Goodbye privacy, hello Alexa: Amazon Echo, the home robot who hears it all(theguardian.com)
theguardian.com
Goodbye privacy, hello Alexa: Amazon Echo, the home robot who hears it all
http://www.theguardian.com/technology/2015/nov/21/amazon-echo-alexa-home-robot-privacy-cloud
126 コメント
Presumably there's no way to rename it? There are quite a few humans named Alexa, and I can imagine the confusion that could arise...
You can rename her to Amazon. Hopefully there aren't very many people named Amazon.
Easy. Haven't bought one.
Edit: @tl, I'm rate limited, so I'll respond here. Hopefully you'll see it.
I'd probably ask them why they bought it and if I could try it out, or, if they could show me how they use it. It's an interesting interface, I'm just not sure how generally useful it is compared to more traditional interfaces (keyboard, mouse, touchscreen). I view it as a novelty "Trojan horse" of a sort. I'm sure Amazon is collecting specific metrics on users of their device and most users probably get some novelty from it before they unplug it and forget about it.
Edit: @tl, I'm rate limited, so I'll respond here. Hopefully you'll see it.
I'd probably ask them why they bought it and if I could try it out, or, if they could show me how they use it. It's an interesting interface, I'm just not sure how generally useful it is compared to more traditional interfaces (keyboard, mouse, touchscreen). I view it as a novelty "Trojan horse" of a sort. I'm sure Amazon is collecting specific metrics on users of their device and most users probably get some novelty from it before they unplug it and forget about it.
And how would you respond to friends / family buying them? Or to a coworker who brought one into the office?
"Ok Google" on Android, Siri, and listen all the time too, don't they? That's presumably how I can wake up my phone from a state where the screen is locked and powered off by saying "Hey Siri" / "Ok Google" / "Hey Cortana".
I was taken aback briefly when I first considered it. I realized it must be recording the environment constantly, in order to scan for the code word. Upon hearing the code word, it wakes up and streams the last few seconds of audio remotely, where the real linguistic analysis happens with Siri/Cortana/Google Voice Search. [1]
The difference is my phone is with me virtually 24/7. It's rarely not in the same room. In my opinion, the cat was out of the bag a while ago.
I make a decision to trust the device manufacturers, who claim their devices only listen for the code word. As a scientist and engineer, I know what that means: it's recording everything, all the time, and probably running a simple linguistic analysis sufficient to recognize codewords only. Then on waking up, it streams that audio centrally, which is how it can respond to queries out of the blue like: "Hey Siri, what's the temperature?" Answer: "It's currently 41 degrees Fahrenheit". It must be recording and processing everything, though in a computationally inexpensive way, for the sake of battery life.
[1] Google Chrome apparently supported this on the desktop for a while too: http://thenextweb.com/google/2013/11/26/google-brings-ok-goo...
I was taken aback briefly when I first considered it. I realized it must be recording the environment constantly, in order to scan for the code word. Upon hearing the code word, it wakes up and streams the last few seconds of audio remotely, where the real linguistic analysis happens with Siri/Cortana/Google Voice Search. [1]
The difference is my phone is with me virtually 24/7. It's rarely not in the same room. In my opinion, the cat was out of the bag a while ago.
I make a decision to trust the device manufacturers, who claim their devices only listen for the code word. As a scientist and engineer, I know what that means: it's recording everything, all the time, and probably running a simple linguistic analysis sufficient to recognize codewords only. Then on waking up, it streams that audio centrally, which is how it can respond to queries out of the blue like: "Hey Siri, what's the temperature?" Answer: "It's currently 41 degrees Fahrenheit". It must be recording and processing everything, though in a computationally inexpensive way, for the sake of battery life.
[1] Google Chrome apparently supported this on the desktop for a while too: http://thenextweb.com/google/2013/11/26/google-brings-ok-goo...
In pursuit of a low battery foot print and low memory foot print the "wake up word" technology is really just a trained ML classifier running locally to identify a specific 3+ syllable phrase. They don't start sending everything to the mothership until after that gate is passed.
What happens when they do?
Your phone battery dies in 3 hours.
