Are universities locking down their PCs? :: The Future of the Internet

Are universities locking down their PCs?

March 24th, 2009 | by jz | Published in Generativity, university | 5 Comments

I’ve agreed to be a guest blogger for a little while at the Chronicle of Higher Education. I’ll plan to cross-post here and there. My opening question:

I’ve recently written a book about the Future of the Internet (the
paperback version comes out this week). The argument it makes has a lot
of moving pieces. One of the first is that the global network we use
offers a fabulous (and by no means necessary) sort of openness, a
“generative” quality that has allowed innovation from many corners and
from people with nicely varying motivations. So too what has
traditionally been the most common device attached to it: the personal
computer. Give a PC code and it will run the code. This basic fact –
so easy to take for granted — is part of what allowed the Internet
revolution. It meant, for example, that academics could write the first
Web browsers without having to persuade some skeptical gatekeeper of
their virtues. (Compare with thinking of a new feature you think would
work well on, say, an Amazon Kindle. Send in a comment card?)

But this openness also creates a special kind of vulnerability,
especially as a generative system goes mainstream. Lots of people have
PCs without knowing the first thing about the code running on them. Run
the wrong code and your machine is hijacked — a zombie that can attack
others, disgorge its owner’s personal data, or self-destruct. And
running code is as simple as a few clicks on or near an icon somewhere
on a Web page.

Without a good defense strategy — one that tries to preserve the core
openness of the Net while still meeting the threat — we’ll see bad
defense strategies. This is especially so if a worm like the
currently-circulating “Conficker” decides to wreak havoc on the millions
of machines it has compromised (and which silently await further
instructions), and people panic. One of those bad (but still
rational) strategies is to lock down the PC or abandon it entirely in
favor of locked-down information appliances like Kindle, or hybrid
devices like the iPhone — which allow outside code but only with the
approval of the platform vendor. We see this in many corporate
environments, K-12 computer labs, libraries, and cyber cafes: PCs that
can only run the software pre-installed by the IT department. If Skype
isn’t already there, you can’t get it up and running. Many places even
have Internet or Web filters: certain sites are placed off-limits.

So I’m curious: how much have university environments, normally more
freewheeling, either thanks to ideological commitment or because a lack
of funding makes it hard to hire an obsessive-compulsive IT staff,
started to lock themselves down? From where you stand (well, type), are
you able to install whatever you want and answer to no one for it?

Responses

Feed

Scott MacLeod says:

March 24th, 2009 at 5:47 pm (#)

Here’s the nascent World University and School Wiki – http://worlduniversity.wikia.com/wiki/World_University – a global, virtual/digital, open, free, {potentially degree- and credit-granting}, multilingual university & school
where anyone can teach or take a class or course. It’s designed in an open way: add a course or take a course. It’s like Wikipedia with MIT Open Course Ware, potentially in all languages and subjects, and for the developing world (OLPC countries, first) and everyone.
Beth says:

March 24th, 2009 at 7:19 pm (#)

Here at Oxford, the level of freedom seems to depend on who and where you are. You’re responsible for your own computer, but are expected to have up-to-date anti-virus (expected = the IT staff threaten to eat you, toes first, if you unleash anything onto their network).

Computers that are owned by the Colleges/Departments, though, are usually pretty tightly locked down, in my experience. Installing anything new is a no-go without permission, and there are more or less strict web filters to block out, *ahem*, certain types of content. In some Colleges, these web filters extend to personal computers on the College network. There have also been blanket bans on things like Skype and iPlayer in many places. I think p2p is pretty comprehensively disallowed.

You can kinda see the point, though. The average student/academic is very unlikely to know what they’re doing. I can just see some old Classics don thinking that a “Trojan Horse” would be a simply marvellous thing to have on his PC…
Matthias Bärwolff says:

March 25th, 2009 at 6:35 am (#)

At MIT, so I am told, you’ll be thrown off the net should your Windows system not have the latest security patches — very reasonable. No issues with Linux systems that I know of. Plus, completely non-discriminatory wireless access for all visitors at CSAIL (save those unpatched Windows boxes).

What is an PC, open or not, good for if you cannot access the internet without cumbersome registration? This is not so much a philosophical but a purely practical question. E.g., an outsider attending a talk at Berkman will by default not have free wireless access for his laptop whereas museums, etc. do. (Heck, even the MBTA commuter rail has free wireless.)
Andrew Martin says:

March 25th, 2009 at 5:52 pm (#)

Yes, I don’t see many locked-down PCs around Oxford. But it is very evident that the network is profoundly locked down in places. I have argued on the IT support list that if, say, Larry Page and Sergey Brin had been Oxford students, Google would have been strangled at birth. There’s no way you could shift through an Oxford college the sort of data they were putting through their dorm – without a summons to visit the Dean.

I think this is much more problematic than any rise of tethered or locked-down devices.

