The Fascinating Implications for Autonomous Vehicles

I absolutely love intersecting public policy with technology trends, and if one thing is clear in my years of covering this it is that public policy reacts rather than anticipates technology advances. Politicians and bureaucrats alike, no matter how well-meaning, rarely take into account the 2nd order consequences of technology innovation, which I define as those consequences that are not obvious but often have a bigger impact than the immediate ones.

AVAutonomous, also known as driverless, cars present just such a scenario to consider. It’s easy to reflect on the safety implications and how we regulate the human intervention aspects, but let’s go a level deeper and consider what could happen with the single biggest impact on transportation since the invention of the automobile itself.

  • Traffic laws: Today’s laws are designed to accommodate distinctly human behavior, such as the fact that roadway speeds are discounted to take into account the fact that people will drive faster than the posted limit. In fact, the legal speed for any public road is the speed which is safe for the conditions. Machines are not bound by the limits of humans and it is reasonable to suggest that posted speed limits should be eliminated in favor of a network system of dynamic speeds set by the vehicles themselves based on accepted safety standards.
  • Driver licenses: If the car is doing the driving and I’m merely a passenger, do I need to have a license? Okay, human intervention will be mandated in this early period, so maybe we should have a different class of license that does not grant the right to drive, but rather to intervene. Removing age and license restrictions introduces a different set of consequences related to ownership and registration/licensing. More on that later.
  • DUI: Do we need DUI laws for autonomous vehicles if the software rather than the person is doing all the work?
  • Parking: An autonomous vehicle could drop me off at work and return home rather than having me pay for parking. Combine that with fleet-based ride-hailing for short hops and parking lots along with street parking get radically reduced.
  • Tolls: If an autonomous vehicle doesn’t require a person, how can the bridge and road tolls be collected on traditional toll booth manned infrastructure?
  • Liability: Who assumes it? We’re handing over operational responsibility to the vehicle itself, therefore it would be natural to assume that liability also transfers to the manufacturer. No? Sure, they could attempt to transfer it via EULA but at the end of the day a bug is going to have serious consequences that go beyond just being inconvenient.
  • Traffic infractions: Similar to liability, if the vehicle does create an infraction, who gets the ticket?
  • License plates: Need them? The autonomous vehicle is inherently connected, why does it need a license plate if, presumably, it won’t get pulled over and the registration information could be transmitted to an authenticated requester electronically?
  • Configurable roadways: Networked vehicles present an amazing opportunity to convert a fixed and inflexible infrastructure to a dynamic and reconfigurable one. Heavy traffic going northbound on 280, take one of the southbound lanes and use it for northbound traffic for 30 minutes.
  • First responders: Autonomous vehicles will reduce accidents, which suggests we will need fewer first responders. A self-managed fleet of vehicles will not require traffic enforcement.
  • Shifting revenue: Take away towing fees because cars are not parking, traffic fines, DUI fines, etc., and a large chunk of revenue going to the government goes away. Of course, the necessary manpower used to enforce regulation also goes away so maybe it balances out.

As you can see, fascinating to consider the implications and yet public officials rarely even go there…

Operation Email Purge

I’ve been on a crusade against my gmail inbox and am happy to report deleting over 100k unread emails in just a month. 100k unread emails… something is wrong with the state of email marketing when that happens.

Gmail provides a bunch of really good tools for managing email:

  • Unsubscribe link: If the sender has an unsub link in the footer you will likely see a handy link that Gmail inserts in the header. Use it.
  • Filters: Wow, where to start? Is:unread is a favorite.
  • Search Terms: Searching on terms like “casino” and “viagra” yields a massive number of emails I never wanted. Think about terms you never use in conversation and you will be amazed at how prevalent they are in email. Search on names other than your own, in my case Judy, James, John, Jennifer Nolan all resulted in hundreds of unwanted emails. Search on punctuated forms of your email that you don’t use, e.g. Search on phrases like “media briefing” and “embargo” will result in thousands if you are on PR lists. “Webinar” is another solid term to search on.
  • Search on sender. By far the biggest offender in email is notification email. Fortunately, they are easy to identifier based on subject verbage, but also sender. For example, “” will yield all notif emails from YouTube.
  • Block. If a sender isn’t behaving well on email, e.g., then block them. Now, nothing gets through.

