I posted the following on Medium earlier today. Basically I have just had it with Lanyrd’s downtime and the seeming unwillingness of parent EventBrite to make any investment in this important service. Let me know what you think and more importantly suggest some alternatives.
So one question I get asked a lot about my Apple Watch is “how do you use it?” (Or sometimes ”how often do you use it?”) From my experience with the Apple Watch thus far, this isn’t the right formulation. In one sense you’re always “using” it because it’s always on you. It isn’t usually something you affirmatively use though. It’s more about the notifications and the ways in which it can replace (mostly with better / easier overall user experience) some functions of the iPhone.
At right is my boarding pass for a recent flight I took to Vienna to speak at the Uberall App Congress. I presented this image at the end of my talk (which was about how app developers should better make use of the web) to illustrate a point. I was able to get my Austrian Air boarding pass on my wrist without the need for a special Austrian Air app either on my phone or on my watch. The check-in took place on the web site (used from my phone’s browser in this case) and the passbook boarding pass was delivered by email. Once the boarding pass was in passbook, it magically loads into the watch. When the time for the flight drew near, a notification appeared on the watch bringing me directly to the boarding pass. The only slightly cumbersome bit was scrolling down to the 2d barcode with luggage and passport in hand – certainly no less cumbersome (and accident-prone) than fishing out your phone to do the same. The mobile payment scenario for Starbucks is similar, by the way – thought that does require an app install.
I’ve also been pleasantly surprised as how much I’ve been using it for “activity tacking” especially since I’ve never done activity tracking before nor ever felt a burning need in my life to track my activities.
But certainly the main thing I find myself “using” the Apple Watch for is notifications – notifications of text messages / iMessage, Twitter & Facebook activity, Photo sharing activity, LinkedIn activity, Slack activity, calendar entry alerts and the like. The haptic feedback means you never miss an important notification yet also gives you the power to silently ignore or quickly dismiss alerts when appropriate and and in a much less interruptive way than pulling out a phone. In practice this means I feel more in control of my digital life. Because the haptic feedback is not perceptible to anyone besides you and because it’s not visual, you’re not subject to “distracted talking” syndrome a-la Google Glass. By the way, one of the first things I did on configuring the watch was to turn off all email alerts. This is not a device for email – especially with the amount of spam I receive. I’m also still unsure on things like breaking news alerts – I think this only works until New York Times decides to alert me about something I don’t care about.
Things that need work on the Apple Watch, software wise, include the wifi connectivity. The promise is that when you’re on (e.g.) your home wifi network, you can leave your phone in one room and walk anywhere else not necessarily within bluetooth range but still in the same wifi network and your watch will remain connected to your phone. In practice this works maybe 80% of the time. In trying to debug the issue, I’ve found that that both the watch and the phone are indeed on the wifi (by inspecting the access point config) but that they are somehow not communicating. So there is some work to do there. Another issue is that the “turns on when you look at it” feature is maybe 90% reliable – leaving plenty of times when you’re stuck looking at a blank screen. Another feature that would be great but is currently, well, not so great is walking directions. The functionality is that it guides you (via haptic feedback and highly contextual alerts such as “make a left on Carnaby Street in 20 yards”) as you’re walking to your destination. It would be great if it worked. My experience using it in London is that it needs some work. For example, “enter the roundabout” is not a useful walking direction. I expect this to improve with IOS9 but it would be great if I could get Google walking directions (and cycling directions) on the watch. Finally (and this is more of an IOS issue than a Watch issue) I want Safari push alerts on IOS. These push notifications already work well on Safari on Mac OS and it’s hight time Apple brought them to IOS (as Google has done with Chrome for Android).
All in all, I’m very happy with Apple Watch and I definitely think it has the potential to open up the wearables market and make the smart watch as common as the smart phone has now become. There’s been quite a lot of debate recently about how successful the Apple Watch is / will be and how successful it needs to be. This is, to a large extent, a new category of product so it’s difficult to define what success is. Eight years ago Apple opened up the smartphone market with the iPhone. I remember a lot of grumbling back then about how people “didn’t want” touch screens, etc… Well, the doubters have been proved wrong and we are now firmly in the middle of the mobile era. Will the Apple Watch herald the next phase in innovation? My bet would be yes, it will.
