SAY MY NAME – Cisco Live 2017

Sources are telling me that Bryan Cranston will be the guest celebrity keynote at Cisco Live 2017 – #CLUS

Bryan_Cranston_a_l_0

Bryan Cranston won the Primetime Emmy Award for Outstanding Lead Actor four times, three in a row.  Once he was a producer he also won Outstanding Drama Series.   Growing up in California, acting was natural to Bryan.  During his early career he did it the hard way, commercials, and small productions until landing larger roles in Saving Private Ryan, Seinfeld, King of Queens and then of course Malcolm in the Middle and Breaking Bad.   Now a six episode half-hour series called “The Dangerous Book for Boys” a new comedy series from Bryan Cranston has been picked up by Amazon.

Last year we were thrilled to listen to Kevin Spacey talk about how technology had revolutionized the TV and Movie industry with Netflix now becoming a content creator, how he traveled through space and time creating an amazing career.   Now with 3D immersion the game will change again, and if I had to guess Kevin Spacey will be at the forefront.

This year, Bryan Cranston will take to the stage and talk about….  We have no idea, but I know this, it is sure to be an amazing talk.   I personally hope to hear about his life, and career along with his thoughts about disruptive technology in the business.

 

 

Advertisements

Ford Finally Delivers CarPlay to 2016 Customers – almost a year late

It has finally been posted to owner.ford.com

After almost a one year delay (It was promised Summer 2016 to customers) Ford has finally provided the Sync 2.2 update on their website and officially offered it to customers.

Keep in mind 2017 owners, with the same devices all had 2.2 from the factory in some areas in July of 2016,  and many other owners who were willing to install software from the internet, had it as early as December.  So why the 6-8 month lag for people who were promised this the day they purchased their vehicles they will never know.

Many customers have said this is their last Ford,  many people have even sold their Ford vehicles over this – yes that sounds crazy.

Justin’s opinion…

What bothers me the most, is that Ford has been touting themselves as a technology company, being the first car manufacturer to ever present at CES, to the first with major technology like Sync.     If your intention is to be the “Apple” of the car industry, it seems to me that it started out well, but they are ending up with promises with limited delivery.   Perhaps they are finding out what being a technology company is all about, it isn’t as easy as they thought.

Sync 2 running on Windows was an absolute and abysmal failure with tons of performance related problem, app issues and integration problems for third parties.   Giving up on Windows and going to QNX fixed the performance problems, but now on a more realtime embedded type operating system, Ford is struggling to keep up with feature releases like this.

Either Ford figures out how to take their place back a the top of the technological automaker spot in the industry – or someone will surpass them, and it might very well be the likes of Apple, Google or even Tesla.

 

now22

 

Ford still not delivering CarPlay to 2016 vehicles

It is funny when you write a blog post – and it becomes strangely popular.   This is a tech blog, but I toss in some occasional rants, or rally type stuff about thing going on around me.

I’m going to help you FIX this if you own at least a Ford F-Series….

To give you an idea of what I am talking about, and why it confuses me so…  In 2017 here are the top posts on my site.  As of 4/22/2017 when I wrote this.

Ford Promises CarPlay – Fails to Deliver – 4967 unique views

Cisco Spark Board – Innovation In Collaboration – 2108 Views

stats

I’m horrible at web sites, and at SEO, but I guess sometimes the SEO bit starts to work properly, because my Ford Promises CarPlay blog is by far the most popular thing around here.    With that in mind, everyone is finding their way here because of the issue, so let me try and help out.

First – go to your dealer and try and get the upgrade, that is the legal, non warranty voiding method, if you do not want to wait anymore – proceed with the understanding this is at your own risk.

There are 2 scenarios you are in

 

You own a 2016 Ford with Sync 3 Version 2 – but CarPlay does not work

The good news is, this is very easy to fix.   The issue was that when these vheicles shipped, Ford was not shipping a “CarPlay” compatible USB Hub, the Sync unit has 1 USB output which goes down to a hub in the dash that you plug into.

Once you update to the correct USB Hub – CarPlay will just work for you.  So what do you need to do?

Goto Ford, and get the correct hub, I don’t know the part number for every car, if you look online the various car forums can probably help you – OR – you can simply go and ask for a replacement USB hub for a 2017 model of your car.