Now here’s a couple of annoying email behaviors that marketers should be aware of:

  • Unsubscribe takes 10 business days… it takes a company just seconds to subscribe me, it should not take them longer than seconds to unsubscribe me. This is annoying because it reminds me how antiquated your infrastructure is.
  • Long messages. If your email exceeds the display length for Gmail, don’t send it.message too long
  • No unsubscribe. For a reason I cannot explain, PR agencies in Europe and Australia don’t use marketing automation to send emails, while U.S. based agencies do. The result is that U.S. agencies have unsub while the others get blocked.
  • Multi-click unsubscribe. Systems like Mailchimp and Constant Contact have really well constructed unsubscribe features. One click, maybe two and I’m out. If you unsubscribe requires more than 2 clicks, entering your email, or confirming and then sending another message to me after I unsubscribed telling me that I unsubscribed… you blew it.

I used all of the above to pare down my inbox. It didn’t happen quickly but now I’m in a rhythm and just 15 minutes every morning cleans things up. I target deleting a couple hundred email each day, which is more than I get each day so my inbox continues to shrink.

Artist Series – Naomi Edelberg Janches

It’s been quite some time since I last wrote about an artist I like. Today I’d like to get back in the habit of writing about something other than tech, and the subject of my attention is Naomi Edelberg Janches.

I can’t say that I have ever had a particular focus on stained glass but a couple of years ago we were replacing the doors on our garage with traditional carriage house doors and needed something special for the mahogany swing out doors. I went to and posted a general description for what I wanted.

P1000538Naomi was the first artist to respond out of over 40 in total and was very agreeable to the style I was pursuing. However, when I visited her website I was instantly captivated by her unique style and after some consideration I wrote Naomi that I wanted to trust to her the project and whatever she shipped to me would be what got installed. I gave her dimensions and a rough cut on the color palette we were designing around. Over the months that she was working on this glass, she honored my wish to not send any progress pictures, and the first time I viewed the design was when I unpacked them.

The crates arrived and much to my disappointment one of the panels had 2 cracks in it. Naomi was very accommodating to repairing the cracked glass. We also expanded the project to include 2 additional pieces of glass for the entry door and sidelight, for 6 panels in total. A picture does not do these stained glass pieces justice, in person they come alive and appear to dance with the light.

After 2 years of working together, it’s safe to say that not only did we connect but we also became good friends. She joined her husband on a business trip to the Bay Area and we hosted them at our house for dinner. It was a lovely evening.

It is safe to say that I am enthusiastic about her work not only out of the admiration for her creative ability but also because I am so fond of her personally. But it is the work that graces our house and in the glass you can see the  inspiration of the cosmos and nature with free-flowing lines of glass, impeccable placement of each pane, and celestial bodies represented in the glass orbs. We’re fortunate to have her work in our house, check out her website and facebook page for more info.

You Want Disruption? Can You Handle it?

johnny cashI’m on a panel tomorrow at the Mobile Future Forward event in Seattle. The panel discussion is on disruption, which we met on Friday to discuss over a quick conference call.

I actually don’t think a lot about disruption, which is not to say I don’t look for it. I just try to avoid being disrupted because you never realize the extent to which it’s happening until it’s already happened. The corollary to that is you really can’t plan on making it happen either.

This is why I don’t think about disruption. The great case studies for disruption in our business are all a result of executing really well against an idea that was well conceived and not impaired by compromise. Disruption happens when you don’t have anything to lose, and in every case disruption is the result of bringing together extraordinary people unified by a sense of purpose. Put another way, disruption is not a strategy, it is a consequence.

Encumbent players in any market NEVER disrupt the market they are in. They have too much to lose by leading the way to a new normal and insist on compromise as a core value. You have all seen this happen a million times, new products that threaten the status quo are nipped and tucked in ways that take everything potentially special away from them. There is a civility in these efforts that precludes them from breaking out… they may be successful but they won’t be disruptive. Transformation is not disruption.