This is why we're "lucky" to have limited battery tech right now. What's to fear is when a minuscule device will get years and years of energy with new battery tech. This is where ubiquitous connected devices will ramp up and pose the real privacy threat.
This is why we're "lucky" to have limited battery tech right now. What's to fear is when a minuscule device will get years and years of energy with new battery tech. This is where ubiquitous connected devices will ramp up and pose the real privacy threat.
I will happily share all my secrets with such devices.
Just give them the voice of Scarlett Johansson :)
> Your phone battery dies in 3 hours.
I'm not so sure. Passive background network activity happens perpetually on Android and iOS devices now. I'm not saying it doesn't have an impact on battery life, I'm just saying that sending chunks of speech during this time wouldn't have significantly more impact than Gmail syncing in the background.
I'm not so sure. Passive background network activity happens perpetually on Android and iOS devices now. I'm not saying it doesn't have an impact on battery life, I'm just saying that sending chunks of speech during this time wouldn't have significantly more impact than Gmail syncing in the background.
My iPhone has Hey Siri on all the time and lasts for 2-3 days between charges.
Because it does all voice recognition in-place by a highly specific chip.
If you send out all voice data to a server, you're tapping into both CPU and radio, which is quite equivalent as when you speak on, say, Facetime audio or a VoIP app. I dare you to speak for more than a few hours with WhatsApp.
So when it's plugged in to power it can send everything? how reassuring, since I pretty much always plug it in when I'm home?
Related, my 'Hey Siri' is only active when the iPhone is plugged in.
Related, my 'Hey Siri' is only active when the iPhone is plugged in.
It could send everything, but you can do some pretty basic investigation to figure out if it actually does. Spoiler: It doesn't.
It's probably naive, but somehow I feel better about the phone because it has power and bandwidth limitations that would quickly become apparent if it started trying to send all this data somewhere.
I'm much more concerned about devices that are wired in permanently with power and network.
I'm much more concerned about devices that are wired in permanently with power and network.
As technology advances, this will not be as comforting as it is now. Also, the energy issue is irrelevant while the phone is plugged in to charge. Will it change your phone use?
edit typo
edit typo
That's true. Wired devices have the power to listen passively indefinitely and to record as much as they want. As I updated my post to mention, Google apparently added Google Voice search to Chrome at one point.
With wired devices, I've comforted myself with the analysis that users could detect subterfuge by looking for unexpected network traffic. A device can't record my voice and transmit it centrally all the time without generating noticeable network usage. It could, however, record for a while and send in a burst later, perhaps concealed within other traffic like a weekly software update. Nevertheless, I think a close examination could detect foul play. I do wonder whether phones could conduct the same type of subterfuge:
Perhaps there ought to be a "phone surveillance challenge" that's kind of like the Underhanded C contest. Each year, contestants submit a phone app that runs in the background on a phone over a 48 hour contest period simulating normal usage. At several points during that period, an important conversation will be overheard. The app that does the best job recording the conversations and remaining undetected is the winner.
Naively recording all audio and storing it will probably drain the battery. It also needs to be compressed, though bit rates as low as 5 Kbps seem to be intelligible. If we record at 5 Kbps, then it will require only 108 megabytes to store 48 hours worth of audio. The compression might eat up CPU, however. Perhaps skilled contestants will find a way to do it cheaply.
If we're a smart contestant, we don't indiscriminately record and store all audio. Instead, we want our contest entry to record the human conversations. I'd hazard a guess that our highly skilled contestants can come up with cheap passive methods of detecting human voice, comparable to the ones that listen for "Ok Google". So our contest entry only wakes up when it hears human speech.
Our contest entry won't transmit anything over the airwaves regularly, since that uses battery. However, we know the phone will be charged at least once in 48 hours. We'll wait until it's charging to upload our recordings. Even better, we'll time our transmission burst to be right after some other network activity, like a daily software update. Or if the phone is plugged into a computer, we can compromise it as well and extract data that way.
Sounds like a fun contest.
