilton Online, what do you have? Kim Kardashian, right? Britney Spears' kind of questionable photos there, but so Britney is a little bit different because she was famous first, but everybody else uses kind of like a springboard celebrity. And so I think that it's interesting now. The problem is when everybody starts doing this, it's going to become a lesser, you know, like a lesser of a phenomenon. So people are just going to be like, oh yeah, whatever, here's another sex-tabe out. I don't even care. So it's going to get more and more extreme as we go forward in society, right? I think people just tend to, like, water down there, I don't know, shock system. You start seeing too many things. You become really indifferent to it, and you just need to get one up to a little bit more. So, and this is, here's a dun dun dun. This is what a lot of people are talking about here, is who else is in between these arrows that go between the computer and you. And the answer is, right, there are a lot of people. Let me see what we've got going on here. So a little proactive stuff you can do, I like to call it data elusiveness, is if you need to send something to somebody, right? You say you have some pictures, you want to send them to a friend of yours. A lot of people right now just use web mail, email or anything like that, and when you don't realize it, there's just a lot of residue whenever you use any of these systems. The copy, and this should have been animated, but isn't. So there's you, there's your friend, there's the service over there. It's going to end up on a remotely accessible host somewhere on the internet, probably forever, right? So I think that if you are going to send something to somebody, you should do it on your own terms. It doesn't take that much code to actually write your own little, kind of like Dropbox, host it on one of your boxes, and just go from there. You can even write a client that you give to all your friends, right, that will provide some encryption. So you say, hey, you want to send me a file? Great, here's this program to run. You know, they have to trust you to the point where they'll actually run your code. But you know, run this, it's going to do a lot of, you know, super secret stuff that is going to encrypt it, maybe obfuscate it a little bit, and then dump it directly over an encrypted channel to your box. And so it really ups the level of security in the system. I'm not going to say that it can't be broken, because my whole principle is that we're all kind of hopeless, so just don't do stupid shit. But it will kind of like up the ante where people aren't just going to accidentally get it exposed, right? With the webmail example, a lot of people will use the same passwords all over the place. You log in, you lose it once, then somebody logs into your webmail, they go look at all your history, they see everything you've ever done. It's really kind of devastating if you end up in that situation. So on top of that, right, just use SSL, almost everywhere, right, with this new DNS thing that came out, like that should scare you enough. But everybody, almost everybody now, will offer at least an SSL initial connection to like webmail, not necessarily by default, right, so opt into it if you can. So here's just, this is more probably very difficult to read text, but it does sum up kind of everything I've been getting at, like pretty well. So you have this couple out in Washington, and they ended up getting charged for murder based on the phone history, the text message history that they had exchanged between each other. So I think this first thing, I can't really read it here, but they talked to the police and they said, oh yeah, I didn't send any text messages to this girl, and the girl said, oh yeah, the only thing that I got from him is like an I love you, or something like that. I think this is the, I can't really see it, but the one thing I want to stress, right, is if the government comes to knocking to any of these people that host your data and have the residue, right, they're just going to sell you out like that, because that's pretty much what they have to do. It's in their best interest legally from a business perspective. You don't really want to fight the government. So these guys thought that they could just erase the text messages on their phone, and actually in like a pseudo smart move for murderers, I guess, they sent cover up messages to each other that they left on their phone. So they deleted the old messages, then they started asking questions about the guy that they bumped off, and then they, you know, when they figured that their phones got turned over, they'd have like this kind of like cover up to show to the police. But so the, let me see, phone provider sold them out, right, they ended up going to jail. It was also interesting that the, kind of like one of the basis, they were trying to kick this guy out of the house who they were all living in, but he had some pornographic pictures of the woman stored digitally or something like this, and it was just another thing, right? So they were fighting over control to pictures that she had taken in the first place. You know, if you'd never had the data out there, it never would have led to that problem. So I think like data control is really, really powerful. I don't know, I think people here get it pretty well, but it's just like one of my messages to you, right? Data itself very powerful, and then control the data, and keeping it yours