For the 2016 Ford F-150 here is the model number you need.    The parts guy might give you a hard time, tell him it’s for a 2017 Ford F-150 Lariat, tell him you don’t have a VIN, and that’s the part number, if he says “IF this is the wrong part it is your fault” — just say “Yep i’m fine with it”  it shouldn’t cost you more than $100

GJ7Z-19A387-B (WHITE BACKLIGHTING)
HC3Z-19A387-B (BLUE BACKLIGHTING)

Here is a video showing how to do it…  Thanks to that user for posting.

 

You own a 2016 Ford with Sync 3 – and your version is not 2.0 or higher

This is where things get a little more complicated.     First you need to do the step above for those who have 2.0 or higher, so stop now, and go order that part, when you are done, come back.

Ford seems to not want to send out the upgrade from 1.0 to 2.0 – that is the problem here – yes the issue is some kind of software issue, which we don’t know why because the rest of us who are willing to play with our vehicles, have been running CarPlay for — 4 months at this point.

Now that you have the new hub, you need to search online for the specific Sync 3 2.0 upgrade package, you put it on a USB key, and plug it in, and the upgrade procedure starts.    I am not providing links to that software, that would probably break all kinds of laws – if you are willing to take the chance, I am sure you can find it.   WARNING:  It is very easy to use the WRONG upgrade file, ensure you are using the correct file, for NAV vs NON-NAV models (no you can’t upgrade to free NAV) .

Here is a video of someone doing it on a Ford Focus RS

Cisco Live – 2017 – CAE Headliner and Inside Scoop

I have received the inside scoop on #CLUS – Cisco Live 2017…   Here is the things you want to know.   First CLICK HERE to get details on the event.

CAE HEADLINER

Bruno Mars

brunomars

What more is there to say, five Grammy awards, six number one singles, and multiple songs on the top 10 at the same time.    Bottom line you can expect a serious line up of amazing entertainment!

For details on the CAE, click HERE.

Social Media Contests

There are a ton of contests this year, best tweet, best photo, most engagement, the bottom line is, share and share alike.   Get social, even if you are not at the event, there are Amazon Gift Cards up for grabs.

All New Floor Plan

This year, Cisco Live is mixing it up, with previous years the DevNET zone, Cisco Store and World of Solutions were spread out across a pretty great distance – this year, no more.  An all new layout integrates the DevNET zone into the World of Solutions floor and an all new Industries and IoT Village.

Selected as NFD 15 Delegate

Last year I was pleased to be selected for Networking Field Day 12 in Silicon Valley.   This event was amazing, and I was able to learn and publish tons of great information from some big companies in Silicon Valley.   Everyone from the big guys like Intel, to smaller startups like Teridion, Kentik and Nyansa.    Even a few presentations that made my brain bleed like those from Brocade.

For me the Networking Field Day events are about collaborating with amazing people, it is about working with some of the best people in the industry.  Learning and interacting with the up and coming tech companies and keeping myself ahead of the technology curve.

For me the huge take away from that event was that SD-Networking is not coming, it is here.   Innovations in microsegmentation from the likes of Illumio.  New ways of thinking about networks and applications from companies like ThousandEyes.

What is cool about Networking Field Day is – while I have been selected as a delegate, everyone can participate, the event is as interactive (or more so) than Cisco Live, you can virtually attend as a virtual or community contributor.   Every event is live streamed, you can send in your questions on twitter, and I promise you, someone WILL ask it.

So head over HERE to check out who and what will be happening at Networking Field Day 15, April 6-7.  As of this writing we have ipInfusion and TelioIP presenting but more will be announced soon.

Live video links will be posted on the Networking Field Day page, and my page, and on twitter during the event, so grab that extra monitor and a pair of headphones and join in on the action – besides, it’s FREE!

Vault7 Lessons – Zero Trust

Zero Day Exploits,  0-Day,   custom malware, tailored malware,  infected humans.   All things we have no way to protect against using signatures.

Signatures have been our life in security for a long time.  Virus update packs, signature updates.   Vendors like Cisco even helped build complex and expensive security reach task forces like TALOS – amassing over 250+ researchers who look for new malware, take it apart and then build protection against it – in almost real time.   This means we are reasonably well protected from things we know about

I still wash my hands

What?   That is because I don’t trust licking my palms when they are not clean.  If I trusted that I had all of the immunizations and that new “flu” vaccine gave me everything I needed – I could run around never washing my hands, but we all know that the flu vaccine only covers last years and SOME of what is coming.