With wired devices, I've comforted myself with the analysis that users could detect subterfuge by looking for unexpected network traffic. A device can't record my voice and transmit it centrally all the time without generating noticeable network usage. It could, however, record for a while and send in a burst later, perhaps concealed within other traffic like a weekly software update. Nevertheless, I think a close examination could detect foul play. I do wonder whether phones could conduct the same type of subterfuge:
Perhaps there ought to be a "phone surveillance challenge" that's kind of like the Underhanded C contest. Each year, contestants submit a phone app that runs in the background on a phone over a 48 hour contest period simulating normal usage. At several points during that period, an important conversation will be overheard. The app that does the best job recording the conversations and remaining undetected is the winner.
Naively recording all audio and storing it will probably drain the battery. It also needs to be compressed, though bit rates as low as 5 Kbps seem to be intelligible. If we record at 5 Kbps, then it will require only 108 megabytes to store 48 hours worth of audio. The compression might eat up CPU, however. Perhaps skilled contestants will find a way to do it cheaply.
If we're a smart contestant, we don't indiscriminately record and store all audio. Instead, we want our contest entry to record the human conversations. I'd hazard a guess that our highly skilled contestants can come up with cheap passive methods of detecting human voice, comparable to the ones that listen for "Ok Google". So our contest entry only wakes up when it hears human speech.
Our contest entry won't transmit anything over the airwaves regularly, since that uses battery. However, we know the phone will be charged at least once in 48 hours. We'll wait until it's charging to upload our recordings. Even better, we'll time our transmission burst to be right after some other network activity, like a daily software update. Or if the phone is plugged into a computer, we can compromise it as well and extract data that way.
Sounds like a fun contest.
The sheer number of different parties with the ability to record everyone's conversations is getting very excessive. The microphones in cell phones and laptops are bad enough; can we please note add any more? This one seems relatively easy to push back against: if you visit someone and they have one plugged in, treat it as a faux pas.
if you visit someone and they have one plugged in, treat it as a faux pas.
I might just direct a profanity-laced rant about surveillance at it, on the slim chance that there's actual humans listening on the other side.
...or not, because that could even be enough to arouse suspicion in the world today. This reminds me of a scene in a movie long ago...
I might just direct a profanity-laced rant about surveillance at it, on the slim chance that there's actual humans listening on the other side.
...or not, because that could even be enough to arouse suspicion in the world today. This reminds me of a scene in a movie long ago...
I don't work for amazon but have done a bit with them. According to their engineers it only listens for 'alexa'. I'm assuming we can all take that how we will.
I'm happy to lose a bit of privacy for something my kids can use so easily. One of the lesser known features is its wikipedia key word. If you say wikipedia followed by what you are looking up, it will read the wiki entry for you. It's a perfect fall back plan for when it doesn't understand a question otherwise.
why do your kids need to use it "easily" ? Why not be a father and show them how to use things ?
Yeah. Real men teach their kids TCP.
Because:
1) I'm not a sadist. 2) Lowering the barrier of obtaining answers leads to a higher level of curiosity and greater yearning to learn. 3) It allows an easy way for my kids to be exposed to more types of music. 4) It helps with piano practice.
And seriously, lay off the personal attacks. Echo isn't a replacement for a parent. This isn't about sitting a kid in front of a TV, this is about a wonderful supplemental product which kids can use at an early age.
1) I'm not a sadist. 2) Lowering the barrier of obtaining answers leads to a higher level of curiosity and greater yearning to learn. 3) It allows an easy way for my kids to be exposed to more types of music. 4) It helps with piano practice.
And seriously, lay off the personal attacks. Echo isn't a replacement for a parent. This isn't about sitting a kid in front of a TV, this is about a wonderful supplemental product which kids can use at an early age.
In threads like this, Hacker News is usually in favour of the privacy invasion, and it's happening here right now. I wish everyone would understand that the question isn't about your own personal privacy ("I'm willing to give that up" says everybody).
The question is about our society, and government+corporate control. In a society where everyone accepts 5-10 different listening devices into their homes, a system is being built to listen to every thing we say and watch everything we do. How many different manufacturers built all the microphones and cameras that are in the same room as you and also connected to the internet? How many countries had their hands on those devices before they got to you?
