Shell's TechBlabber

…ShelLuser blogs about stuff ;)

How open are ‘open standards’ exactly?

VP_EAs you may (or may not) know I’m quite passionate about so called modeling languages; modeling standards which are often used within the field of software design. Some languages which I use on a regular basis are UML, BPMN, ERD and some diagrams which are specific for my modeling tool of choice: Visual Paradigm.

This week marks a bit of a milestone for me because quite recently I gained access to the Enterprise edition of Visual Paradigm which introduced me to Enterprise Architecture.

Although I was already roughly familiar with the concepts I never really followed up on those because I didn’t see the need. But now that I can get hands-on experience with Enterprise modeling languages and frameworks such as ArchiMate, TOGAF and BMM I figured I should do some research. ArchiMate for example is described as an “open and independant enterprise architecture modeling language”. It’s even developed by the ‘Open Group’ so surely this is as open and transparent as it gets, right? Well… maybe not.

Continue reading

Advertisements

June 21, 2018 Posted by | Editorial, Visual Paradigm | , , , , , , | Leave a comment

Computer security is NOT a product

At the time of writing I can’t access one of my favorite tech fora, which is the FreeBSD forum, because their certificate has expired. Seems somewhat sloppy indeed. However, what really upset me here was learning how my browser of choice (Opera) was now treating me like some sort of idiot.

It refused to give me access to the website because it deemed it “not private”. Which is not necessarily true because even an expired certificate can still be used for setting up an encrypted connection. But because the website opted for “HSTS” (which stands for HTTPS Strict Transport Security) it is impossible to access it anymore because most major browsers have opted to remove the feature which allows us to override this.

Which I think is utterly stupid. In fact: I think this nonsense can easily have the opposite effect of what was intended. I believe we’re in a period where many people seem to have a complete misconception about what security actually is and how it is achieved and maintained.

Continue reading

June 15, 2018 Posted by | Editorial, InterNet, Security | , , , | Comments Off on Computer security is NOT a product