Then why are firewall IPS signatures, and virus signatures enough for many corporations and end users?

Trust No-One

Sorry boss, but there’s only two men I trust. One of them’s me. The other’s not you.”  – Cameron Poe (Character in Con-Air played by Nicholas Cage)

Anyone that knows me, knows I tend to use movie quotes a lot.   Customers look at me funny when I say something similar.   Trust nobody,  don’t even trust me.   Every person, machine or connected object could become ‘Weaponized’.    The minute you start trusting you are opening the door.   We all lock our front doors, but we do not lock our interior doors,  but if you found out someone else MIGHT be running around with a universal set of keys – you might start locking that bedroom, and maybe do it with a different kind of lock so that the person with the universal key has a harder time.  So why do we rely on traditional firewalls so much and then leave our interior networks wide open?

Vault7 – Wikileaks

The latest release from the team at Wikileaks proves the need for Zero-Trust models.    If the CIA was accessing vulnerabilities that were not publicly known,  that means hackers and bad actors in your networks could be using them as well.    The CIA is very well funded, and this release provides a glimse into how well organized and funded they are.    I want to be clear, this isn’t a negative comment towards the CIA, in actual fact I would have been surprised if they were NOT doing everything they could to protect the country.

This is a very good glimpse into the inside of an organized cyber activity program, and what we need to learn from this is – zero-trust or bust.

There is a small silver lining to such a leak – this view into an organized and well funded cyber program and the tools, tactics, and methods they used will help organizations learn about how to protect themselves.   Not that we didn’t know much of this before, but this will help harden and strengthen networks as a whole.    A wake up call, a chance to learn and a chance to realize that when they are well funded (which organized crime organizations are) they can mount cyber campaigns of significant complexity and capability.

Bad Actors Are Everywhere

Do not think for a second others around the globe are not doing the exact same thing,  foreign governments and organized crime are very much involved in these types of activities as well – it is just that in this case Wikileaks is calling out the CIA because that is the leak data they received.    We can learn from this, we can become a more security information technology industry

Zero Trust Design

A new world of security products has started to emerge in recent times, and new design philosophies are being suggested, but it does require a paradigm shift in thinking, and the realization that security will start to impact users day to day lives a bit.    No different than when seatbelts became mandatory.

Encryption In The Way

On a recent podcast (Cisco Champion Radio) Peter Jones from the Cisco Catalyst team tossed out this quote (sorry I do not have the original writers name) “The days of scratch and sniff on packets is over”.   Everything is encrypted.   Google requires any site with a login to be HTTPS by Jan 2017 otherwise you are flagged, and the majority of network traffic is encrypted.

That means technologies like NBAR and other deep packet inspection – DPI technologies are going to cease to function, which makes managing our networks more difficult.

Technologies like TOR allow telescoping encryption tunnels to anonymize traffic as it flows across transport networks, DPI is useless there.

Network-As-A-Sensor / Enforcer

Technologies like Cisco StealthWatch (previously LanCope) provide analysis of NetFlow data, which does not require payload to detect network traffic, scanning for deviations in standard network traffic and then providing analysis.

Tetration collects network flows and then build connectivity patterns looking for deviations from baselines, similar to StealthWatch but has a component of unsupervised machine learning.

MicroSegmentation

Cisco ACI operates under the guides of micro segmentation between object groups in the data centre, locking down interactions (assuming you implement it correctly) between objects in the network.  The way I explain ACI to my clients is simple – the network is turned on it’s head from “trust everything” (in a typical switch/router arrangement) to “Trust Nothing) where every interaction requires a rule (or Contract)

Then we have break out companies like Illumio who are thinking a little different, in their mind each system already has great security technologies, and without changing the network at all they orchestrate the packet protection engines within the operating system to provide Micro Segmentation.  Great content on Illumio can be found on Tech Field Day 12 – Click Here for that.

Final Thoughts – What Does This Mean?

This should be a wake-up call – stop thinking traditionally, start realizing the threats are out there.  Realize that security exploits are spending years in the wild without detection and that ZERO TRUST is the only model that matters anymore.   Do not rely on signatures and definitions to protect you.   A layered approach to security is your only defense against a growing world of threats, but firewalls and intrusion prevention is no longer good enough.   You need a strategy, and a plan to protect yourself because it is not a matter of if, it will be when – and you better be ready to respond.

Trust No-One.