The problem is with a big trend in society that we want to be listened to and watched, because it makes life more convenient on a personal level. Even HN users will happily let in multiple surveillance robots into their homes because they are comfortable with the personal decision.
But it's NOT a personal decision. When we have a society that so willingly accepts and even desires to live in a surveillance state, well, that's a problem. This is a direct path to a totalitarian surveillance state that would be much much more invasive than anything written about in 1984. We should be working to avoid that world, not invite it in as fast as we can open the door.
The question is about our society, and government+corporate control. In a society where everyone accepts 5-10 different listening devices into their homes, a system is being built to listen to every thing we say and watch everything we do. How many different manufacturers built all the microphones and cameras that are in the same room as you and also connected to the internet? How many countries had their hands on those devices before they got to you?
The problem is with a big trend in society that we want to be listened to and watched, because it makes life more convenient on a personal level. Even HN users will happily let in multiple surveillance robots into their homes because they are comfortable with the personal decision.
But it's NOT a personal decision. When we have a society that so willingly accepts and even desires to live in a surveillance state, well, that's a problem. This is a direct path to a totalitarian surveillance state that would be much much more invasive than anything written about in 1984. We should be working to avoid that world, not invite it in as fast as we can open the door.
> But it's NOT a personal decision.
> When we have a society that so willingly accepts and even desires to live in a surveillance state, well, that's a problem. This is a direct path to a totalitarian surveillance state that would be much much more invasive than anything written about in 1984.
The cognitive dissonance in these two sentences is staggering.
> When we have a society that so willingly accepts and even desires to live in a surveillance state, well, that's a problem. This is a direct path to a totalitarian surveillance state that would be much much more invasive than anything written about in 1984.
The cognitive dissonance in these two sentences is staggering.
How so? I don't think so. Perhaps I wasn't clear. If you make a decision about what devices to buy, on a personal level, and you think that decision only affects you (a "personal decision"), that's not correct. Your decision to buy an Echo or use Siri affects me, too, and the rest of the people around you.
Every time someone decides to trade some of their privacy for some convenience, they are taking away other people's privacy too, including those of us who do not share the view that it's worth it for the convenience.
Every time someone decides to trade some of their privacy for some convenience, they are taking away other people's privacy too, including those of us who do not share the view that it's worth it for the convenience.
If my echo is listening to you, it's because you're in my house. So uh, keep out.
Oh, I didn't mean to suggest that your Echo was listening to me. What I was trying to say is that every purchase of an Echo is a signal to Amazon and to other big corporations that there is a market for these products. So they will improve the products and expand the market. I don't want that to happen; so it affects me in that way. Additionally, how long will it be until I basically can't go anywhere without there being an Echo in place? Must I stay at home and keep all electronics turned off, in order to avoid corporate surveillance robots? Will every cafe and grocery store also have them?
Edit: I'm not allowed to answer any more questions right now, sorry to Pyxl101 and others. Hacker News tells me "you are submitting too fast, please slow down". Maybe I'll be able to come back later and answer your questions.
Edit: I'm not allowed to answer any more questions right now, sorry to Pyxl101 and others. Hacker News tells me "you are submitting too fast, please slow down". Maybe I'll be able to come back later and answer your questions.
Big retailers are already running analytics on their video surveillance.
This is sort of a cheap shot but I am honestly curious, how do you reconcile this point of view with your goal of building an all seeing barometer?
This is sort of a cheap shot but I am honestly curious, how do you reconcile this point of view with your goal of building an all seeing barometer?
Yes, that is actually a very good question. It's true that I create weather forecasting systems that rely on barometric pressure data that's collected from smartphones, and that those systems are privacy-sensitive.
It's a difficult line, of course. My goals are to reduce the effects of global climate change by better understanding the atmosphere. If we can provide more accurate wind speed information to wind farms, more accurate solar irradiation information to agriculture businesses, etc, then we can radically improve the world's preparedness for large scale global climate change.