On the other hand, universities are in microcosm a picture of the challenge of engineering a right kind of Internet. Campus networks often embody net neutrality, despite carrying everything from IPTV to the student’s bedroom, super-valuable intellectual property from some science labs, finance and personnel data, voice, massive (multi-terabyte or larger) data sets for analysis, and so on. Doing that with good performance and adequate security is a significant engineering challenge. My strong expectation is that campus managers will start to segment networks sometime pretty soon.
Seth Finkelstein says:

March 26th, 2009 at 5:54 am (#)

The answer is going to be “it depends”. Places with an experienced and skilled staff (e.g. MIT, Stanford) are likely to be much more open than others.

This whole debate was gone around in great detail more than a decade ago when the Internet and computers first became common in universities. Go talk to Carl Kadie, who ran the “Computers and Academic Freedom” mailing list back then, if you’re really interested. He collected policies, reports, recommendations, etc.

Blog

Dropbox Ran Afoul of Apple’s App Store Review Guidelines: So What?

Last week, a number of developers reported that Apple was rejecting iOS applications that used Dropbox, a popular cloud file storage and backup system. An initial thread on the Dropbox developers’ forum has led to a outpouring of tech news full of hyperbolic claims. However, none of this reporting has covered the real problem – Apple is now more concerned about protecting its business model than serving its users or its developers. Read more »

Help pioneer Casebook: The Next Generation

We at the H2O project are seeking a full-time Project Manager. H2O is an online platform for textbook development and distribution, currently in a pilot stage. H2O is based on the open source model – instead of locking down materials in formalized textbooks, we believe that course books can be free (as in free speech) for everyone to access and, equally important, build upon.

Using H2O, professors can freely pull together materials for a course by selecting cases, editing those cases to the sections that are most relevant, and grouping them into readings. Once the materials are assembled, they can be copied in part or in whole by other interested faculty and then edited further. H2O has been successfully piloted in JZ’s 1L Torts class, and will be rolling out further over the coming year.

H2O’s project manager will play a leading role in shepherding H2O into its next phase, which will focus on developing new materials and incorporating additional features, in order to expand the platform beyond its law school roots.

H2O is a joint project of the Berkman Center for Internet & Society and the Harvard Law School library. The Project Manager will be housed at the HLS Library and work in close collaboration with lead members of the Library Innovation Lab team; he/she will also work closely with the Berkman Center and current H2O teams. More info and job posting here.

Meme patrol: “When something online is free, you’re not the customer, you’re the product.”

I participated in the Berkman Center’s fascinating HyperPublic symposium in the summer of 2011. When moderating a panel I invoked the aphorism that “When something online is free, you’re not the customer, you’re the product.” It’s a way of encapsulating the idea that online free services usually make money by extracting lots of data from users — and then selling that data, or using it for targeted availability of those users for advertising, to advertisers. In that sense, the advertisers are the clients, and the users enjoying free content are what’s being sold. (Of course, sometimes that happens even when the user pays.)

I didn’t coin the phrase, and since it was featured (and attributed to me!) in wordsmith.org’s wildly popular “word a day” as a thought for the day accompanying the word “enceinte” — I sought to nail down its provenance.

The first use of the quote that we can find is as a comment within the famed MetaFilter community in August 2010. The user’s name is blue_beetle, who might be someone named Andrew Lewis. It’s entirely possible I saw it there, as MeFi is one of my five favorite sites on the Web.

Similar sentiments (whether drawn from that source or independently invented) have been expressed by Bruce Schneier in October 2010 and by Douglas Rushkoff in September ’11.

The phrase “you’re the product” also apparently appeared in a 1986 speech by President Reagan about the drug war.

Just say know.

–KA and JZ

OS X Mountain Lion and Gatekeeper

This week, Apple announced that it was moving to a new, faster OS X operating system development cycle, starting with the release of Mountain Lion next summer. It previewed a number of features for the OS, and released some parts in beta.

Mountain Lion is slated to include a feature called Gatekeeper as part of the security and privacy settings. Gatekeeper allows administrators (those with full privileges on a Mac) to limit the applications that can run on the Mac. They can choose among allowing apps downloaded from the Mac App Store only, or apps from outside the Store so long as they are digitally signed to Apple’s satisfaction by their developers, or apps from anywhere. (The latter has been the way both Mac and Windows PCs have worked, for better or worse, since the introduction of the Apple II in 1977.) Read more »

GPS-based Insurance Rates: The Devil is in the (Data) Details

A British insurance company called Motaquote has teamed up with TomTom, the GPS manufacturer to offer insurance prices based on data gathered by GPS. Fair Pay Insurance, Motaquote’s new program, is an opt-in insurance pricing scheme where drivers will get a free GPS unit in return for potentially lower (but possibly higher) premiums. The GPS unit will provide all the traditional navigational services as well as warn drivers when they corner too sharply or brake too hard. Read more »

About Jonathan Zittrain

Jonathan Zittrain is Professor of Law at Harvard Law School and co-founder of the Berkman Center for Internet and Society at Harvard Law School

Tweets from Z

An error has occurred; the feed is probably down. Try again later.