Live Mesh – initial thoughts

Experimenting with the tech preview of Live Mesh was a curious experience – my first reaction was a mixture of “that’s cool!” and “so what?” – the kind of private techie moment where you do something pointless but technically impressive. So I ended up remotely controlling the laptop on my right from the netbook on my left and filmed it and er… blogged it and er…. so what?

Well the “what” isn’t very developed yet, but the thing that really jumps out at you (and the reason I sound a bit, surprised, in the vid) is how easy it is – this is consumer grade technology. Give a 7 year old a Windows Live id and administrative permissions over their equipment and they’d have it meshed in about 10 minutes per device – *that* easy – you just keep clicking “ok” until it works.

So I’ve got my Mesh now – big deal. What can I do with it? Well, I can connect into my work PC from anywhere and sync any files that I have access to on my local desktop to anywhere. As an experiment I logged into my work machine via the Mesh, browsed to a network location that contains the most confidential files I have access to (network config stuff) and tried to sync it – no go: the server they’re hosted on isn’t part of my Mesh. So I copied the folder down to my desktop (Mesh has allowed me to log-on authenticated to the domain) – right clicked, and bingo.

Cool – I work remotely, I can never know when I might need this information so I’ll add it to my Mesh, problem solved! Except. I set up the EeePC that’s part of my Mesh in a rush. It’s like my personal machine isn’t it – not connected to the domain, so……. I didn’t set a password on it ;) Boot it up – hit return and you’re in (not now of course, but you get my drift).

In security terms I think of this as “leakage” – there’s no intention to distribute the information outside it’s proper audience, it just ends up in places where it’s no longer protected by the mechanisms that we put in place to keep it restricted – and once it’s “free” of those restrictions you’re just trusting in luck to keep it safe.

Of course this isn’t new – pod slurping – usb keys – staff taking home or printing out confidentially supplied information all produce the same potential for leakage, but it seems to me that Live Mesh raises the bar a bit and challenges what I’ve always thought of as a security principle, which is:

“if remote access becomes trivial, then local access controls become meaningless”

These are initial thoughts because I’m still trying to understand the pragmatic utility of Live Mesh in a Cloud based world. I can see that it’s Groove v2 – but I never “got” Groove. I can see that as a domestic technology it will make it easy for people with Windows Live ID’s to share files in “private” (but why wouldn’t you just put your pictures on flickr?) and I can see people having fun with remote access “just because they can” but apart from that?

Bottom line is that I think it’s toxic to Microsoft’s enterprise security model – if there is anything that is going to convince you that storing precious information in a stand alone file format that can be copied willy-nilly around the globe is a bad idea, it ought to be this. Put your *secrets* in a safe place – and that safe place is the Cloud, not the Mesh.

Advertisements

6 thoughts on “Live Mesh – initial thoughts

  1. martinking August 3, 2008 / 6:20 pm

    Thought provoking stuff.

    Micorsoft Mesh doesn’t “click” with me either – it’s a client server use of the cloud – the cloud relegated to a giant file store and in Microsoft’s world this keeps the focus on the client.

    I’ve never liked the idea of synchronising my files – I’ve always kept one copy on the network share and relied upon being on-line to get it (keeping just a few emergency files local on one machine).

    I’m sure Mesh is out of Ray Ozzie (Grove 2.0 as you call it) but I think (hope) from what I have read that Ozzie has “got” the cloud now but they have to play catch up.

    The Mesh is probably a compromise and result of internal politics in Microsoft – you can imagine the sort of meeting between teh Cloudies and the Office stalwarts.

    I suppose Mesh will have it’s place (or niche) with those comfortable with it.

    Security – ohhh scary implications

  2. rdsc August 4, 2008 / 12:15 am

    It’s a P2P model isn’t it, very retro indeed? I’m confused.

    Google want us to make stuff in the cloud and save it (gears) to our devices – and MS want us to make stuff on our devices (office) and save it in the cloud/mesh. So, the question that’s taxing me is at what point should security credentials be applied. Network access – or file access? I think file access.

  3. Codie June 27, 2010 / 8:16 pm

    So I’ve got my Mesh now – big deal. What can I do with it? Well, I can connect into my work PC from anywhere and sync any files that I have access to on my local desktop to anywhere. As an experiment I logged into my work machine via the Mesh, browsed to a network location that contains the most confidential files I have access to (network config stuff) and tried to sync it – no go: the server they’re hosted on isn’t part of my Mesh. So I copied the folder down to my desktop (Mesh has allowed me to log-on authenticated to the domain) – right clicked, and bingo.
    +1

  4. citroen February 28, 2013 / 10:37 pm

    Heya are using WordPress for your blog platform? I’m new to the blog world but I’m trying to get started and create my own.
    Do you need any html coding knowledge to make your own blog?
    Any help would be really appreciated!

  5. Bebek Örgü Modelleri June 14, 2013 / 4:48 am

    What i do not realize is actually how you’re not really much more well-appreciated than you may be right now. You’re very intelligent.
    You understand therefore significantly in the case
    of this matter, produced me in my view imagine it from numerous various angles.

    Its like men and women aren’t interested except it is one thing to do with Lady gaga! Your individual stuffs excellent. At all times deal with it up!

  6. Emmanuel July 26, 2013 / 8:40 pm

    I got this site from my buddy who told me on the topic of this website and now this time I am visiting this web page and reading very informative
    articles or reviews at this time.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s