For me, the issue here is deciding which problem is more important to work on. Mitigation of disastrous effects of climate change, or choose to not use any sensor data from smartphones due to my privacy concerns. So far I have aired on the side of climate change being a bigger problem, and that I have a helpful set of work that can make a difference, so I will do my work and hope that it helps.
It's a difficult line, of course. My goals are to reduce the effects of global climate change by better understanding the atmosphere. If we can provide more accurate wind speed information to wind farms, more accurate solar irradiation information to agriculture businesses, etc, then we can radically improve the world's preparedness for large scale global climate change.
For me, the issue here is deciding which problem is more important to work on. Mitigation of disastrous effects of climate change, or choose to not use any sensor data from smartphones due to my privacy concerns. So far I have aired on the side of climate change being a bigger problem, and that I have a helpful set of work that can make a difference, so I will do my work and hope that it helps.
I think it's a fair question, and I'll remark that I think it's a shame that we have to distrust everyone by default because there are a number of potentially wonderful things that can be done such as pressure.net with this kind of data. As far as that goes, I definitely prefer and would be more trusting of someone who is mindful of privacy concerns than someone like Larry Ellison who I believe would squeeze every nickle of profit out of the same types of projects without regard for anyone's privacy.
There is already a huge market for modern, high end mobile phones that passively record the environment constantly, in order to wake up and respond when their user says "Hey Siri" / "Ok Google" / "Hey Cortana". Users tend to carry those with them everywhere.
I see that your company plans to "build[] an open platform for atmospheric data collection using smartphone sensors". It looks like you support Apple and advertise their products on your company's website: https://www.pressurenet.io/blog/iphone-6-has-barometer/
"We’re excited to start including iPhones in our study of the atmosphere!"
If you believe that "every purchase[] is a signal", then what signal are you sending about Apple iPhones?
I have not researched it in detail, but it seems like you're relying on data collection from large networks of smartphones in order to put together accurate weather forecasts. That's cool! But I find it hard to reconcile with the view that smartphone data collection (from people who volunteer to participate, or who use a product that has a collection feature) is invasive.
I see that your company plans to "build[] an open platform for atmospheric data collection using smartphone sensors". It looks like you support Apple and advertise their products on your company's website: https://www.pressurenet.io/blog/iphone-6-has-barometer/
"We’re excited to start including iPhones in our study of the atmosphere!"
If you believe that "every purchase[] is a signal", then what signal are you sending about Apple iPhones?
I have not researched it in detail, but it seems like you're relying on data collection from large networks of smartphones in order to put together accurate weather forecasts. That's cool! But I find it hard to reconcile with the view that smartphone data collection (from people who volunteer to participate, or who use a product that has a collection feature) is invasive.
Meteorological data collection is probably opt-in, and pressure+gps data is less invasive than speech+gps data.
Variations of this argument are everywhere though, for every product you may not like. Everybody who buys a burrito at Chipotle sends a message that it's ok to put cilantro in rice. What happens when there aren't any cilantro free burritos? What happens when they put cilantro on pizza? Cilantro may or may not be a human rights violation, but it's a weak argument that people shouldn't buy a product you don't like because then that product will continue to be sold.
For a while it was considered creepy to have a camera on your phone at all times. There was no way to know if you were filming/photographing at any time.
People in certain secure facilities or attorneys in many courtrooms weren't allowed to bring in phones with cameras because of respect for the privacy/security of the information and people within.
Now there are no phones without cameras and the insistence on privacy in many of these facilities has been relaxed to saying "please don't take pictures". Not because it's not important, but because of consumer decisions on the whole demanding cameras, to the point where they are in every viable option and it's not feasible to ban them. And privacy/security are eroded.
So when you make a consumer choice like this you're giving our society a tiny little push in that direction. You're pushing always-on always-recording voice monitoring software in the most intimate places of our lives to become the new norm.
People in certain secure facilities or attorneys in many courtrooms weren't allowed to bring in phones with cameras because of respect for the privacy/security of the information and people within.
Now there are no phones without cameras and the insistence on privacy in many of these facilities has been relaxed to saying "please don't take pictures". Not because it's not important, but because of consumer decisions on the whole demanding cameras, to the point where they are in every viable option and it's not feasible to ban them. And privacy/security are eroded.