You want disruption in your business? Hire the right fucking people! Search out combative, difficult, and argumentative people who care in a very personal way about the vision and purpose of the effort. Teams are messy because people themselves are messy, don’t risk a mediocre outcome by hiring people who excuse mediocrity and have toned down their passion in order to fit in. Hire people who won’t compromise.

Not compromising is not the same as not changing your answer. Wendy Lea once gave me an unintended compliment that I cherish to this day when she said “you are so damn stubborn… (and after awkward moment of silence) but I’ve seen you change your mind on big things.” Of course, if you get new information that supports a better direction than you originally pursued, change your mind. There are no prizes for who is the purest and most dogmatic, therefore changing your position in support of the common purpose is not only practical, it’s being smart.

Here’s what I’m looking for in the people I want to hire:

  1. They take things personally: Success and failure isn’t a clinical, sterile outcome. It involves emotions and sense of caring that goes beyond a job.
  2. Relentlessly curious: Want to infuse new thinking and approaches in any effort? Seek out knowledge in the unlikely of places, talk to people who have already done it, and don’t be afraid to share the random.
  3. Direct and confrontational: Don’t mix words, say what you think and don’t waste anyone’s time by waiting. If something is borked, call it out! If something is working, shout it out and do more of it.
  4. Laugh at themselves: Humor is a powerful antitode for tension, even more so when it is directed at yourself. This ain’t bean ball and even though it’s a tough, high stakes business that asks a lot of people, we can still have fun doing it.
  5. All the usual stuff: Smart, experienced, hungry… yeah, all that, but the inescapable fact is that there are a lot fo smart, experienced, and hungry people. These three attibutes by themselves are no indicator of future success.


Fingerprint Technology is the Next Privacy Catastrophe

OPMNew fallout today from the gift that keeps on giving, the Office of Personnel Management (OPM) hack. The news reports on this have focused on the standard PII elements along with the salacious possibilities associated with the disclosure information that is collected for security clearance applications.


FingerprintAn angle that has not been widely covered is the initial disclosure that 1.1 million fingerprints were also hacked. Today it is being reported that OPM has increased that number to 5.6 million fingerprints.

The nearly universal response to suggestions that people could be at risk is that the fingerprints are encrypted. Fair point, they are.

According to OPM, “federal experts believe that, as of now, the ability to misuse fingerprint data is limited.” The office acknowledged, however, that future technologies could take advantage of this information.

The government also said salt and fat were bad, and healthcare costs would go down.

Coincidentally, the NSA put out an advisory last month on Suite B elliptic curve cryptography that is widely used in the government, and is suitable for general national security use. Unlike Suite A, Suite B is widely used and available as a public standard.

According to the NSA, Suite B cryptography is not capable of withstanding advances in quantum computing.

Until this new suite (to replace Suite B) is developed and products are available implementing the quantum resistant suite, we will rely on current algorithms. For those partners and vendors that have not yet made the transition to Suite B elliptic curve algorithms, we recommend not making a significant expenditure to do so at this point but instead to prepare for the upcoming quantum resistant algorithm transition.

Well, this is reassuring… but let’s get back to the issue of fingerprint biometrics. The problem goes to the very nature of the biometric attribute itself, it is literally something about you and it is immutable. When someone hacks your fingerprints they have them forever. Forever.

I do have a horse in this race, having recently joined a speech biometrics company. Active speech verification has vulnerabilities, clearly, but one advantage over competing biometric technologies. In the event of a data breach that gives hackers the voice model data, an organization can simply force a re-enrollment for the participants and the integrity of the system is maintained. It’s the equivalent of forcing a password reset for your voice.

No system is without some vulnerability, but a system that does not provide for a reset capability is one that I have serious reservations about. With Apple TouchID and the upcoming Android M release with fingerprint support, fingerprint technology is mainstreaming. We are entering a period where fingerprint biometric data volume will explode and become an attractive target for hackers.