Let’s face it, PGP is pretty old school. It’s like pocket-protechor old-school. I’ve personally taken several runs at trying to get PGP up and running. The problem has always been: once I get PGP working, there’s nobody to send encrypted email to. PGP just has never had enough scale to get even close to mainstream. Enter keybase, which is trying to revolutionize the way people use and think about PGP with a friendly web site and integration into services such as Twitter, reddit and github. I finally cajoled an invite out of a friend today and have been giving it a whirl.
My first impression is that Keybase does not entirely solve the problem of making public-key encrypted email work better. For one: if you want to incorporate PGP email into Apple Mail, you still have to download and install GPG tools, and the command line keybase tools (which require Node and NPM). And though there is some integration between the GPG tools and the Keybase tools, it’s fiddly and requires lots of command line usage (e.g. to make sure people you “track” on the Keybase web site also have their public keys imported into your GPG keychain so you can send them encrypted emails from within Apple Mail. AND you have to use GPG tools to manually add additional email addresses into your key, if you generated the key with Keybase. So that’s a pretty high bar if you want seamless PGP email from the desktop. I haven’t even tried to get it running on any of my mobile devices yet – which will definitely mean moving to a new email client (or just not being able to access encrypted emails on mobile, which is not ideal). There’s a lot of work going on to remedy these issues if the github issue threads are any indication.
What Keybase does allow you to verify PGP signatures without physically validating fingerprints in person, though proofs you add to your social networks.
Anyway, I now have some keybase invites. If you would like one, please message me in some way and have a look yourself.
So the UK government seems to have launched a new public awareness campaign dubbed #cyberstreetwise (evidenced by posters in the Tube I spotted this weekend). The campaign’s web site is : https://www.cyberstreetwise.com. Bonus points for a https URL. Negative points for choosing a “.com” domain instead of a more appropriate “.co.uk” or even “.uk” domain.
So first of all, I was confused initially about who was supporting it. The logos at the bottom left panel include HM Government but also the more recognizable Facebook and Twitter logos (without explanation) which seems (to me) to mean “this is being sponsored by the government, Twitter and Facebook” or possibly “this is a government initiative with sponsorship provided by Twitter and Facebook.” In fact, reading the web site, it appears that neither Twitter nor Facebook have any formal role, so the presence of their logos is somewhat mystifying. I Suppose they just mean “we are on Twitter and Facebook” but honestly, these days who isn’t? [Side note: what is up with random Facebook and Twitter logos on things? See my Twitter update on this topic that seemed to “go viral” earlier today.]
But putting this to the side for a second, I really don’t know what to make of this campaign. On the one hand, it’s exactly the kind of public awareness campaign thatI feel is needed. People need to start getting more aware of the the web basics, especially around privacy, e-safety, scams. use of strong passwords, installation of updates and use of security software. So yes. Great. But the information provided doesn’t seem to cover a lot of the key basics that I would think need to be covered. For example, under “privacy” i find no mention of private browsing modes or when you might want to use them, and no discussion of tracking on the web.
Under “keeping your child safe online” I see “Parental controls are available through your internet provider.” but no mention of Apple’s built in parental controls. More importantly, the text on this screen looks like a placeholder. As I’m leafing through their site, I’m asking “where is the actual content?” It feels like this could be a good use for wizards or possibly a cartoon. Also this campaign seems to be aimed both at businesses and families, and those are two different groups with different needs – so that’s weird. Finally some of the advice is a little questionable. For example: always download updates. Yes, but: sometimes phishing scams can masquerade as software updates as a vector to get malware into your computer. I know that’s a difficult message to package into a Tube advert, but it feels like the messaging could be better thought through. “Sign up to security software provided by your bank, such as Trusteer Rapport.” No. No, no, no. Judging from my experience with the software my own bank was trying to push me, I don’t think this is good advice – at all. Rather, how about educating people about how they can click on the padlock icon in their browser to verify the provenance of that certificate.
So I haven’t done a rigorous analysis of the whole campaign, but I’m of two minds about what I’ve seen so far. On the one hand: yes, it’s needed and yes, some good info. On the other hand some of the info provided makes me suspicious about its provenance and whether or not it has all been fact-checked by actual domain experts.