So when you make a consumer choice like this you're giving our society a tiny little push in that direction. You're pushing always-on always-recording voice monitoring software in the most intimate places of our lives to become the new norm.
It's not that simple in the United States, because of the 4th Amendment. A major factor in determining what would be an "unreasonable" search and seizure absent a warrant is what people reasonably expect when it comes to privacy.
If enough people put in listening devices that report to third parties in their homes, that can shift what is a reasonably expectation of privacy to where the government can put listening devices in homes without a warrant.
There was a good essay on this a while back by Alex Kozinski, the chief judge of the 9th Circuit Court of Appeals: http://www.stanfordlawreview.org/online/privacy-paradox/dead...
Spoiler warning: that contains a major spoiler for the terrific Isaac Asimov short story "The Dead Past".
If enough people put in listening devices that report to third parties in their homes, that can shift what is a reasonably expectation of privacy to where the government can put listening devices in homes without a warrant.
There was a good essay on this a while back by Alex Kozinski, the chief judge of the 9th Circuit Court of Appeals: http://www.stanfordlawreview.org/online/privacy-paradox/dead...
Spoiler warning: that contains a major spoiler for the terrific Isaac Asimov short story "The Dead Past".
I don't see it as people wanting to be listened to and watched. I see it as people automatically accepting new technology if it provides a novelty and / or a real benefit without considering consequences. It's also a status symbol to have the newest and coolest tech. Smart homes will simply be the new social status indicator. Technology is way too liberal, and it's leading us in a direction that we might not be able to revert back from.
While I agree with you, I think I am starting to suffer from a kind of "privacy violation revelations fatigue". I have read the article and thought "so here is another gimmick that steals away a bit of my privacy, so what? no big deal". And that's scary.
The problem is there is no coherent programme on how to counter the privacy-encroachment trend. There is a bit of general dissatisfaction, some idealists urging us to repent and leave the clouds and a good amount of profiteers trying to benefit from that dissatisfaction. Meanwhile the forces behind this trend are organized and powerful.
The problem is there is no coherent programme on how to counter the privacy-encroachment trend. There is a bit of general dissatisfaction, some idealists urging us to repent and leave the clouds and a good amount of profiteers trying to benefit from that dissatisfaction. Meanwhile the forces behind this trend are organized and powerful.
Another aspect to the problem is that honoring privacy as a human right is a social issue, not a technology issue.
The place to work on solving it (and, like all social issues, it won't be "solved," just "solved for now") is in the public and political spheres. We need to talk about this. We need to have the conversations that describe "what does privacy look like" and "how can we get the benefits from these gadgets while protecting our human rights".
Right now, no one's talking about a world in which you can have your cell phone listening to your conversations, while ensuring that private companies and government agencies can't make use of that willy-nilly. The place where those restrictions have to happen is in the laws we need to develop to keep them all in check.
We can't go back to a primitive, disconnected world, but right now, no one's leading us forward either.
The place to work on solving it (and, like all social issues, it won't be "solved," just "solved for now") is in the public and political spheres. We need to talk about this. We need to have the conversations that describe "what does privacy look like" and "how can we get the benefits from these gadgets while protecting our human rights".
Right now, no one's talking about a world in which you can have your cell phone listening to your conversations, while ensuring that private companies and government agencies can't make use of that willy-nilly. The place where those restrictions have to happen is in the laws we need to develop to keep them all in check.
We can't go back to a primitive, disconnected world, but right now, no one's leading us forward either.
> The place where those restrictions have to happen is in the laws we need to develop to keep them all in check.
IMO we need that, but we also can't rely on that. Things like the NSA have shown that the laws don't really matter. Yes, we should be striving for those laws, but we should also not depend on them, when they can so easily be ignored.
IMO we need that, but we also can't rely on that. Things like the NSA have shown that the laws don't really matter. Yes, we should be striving for those laws, but we should also not depend on them, when they can so easily be ignored.