We’re building a speech verification and authentication service for developers who want to build speech biometrics into their apps using simple and reliable APIs. Sign up for news and launch updates, as well as early access, at

The Uncontrolled Implosion at VW

volkswagen_logo_bleeding_by_greenbob1986VW has been embroiled in a massive controversy. Here is the summary:

  1. VW has been marketing “clean diesel” technology on the basis of being environmentally friendly while also being fun to drive.
  2. Independent testing done by West Virginia University revealed that VW diesel cars were not in fact clean when compared to competitors, and exceeded EPA regulations governing emissions.
  3. VW asserted that the tests were inaccurate and offered to perform voluntary recalls to address specific issues.
  4. The EPA threatened to withhold certification for 2016 models – meaning VW would not be able to sell them.
  5. The company then admitted that they had engineered a defeat device which detected when the vehicle was undergoing emissions testing. In normal driving, the required emissions equipment was turned off.

The EPA has threatened the company with $18b in fines, which won’t come to fruition. BP paid just a 1/3 of that for their massive environmental disaster in the Gulf. It is hard to see how VW would be subject to a fine that equates to $37,344 per vehicle affected.


The damage to the VW brand is incalculable right now, but I predict it will be a death blow to them in the U.S. market. Their problem is twofold, the first is that their market share here has been stuck in perpetual single digits across categories. With the U.S. being the most competitive car market globally, every point of share comes at great cost.

The second problem is that they are now on record admitting to a conspiracy to deceive regulators and consumers alike. They have been marketing a clean diesel product that they knew was not, and worse, had engineered components in the vehicles themselves to perpetuate that deception.

This scandal is spreading, fast. The company has already admitted that they know 11 million vehicles globally have this defeat mechanism installed. Countries are opening up their own investigations daily, the damage to the brand is no longer contained the U.S.

For the foreseeable future every news story about VW will be about a scandal, every car review, even in the bought off automotive media, will be compelled to append articles about VW cars, and current customers will have to navigate recalls and sarcastic comments about their choice of vehicle.

What reason does anyone have to buy a VW in light of these revelations? While not alone in the annals of recent car company scandals, the VW one is the most brazen in concept. Toyota and GM have both suffered scandals of incompetence with air bags and ignition switches respectfully, and in all fairness a lot of people died as a result of those failures, which is not the case with VW. Toyota and GM also have market leader positions while VW is a third tier player in the U.S. market, which doesn’t provide the company with much inertia to ride this out.

I think they are done. Call the moving company and buy your tickets back to Wolfsburg. At least they still have Audi and, thus far, they have not been implicated in this scandal.

Apple Shutters Hopstop

Hopstop was a revelation to me, a legitimate ah-ha moment. The light bulb brightly shining in front of me in the form of a smartphone.

We take for granted today that Google Maps can tell us how to get anywhere, and for a generation not familiar with paper maps, that was a pretty big deal. It wasn’t always like this and through the development phase of this technology it remained car-centric.

HT_hopstop_nt_130719_16x9_992I was going to NYC quite a bit in 2005 and finally decided to ditch the street for the subway, but the NYC subway system can be intimidating to those not accustomed to the numbering, schedules, and transfers. Hopstop helped me make the subway a regular part of my NYC experience and in the process showed me how apps welded to smartphones with implicit geolocation capabilities could be life altering.

Apple acquired Hopstop in 2013 and announced today that the service will shutdown next month.

Apple and Google are pitched in a heated battle for your eyeballs on their maps. We’ll see more services built into their respective mapping platforms, but I’m mixed in my opinion of whether more is better when it comes to maps. The usability of maps is very often a function of the degree to which they are de-crapified. Google Maps has crammed more stuff into the basic mapping functionality and the app hasn’t become more usable as a result when it comes to the singular purpose of getting me from point A-to-B.

I appreciate how much more it does for me, and continually find new ways to use it, but Google Maps has a lot of crap that clutters up the UI. Apple Maps will no doubt suffer a similar fate as Apple races to catch up to Google in the everything-and-the-kitchen-sink phase that maps are currently in.

