I hope you’re able to follow the metaphor I’ve created, as I don’t think I can devise another way to repeat what I just said above.
Frequent readers may be aware of the fact that I have not been too kind to Opera in the past. Typically, these tussles have dealt with how they’ve handled conflicts with certain competitors. Today, it’s a different story.
I own an iPhone, a device that comes pre-installed with Mobile Safari. Safari is a great modern browser that renders most (non-Flash) websites beautifully and accurately. And when I’ve got a decently strong connection, it even does it in a time-frame approaching (but not reaching) quickly.
The fact is however that my phone’s provider is AT&T. And when I’m at home, my WiFi access is through Comcast. Despite their many bold claims and lovely commercials stating otherwise, neither vendor provides what I’m going to refer to as a fast connection. Quite the opposite, I’m positive that there are several times in any given day where a 28.8k modem would more quickly deliver me the information I am seeking to consume.
Tell me, why as a society is it acceptable to charge people for a speed that they might, but usually won’t, receive from any given service, rather than the speed that they actually are receiving?
Regardless, these modern day robber barons aren’t making my service any better anytime sooner, so experiencing the web through Safari on my iPhone is similar to experiencing a milkshake through one of those really tiny coffee stirring straws. Yes, sooner or later you’ll get the shake, but it’s not exactly at a speed that’s enjoyable.
This is where Opera Mini comes in. Yes, it’s a less-capable browser in the rendering sense. But if I want to wait for a minute or longer per page, I can certainly do so for my rounded corners. Usually when I’m on a mobile browser, I want data quickly. Very quickly. So Opera Mini serves me just fine. Better than fine, in fact. It’s very fast. Which makes surfing the web effortless again. Which I dare say is how it is supposed to feel.
A few days back, I made the following pro-Mini tweet: “Speed matters. Especially on mobile. And that is exactly why I’m using Opera Mini more than Safari, despite the rendering deficiencies.”
Ben Adida offered the following question as a counter: “Does privacy matter? Cause Opera Mini proxies all of your connections, even SSL, via its servers.” It’s a valid question, especially considering his expertise in the field of privacy and security. Not being an expert on how Opera does things, I poked at both Bruce Lawson and Molly Holzschlag, both Opera employees.
Both of them said “If you don’t trust us (Opera), then don’t use the service,” and then each followed up with more details.
Molly backed up the security conversation with this gem: “Regarding proxy serving in Opera Mini? We are a public company in Norway, which has some of the most stringent privacy rules.” as well as the very honest tweet: “As such if you cannot trust based on the integrity of a product or its company, no matter who, then don’t use that product!”
Well said.
Bruce gave us reasons to trust Opera with two security-related links. First, he indicated that Opera Mini is actually more secure on public WiFi than other browsers (with this link to back his claim) as well as linking to a post about how well Opera scored with security according to Symantec (here’s the abridged version: very well.)
So is Opera Mini fast? Yes. Is it secure? Yes.
That’ll do, moose. That’ll do.
]]>As we’re about to learn, being wise and making wise choices do not always go hand in hand.
Today’s comic imagines Jakob Nielsen and Bruce Schneier intentionally exposing themselves to danger in a gladiatorial arena (overlooked by a Caesar-esque Dave Shea) with the predictable results. Sadly, this scenario reflects reality (with a little editorial excess) in a way that shocks me.
Let’s lay out the recent events.
On June 23rd Jakob Nielsen proved he’s not done making poor recommendations in the name of usability. This time the victim is not design, however. Instead, he firmly takes a swing at security by recommending that passwords become unmasked, leaving naked all the strange alphanumeric combinations that we strive mightily to remember every time we want to visit naughty sites, check our email or bid on a rare 1920′s lampshade online.
He makes some assertions while recommending this course of action. First, that people rarely look over shoulders. Second, that you’re alone in your office. Lastly, he names two “costs” that these cause, one being that users don’t trust sites that mask password fields and the second that masked fields result in weaker passwords. He ends this list of errors by suggesting we do away with the masking altogether, and dance widdershins under the stars in a deep forest clothed in naught but our own sweat.
For the sake of avoiding a stoning at the hands of security experts, he does make an offhand suggestion of offering a check box to allow masking for public situations, but this is said in an afterthought that shows how little he worries about such a trivial thing as someone with both curiosity and eyeballs noticing you typing things on your monitors.
I might have spent my remaining years ignorant of his “suggestion” (might I take some liberties and call it a mad raving?) of tossing away one of the final barriers of security in exchange for a marginal increase in usability. However, Dave Shea took the impetus to make a comment about Jakob’s strange post on Twitter, for which I thank him.
He then followed with a comment replete with inspiring concepts: “A Bruce Schneier / Jakob Nielsen smackdown would be, frankly, awesome.”