There is a technological aspect, and that's putting the voice processing back into the device itself. We can still get the benefit of mass machine learning on failed voice samples by asking users to submit the failed sample only, playing it back for them so they know what is being sent, and deleting the sample once it has been processed. Then an updated speech model can be sent to the device. Or, just do the retraining on the device, too.
> The problem is there is no coherent programme on how to counter the privacy-encroachment trend.
IMO, there sort of is: FOSS
I have my own "Alexa". It uses FOSS, and recognizes simple commands, like: lights off. Play/pause music. Add something to the grocery list.
Unfortunately, it's a lot less feature-full. I really want an Alexa (or the like), but I personally refuse to get one until I can run it on my own servers, and block it from getting on the internet. And unfortunately, that doesn't look like it's gong to happen anytime soon.
I think the big problem is the inability to run these systems without "big data" behind them, and I'm not sure what's the answer to that gap.
IMO, there sort of is: FOSS
I have my own "Alexa". It uses FOSS, and recognizes simple commands, like: lights off. Play/pause music. Add something to the grocery list.
Unfortunately, it's a lot less feature-full. I really want an Alexa (or the like), but I personally refuse to get one until I can run it on my own servers, and block it from getting on the internet. And unfortunately, that doesn't look like it's gong to happen anytime soon.
I think the big problem is the inability to run these systems without "big data" behind them, and I'm not sure what's the answer to that gap.
What verifiably private options are there for speech-to-text? It seems like they'd have to be FOSS but most of the "FOSS" solutions I've seen still use a remote server for the actual processing.
It doesn't have to be FOSS, all you need is software designed to run offline, which can be network isolated, e.g. in a virtual machine. Dragon Naturally Speaking (from Nuance) in a Windows VM could perform the speech recognition and relay commands to a Linux VM.
See also the http://www.voxforge.org effort to aggregate OSS acoustic models.
See also the http://www.voxforge.org effort to aggregate OSS acoustic models.
> It doesn't have to be FOSS, all you need is software designed to run offline, which can be network isolated, e.g. in a virtual machine.
It depends on who you ask, some people may only be willing to run FOSS stuff |;)
But yeah, I've looked for a "offline: FOSS or not" solution, and haven't found much.
EDIT: I can't reply to you because thread is too deep I'm assuming, but: yeah, it looks like it does. Unfortunately I probably won't try this because it requires windows, and I'm not really wanting to set up a VM/Wine to accomplish this. But you are correct.
It depends on who you ask, some people may only be willing to run FOSS stuff |;)
But yeah, I've looked for a "offline: FOSS or not" solution, and haven't found much.
EDIT: I can't reply to you because thread is too deep I'm assuming, but: yeah, it looks like it does. Unfortunately I probably won't try this because it requires windows, and I'm not really wanting to set up a VM/Wine to accomplish this. But you are correct.
Dragon works offline, http://venturebeat.com/2014/08/22/nuance-dragon-dictate-4-is...
> What verifiably private options are there for speech-to-text?
Unfortunately not a lot. That's why I said it was "sort of" and answer.
I've tried http://julius.osdn.jp/en_index.php and https://github.com/cmusphinx/pocketsphinx in the past, with very limited results. Though it's been a while and they may have gotten better.
Unfortunately not a lot. That's why I said it was "sort of" and answer.
I've tried http://julius.osdn.jp/en_index.php and https://github.com/cmusphinx/pocketsphinx in the past, with very limited results. Though it's been a while and they may have gotten better.
FOSS is from another era. Back then Microsoft were the bad guys and FOSS was largely a response to their hegemony. Ubuntu bug #1 was "Microsoft has a majority market share" and it is kind of resolved now but increasingly irrelevant. Now it is a different kind of challenge.
True, if you are a geek, you can use open-source software to cobble together some resemblance of popular cloud services but under your own control. There are even detailed guides on how to do it (see also: https://github.com/sovereign/sovereign). But that's a lot of nuisance and in the end what you get is an inferior version.
True, if you are a geek, you can use open-source software to cobble together some resemblance of popular cloud services but under your own control. There are even detailed guides on how to do it (see also: https://github.com/sovereign/sovereign). But that's a lot of nuisance and in the end what you get is an inferior version.
> Now it is a different kind of challenge.