Hopstop will forever be held in high regard for me. It achieved a rate accomplishment of doing something far better than any competing approach while also changing my life in a good way that reshaped my expectation of all that followed.


I was listening to a media overview of the Life On Mars Project. The short version is that 6 people, 3 men and 3 women, will spend 365 in a biosphere located on the slopes of the Mauna Loa volcano in Hawaii. They will be permitted to leave the dome but will be required to wear a space suit to simulate the conditions on Mars.

In an unfortunate naming twist, the acronym for the effort is HI-SEAS. I think they should have gone with a different acronym.

The project will study the effects of long-term isolation and co-habitation. The results of the 1-year study will be used in the planning of an actual manned mission to Mars. This is certainly interesting research and the kind of work that can’t be simulated given the complexity of the human condition.

I thought it was curious that the crew features 3 men and 3 women. Given the fact that this is a 1-year project in close quarter conditions, with no external human contact, it would appear that the organizers were anticipating the human needs beyond food, shelter, clothing.

This leads to a number of interesting questions about the consequences of limited human interactions and self-enforced rules of order. What if one crewmember commits a crime against another crewmember? In a 36-foot diameter dome do you quarantine that person? Each crewmember holds specific skills that are necessary for the ongoing support of the station, putting an individual in isolation would deprive the rest of the crew of essential support.

What if someone unexpectedly binges and eats all the chocolate? Seems like a small thing but human conflict is often the result of small things piling up over time.

What happens when someone dies? This being a research project, one can presume that there would be an intervention in the event of life-threatening illness, but in space that isn’t possible so what would happen? Would you shoot the body out of a port, say a few words and move on? How do you replace the essential skills that person held?

There are obvious questions about long-term co-habitation in a small space that this research will shed light on. Entertainment, fitness, conflict resolution, communication, and mental health are all obvious questions, but it would be fascinating to learn about all the not so obvious issues that the planners have on their list.

I hope NASA departs from the usual media strategy of sunshine and rainbows to describe their work. This is a rare opportunity to shed light on the complexity of the human condition in anticipation of actual long-term cohabitation in space. I am also left to wonder why the International Space Station is not being used for this research given that it is an actual installation in outer space designed to support long-term co-habitation.

More on this topic (What's this?)
Market Outlook
Inteliquent Lands a Big One
Read more on Hong KONG&CHINA Gas at Wikinvest

The Ashley Madison Data Dump

madisonThe hack itself is an old story; Ashley Madison was hacked and profile information stolen. What is new is that the group behind the hack, Impact Team, dumped all the data. It has now been made available by many legitimate folks who created searchable online services against the data.

As much as I could enjoy the schadenfreude in this story, I simply cannot. I’m compelled to point out that just because an email is in the database does not mean it is a legitimate account. Email is a notoriously weak verified identifier, and while many websites have a sign-up flow for email verification, many don’t do anything to purge unverified emails. My thesis is that even unverified emails harvested in the sign-up flow have value for marketing purposes and, therefore, remain in the company’s database.

My email,, has been used by far too many “jnolans” to count. Often signing up for mundane services like car buying sites, but also for things that would certainly make my wife ask questions, like and an unrelated service for making arrangements with dominatrixes for a variety of, well, services.

The amount of crap I get from websites I have never visited is simple extraordinary. My oldest son has a gmail address that is first name only and I purge over a thousand emails from his account each month, and he’s only used it a few times for sending schoolwork.

2013101108The Impact Team has shrewdly wrapped themselves in a veil of moral righteousness to conceal a criminal act. While they aren’t stoning adulterers in the town square – or beheading them in a stadium – they are stealing personal information and using that in a form of extortion.

I find the entire affair, no pun intended, reprehensible and while AshleyMadison is itself objectionable, they are also a victim (of stupidity first and foremost). Despite complete awareness of the risks to the company and their customers, they did not employ best practices to secure their data. In addition to that, they had a sign-up flow and password recovery process that made it exceptionally easy to determine whether or not an email was in their user database. The flawed password recovery feature allowed for an entirely different line of attack employing social engineering to hijack individual accounts.