It’s moments like this that I wait for, mouth watering with anticipation as I crawl through the many tweets and blog comments of the web design sphere of opinion. Immediately I imagined a savage competition between these two notables where Jakob’s naivety costs him in a contest against the security expert Schneier. These sort of daydreams translate easily into a comic, and furthermore align with something about which I found myself holding a strong opinion. This sort of conjunction almost always sends me scrabbling to my mad laboratory, where I harness arcane shapes into vector imagery and stamp it with the mad wisdom of the stars.
However, it was only on July 26th that Bruce did something I don’t think Dave expected when he made his tweet, and certainly wasn’t in my realm of anticipation. He agreed with Jakob.
Thankfully, I was able to adapt this change of circumstance to my comic’s needs.
However, I’m not about to alter my opinion on the topic. Namely, that I think this suggestion is madness.
In short, it appears to me that Jakob and Bruce assume that exposed passwords are a non-issue because firstly criminals don’t hover over shoulders and secondly that privacy when surfing a website is a guarantee.
Let’s cross out the consideration of serious hacker types for a moment. These aren’t the sort of individuals that need to see you typing your password to steal your stuff. They’ve got mad skills, and are probably busy right now taking your credit card information off a hard drive the U.S. Government accidentally sold to a spare parts reseller. But amateur no-gooders and opportunists need all the help they can get. They may not plan on stealing wi-fi access, but if they see you typing a password in the cafe they just might take advantage of it.
Unmasking the passwords by default creates a situation where Average Joes are given a lot more temptation to misuse the information they’re casually overseeing. We’re a curious, slightly selfish race. Give us the chance and we’ll be exploring things we shouldn’t. This is probably why emergency room doctors drink heavily after workdays involving gentlemen walking funny who whisper about the need for extreme secrecy when dealing with their medical “emergency”.
We’ll jump past the criminal concern, however, to look at the privacy issue. For the average American (and even more so for the average human) privacy isn’t a guarantee, and rarely exists when accessing a computer terminal. On the home front you often have spouses, siblings, parents and children all about as you log onto email accounts, purchase music via iTunes, check your bank account, or make a purchase for a pizza or a movie. Although I’ll pretend that maintaining privacy between spouses isn’t a concern (although I suspect it is) we all know that kids will be kids, and that some siblings are less than circumspect in respecting your stuff.
How would you like to come home only to discover you’ve spent $40 on purchasing a couple of Brittany Spears albums? How about learning someone (probably a young someone) bought access to an adult movie on the cable box with your account? I’m not saying that kids can’t get access to something with enough effort, but I think that it’s a big step in the wrong direction when you remove such a simple barrier to that access, and by doing so it requires no effort on their part to act on a poor decision.
So privacy in the home is an issue. What about the workplace? I have a great job. I don’t work in a cubicle farm. But many office workers do, and have hundreds of co-workers with easily five or six sitting in cubes across the aisle who can see their screens.
School teachers often have their computers in the classroom next to students. Should they trust all their pupils to respect their privacy and not try to access staff-only functions or answers to an upcoming test?
Furthermore, more and more people are accessing websites in non-traditional spaces. When you’re packed on a subway car with dozens of commuters and you need to access a site on your smart phone, do you want to have to decide if you can trust the people squeezed up next to you?
I could come up with dozens of other scenarios. Jakob is trying to cast his recommendation in the light of saving us from “legacy” design by implying that we live in an era where security won’t be risked by removing masking. Bruce seems to agree, stating that shoulder-surfing is an uncommon activity and that the risk is outweighed by the annoyance of typing blind.
I say that instead these two are making assumptions about website usage that are outdated. Computers are being used by younger children with more sophisticated skills. Websites are increasingly accessed more by other devices like smart phones, in non-private spaces with dozens of potential observers. Privacy is a vanishing commodity, so to presume that an average scenario doesn’t involve potential prying eyes is foolhardy and risky.
Jakob said the following: “Users make more errors when they can’t see what they’re typing while filling in a form. They therefore feel less confident. This double degradation of the user experience means that people are more likely to give up and never log in to your site at all, leading to lost business. (Or, in the case of intranets, increased support calls.)”
I’m going to call you out on this one, sir. That’s outright backwards. I feel less confident when I am entering a naked password in any environment, and strongly doubt the security of the site in question if required to do so. In fact, I’m likely to not use it at all. Why should I trust their other measures if they can’t even protect the password from passing eyes?
Perhaps username/password security truly need to be replaced by something both more secure and simpler to use. I’m not sure what that replacement technology should be. But I do know that we shouldn’t decide that usability trumps security and retrograde to exposing our passwords to John Q. Public.
No offense, John.
[Edit: Fixed the jump from #2 to #4 in the problem subtitles. Thanks, Elaine!]
]]>