What do you think? Leave a comment here or on my Google+ post.
According to The Verge, the “Anonabox” Kickstarter is Trying to be a One-Stop-Shop for Internet Privacy.
So the hacker in me loves the idea of this, but actually I think it’s probably over-kill (and an over-promise) for most people’s web privacy needs.
First of all, if you want to surf the Web through the Tor network you just have to download an install the Tor browser bundle (https://www.torproject.org/download/download – also see this Guardian article from last year: http://gu.com/p/3k569) . This application download actually pairs a heavily customized (with additional anonymity-enhancing features) Firefox browser with the Tor networking software. But even that is overkill for most casual “private browsing.” If you are just trying to search privately (for example, for medical-related topics that you don’t want showing up in your ads the next time you search the web) then the private browsing modes that now come as standard with modern browsers (Chrome calls it “incognito”) are perfectly fine. What these modes don’t protect you from is your network provider (ISP) snooping browsing. Tor does encrypt your network traffic (to the Tor service) but it comes with major downsides such as slowness. Because of the way Tor works, routing your traffic around the Internet until it finally pops out onto the public Net at an “exit node”, your traffic will also appear as if it’s coming from another country than the one you live in. So for example if you live in the UK you will find BBC iPlayer will not work through Tor. Also if you run all your traffic through Tor but don’t use private browsing modes, or Tor’s special browser build, then you are still exposing yourself to tracking through cookies, fingerprinting and other techniques.
But if you do use TorBrowser it also blocks certain technologies such as Flash player, so it’s a trade off.
Basically people need to gauge how much privacy they need in a given situation and employ the right tool for the job. Unfortunately it doesn’t look to me like anyone is working to drive general public awareness of Web privacy these days, which is a shame.
Just playing around with the new “hand off” (I guess this falls under) feature in IOS8 / Yosemite. If you have a phone number in a web page suitably marked up as <a href=”tel:…”>link</a> and visit that page with Safari, clicking on the link will automatically send you to the FaceTime calling application which will start calling the number from your (i)phone with the audio piped through your Mac. Very neat trick!
This article from The Next Web is a good write-up of different options available for creating your own URL shortener. I’m a big fan of short URLs, but I think one of the draw-backs can be that they create a more “brittle” web – that is, if the URL shortner service (such as bit.ly) you use goes out of business then all the URLs you’ve shortened and shared through various means become useless. Conversely, sites such as the NY Times and BBC have created their own short URL mechanism, on top of a domain they own (nyti.ms and bbc.in respectively), to facilitate sharing. This allows those organizations to keep the short URLs they mint active as long as the organization (and the Internet) continues to exist (which is about as much as you can hope for). Making it easier to host your own domain name shortening service and to own your own short URLs can only be a good thing. But URL owners still need to remember that once a URL (short or otherwise) is out there in the wild it needs to be maintained, even if a site’s structure changes. CF “cool URIs don’t change”: http://www.w3.org/Provider/Style/URI
So I get a notification on my phone today that my (relatively newly installed) Nest Protect smoke alarm is going off and there is “smoke in the hallway.” This happens to be the day we have a cleaner in in the morning and nobody else is in the house. Going into the app, I saw that the alarm had been “hushed” (presumably by the cleaner) so I immediately suspected that house was not, in fact, burning down. Got in touch with the cleaner and she reported that there was no smoke but that the alarm kept going off. Luckily I was able to come home and check out the situation. Indeed, when I came home the alarm was freaking out and the air was completely clear. I took the unit outside just to be sure and it still kept going off. I turned the unit off and then on again (channeling the IT Crowd) and still the alarm was going off. So I called customer service. I found the customer service number buried on their web site (and also a US number with no dialing prefix so I had to know how to dial it – not ideal for a UK customer). Once I got through to an agent, they were super-helpful (even though it was the middle of the night for them), took me through a check-list and swiftly arranged for a replacement unit to be sent out to me. I’m still not sure whether the unit was faulty or if it was something the cleaner unintentionally did that set it off (e.g. a cleaning product that somehow damaged the sensor?) In any case, I’ll install the replacement unit and see how it goes from there. Stellar customer service notwithstanding, I am a bit concerned.