I won’t shed any tears if they shut down, which they likely will because recovering now is all but impossible, but I won’t celebrate the fact that a group of hackers brought their demise. To do so would welcome a global online sharia law where only those services that pass a moral test can exist.

PS- yeah, I searched for my email in the database! Who wouldn’t?

Amazon Dash, the Device Web, and Speech Verification

I purchased an Amazon Dash button recently. It’s a clever product concept and an example of a headless device that will be a major theme in the emerging Internet of Things movement.

The Internet of Things represents a massive shift in how we will consume services. I would assert that we will reorganize the existing Internet around three functional Internets:

  • The Web: This is what we know today. Constantly evolving, the complexity of services delivered to HTTP endpoint will increase, and as more web consumption moves to mobile, the interoperability of smartphone apps with web services will be transparent.
  • The Dark/Deep Web: This web already exists, it is beyond the reach of search or obscured behind secure and untraceable browser and domain technologies. Most often associated with illegal activity, the Dark/Deep Web will evolve to meet the needs of security and privacy, as well as conduct criminal activities. The Deep internet, that which is not obscured behind technology, it is simply not discoverable via search.
  • The Device Web: The proliferation of connected devices will overwhelm the traditional namespace. The devices that connect to the Device Web will be, predominately, headless. Lacking displays and traditional input modes, these devices will have speech interfaces, simple activation modes, and be tethered to a smartphone via a dedicated app.

My interest in the Device Web is what led me to spring the $5 for a Dash button. A Tide Dash button, we like Tide so what could be better than a simple push button replenishment mode? As it turns out, quite a bit.

dash1The Dash arrived in a simple package and activating the button was a simple process. I pressed the button and held it until the blue light blinked rapidly. Simple enough, just like a Bluetooth device.

With the blue light blinking, I went to the Amazon app that was already installed on my phone and found the “device” menu in the account menu. It was not immediately apparent because I was expecting a dedicated app, but when in retrospect it makes perfect sense the way they built this into their mobile app. I probably should have read the one pager that came with the device first.

The process of configuring the button is two parts, first adding the button to the network and then attaching it to a product option to purchase. The first part is interesting, the Amazon app forces my phone to drop the WIFI connection and form a direct connection to the Dash button. At this point, the app prompts you to select the network to connect the Dash button to. Dash then stores the WIFI password in the device, or in their cloud; it wasn’t clear where the password is being stored.

I wasn’t particularly excited about Amazon having my WIFI password in their network. To me, this represents a new front in privacy strategy because having access to my WIFI network opens up a lot of possibilities for Amazon that I would not endorse.

With the button configured I then needed to attach my product options to the buy button. At this point, my enthusiasm for this device went to zero. The number of products eligible for the Dash button are limited, and our preferred Tide option was not available. I detached the button from my account and put it back in the package. It will be a conversation piece now rather than a method for procuring laundry detergent.

When my six-year-old son saw the Dash button, the first thing he did was press the button, repeatedly. Had it been configured, I would be getting a truckload of Tide. Amazon has designed around this with the purchasing workflow, giving you the opportunity to cancel a transaction before fulfillment, but the problem I have with this is that I have to do it. The button itself does not discriminate between those in my household authorized to buy Tide and those that are not.

The Dash buttons would be significantly improved with a voice verification technology that responds only to an authorized and enrolled user. This authentication could be enabled with a fingerprint sensor but with current technology the cost of the sensor is an obstacle while adding a mic is trivial. Taking this to the next level, redesign the button to remove the button itself to enable Dash with a trigger phrase and voice verification to authenticate a transaction.

I love where Amazon is going with this, pushing the buying transaction out to the natural endpoint. I can envision this being evolved and improved with new technologies and improved backend integration, but I can also see this package being integrated into appliances. Not everyone wants to purchase exclusively through Amazon, so much like smart TVs now come preloaded with multiple streaming services, appliance makers could embed multiple retail options for the consumer.