if you can is good. So I'm running out of time a little bit. I talked about this moment in time principle, but some places will show you, like instant messaging platforms, for example, they'll show you somebody's current status, but they won't go back and show you every status that they've ever set in their whole life. So this is where it comes down to you just grabbing it if you want to, and maintaining a database locally. Personamies, you can check it out. I think just Google that. But, you know, they're the digital representations of self, so a lot of people will have to do a lot of monitoring on what their digital footprint actually is, right? So me giving this talk, probably going to up some Google results somewhere, they're going to tie me to DeathCon. Although Jim O'Leary, very popular name, and you know, kind of just, you get usually a bunch of just white Irish guys of which I am one. So, let me see. But you know, it'll just add a little bit to it, only in my just being here and having some web presence. So data analysis is where it gets really interesting. This is where I'll host more stuff online, and I'll say it at the end, but I should say it right now. It'll be on, it's in the slides too, but like dl.jimeo is jimio.com, and then slash d-c-o-f for DeathCon. I'll probably link it up, but this is where you can actually find some code on some fun things you can do with data. So, and I would demo these, but it's more interesting actually to look at the code and look at the data sets. So, this first thing, I called it kind of BrotherGeta, and I dropped this phrase, you know, this is like a pretty common cliche. I was looking for a code review or something at work. I was like, oh, kind of BrotherGeta code review, and I was like, oh, that's kind of funny. I wonder what else a brother may like. So, I wrote something that would just, you know, pin Google looking for that phrase and extract all the results. It's really pretty interesting. So, I'll put a link up to that, and the code's pretty cool. This is for unlawful kernel knowledge. I'm a little bit interested in extracting, not so much meaning, but a lot of, like, inadvertent things out of data sets too. So, this guy, and the code, again, is interesting, and it gets a little bit long, but it'll parse news articles looking for instances where, let me think here. So, if you take the first letter of every word in the article and put them all together, it'll look for instances of swear words. So, for unlawful kernel knowledge, bam. So, that's a little interesting, just because people will drop things in there. Also interesting is the inadvertent haiku finder. So, the same thing. It works on these articles. It has a big back-end database for not really natural language processing. NLP is misused right there, but correlating one piece of data to the words, and then it looks for people that accidentally wrote haikus in their articles. It's pretty cool stuff. And so, the links will be online for the code and the actual applications. But, you know, it's just totally useless, right? Who's actually gonna do anything cool with that? But interesting. So, lastly, and this goes back to my first point where I'm just gathering all this data. What do you do when you have all of it, this physical to digital representation? I think you can do some really, really sweet modeling as far as, you know, what happens if I go back in time and make this decision instead of the other one. I don't think we're there yet as far as, like, gathering all the data and even being able to project enough. But I think it's kind of cool stuff. And also, going back in time, right, I bet most people in here maybe will blog or at least have something that they keep up to date online to react to events that are taking place in the world. So, if you look back to something like, you know, Diary of Anne Frank, we got lucky we found one person's reaction to, like, you know, a horrible situation. But even the fact that we found, like, one thing was really cool. Now that we have everybody blogging, you go back, you look at something like just the net activity on September 11th that really just captures something that is going to be super interesting to future generations, right? Like, we're just putting so much of what's going on in the real world into the digital world. And I think as long as we can keep it, which a lot of the kind of privacy people kind of poo poo on, but I think it's going to be there anyways because once it's out there, it's out there, if you can keep it, you can just go back and, you know, get a real good sense of, like, what was going on, how people felt about it. It's really cool stuff. So, yeah, so, you know, just wrapping it up a little bit, the forecasting targeting stuff is what you want to do when you get all this data pulled in providing you do it correctly. You can get a lot of benefit out of it. And I think, you know, a lot of people are anti-marketing, anti-advertising, but I actually don't mind it if it's actually targeted to me as something that I'm legitimately interested in. So, I don't mind kind of giving up some of the information in exchange for, like, better results. So, with that, I think I'm running out of time. We'll give this guy his alcohock, which he, you know, won Farron Square and give you the box with this handy little leather case. And then I think that's it. I'm going to end up in a Q&A room somewhere. So, thanks for your time. And, yeah, log everything you possibly can. Thanks.