Howso? I don't see it as any different, but instead of Microsoft, there are multiple organizations.
> FOSS is from another era. I'm not sure what you mean by this. FOSS is still current, and quite active today. In fact, I'd say even moreso.
> But that's a lot of nuisance and in the end what you get is an inferior version.
I agree. That's what I do now, but it's not nearly as good. But what I was implying was that we have the potential to create a much better version, that's trustworthy.
Howso? I don't see it as any different, but instead of Microsoft, there are multiple organizations.
> FOSS is from another era. I'm not sure what you mean by this. FOSS is still current, and quite active today. In fact, I'd say even moreso.
> But that's a lot of nuisance and in the end what you get is an inferior version.
I agree. That's what I do now, but it's not nearly as good. But what I was implying was that we have the potential to create a much better version, that's trustworthy.
> While I agree with you, I think I am starting to suffer from a kind of "privacy violation revelations fatigue". I have read the article and thought "so here is another gimmick that steals away a bit of my privacy, so what? no big deal". And that's scary.
Is it though? To be honest, this article is pretty light on substance. I read through it all because the guy is a good writer, but the only revelation here is him realizing the microphone device he put in his kitchen is... gasp, listening to him.
If it turned out Amazon was actually recording and storing everything, that would be quite the revelation. If it turned out your data wasn't being deleted when Amazon said it was, that would be quite the revelation. Otherwise, there's just not a lot here other than a semi-humorous story about accidentally insulting a robot.
Is it though? To be honest, this article is pretty light on substance. I read through it all because the guy is a good writer, but the only revelation here is him realizing the microphone device he put in his kitchen is... gasp, listening to him.
If it turned out Amazon was actually recording and storing everything, that would be quite the revelation. If it turned out your data wasn't being deleted when Amazon said it was, that would be quite the revelation. Otherwise, there's just not a lot here other than a semi-humorous story about accidentally insulting a robot.
Sure, there is nothing of substance revealed in the article, but still the gist is that we should be vaguely concerned. My point is that I am tired of being vaguely concerned.
Privacy and security are quite similar when you think about implementation.
With respect to both, it's impossible to achieve it 100%. As the amount of applications running and the nuisance to which they run increase, it gets trivial to break either.
Developers have long agreed that security is an arms race you really can't win. It's easier to break into than it is to secure. What mostly stands in the way of security breaches is that it's generally frowned on to do and, failing that, is illegal.
The same might need to be true (or truer) for privacy. Privacy is harder to make people understand, though, given the muddiness of the area.
Privacy breaches will never be reined in, therefore. We need to deal with the new reality of ultimate transparency. This could be okay as long as everyone has the same access to that information.
Private information access inequality is the issue.
With respect to both, it's impossible to achieve it 100%. As the amount of applications running and the nuisance to which they run increase, it gets trivial to break either.
Developers have long agreed that security is an arms race you really can't win. It's easier to break into than it is to secure. What mostly stands in the way of security breaches is that it's generally frowned on to do and, failing that, is illegal.
The same might need to be true (or truer) for privacy. Privacy is harder to make people understand, though, given the muddiness of the area.
Privacy breaches will never be reined in, therefore. We need to deal with the new reality of ultimate transparency. This could be okay as long as everyone has the same access to that information.
Private information access inequality is the issue.
I take a slightly different tactic when arguing for privacy.
https://en.wikipedia.org/wiki/History_of_violence_against_LG...
It wasn't very long ago that the private lives of the LGBTQQ community risked physical violence.
Even today, people risk physical violence for their personal opinions: http://www.wnd.com/2015/11/black-lives-matter-critic-fired-f...
Privacy is the only tool that protects in a society where free speech is not respected. So no, you probably don't have any secrets worth protecting, but others do. It's these victims that matter- and you are turning a blind eye to the defenseless when you are saying your privacy isn't important.
https://en.wikipedia.org/wiki/History_of_violence_against_LG...
It wasn't very long ago that the private lives of the LGBTQQ community risked physical violence.
Even today, people risk physical violence for their personal opinions: http://www.wnd.com/2015/11/black-lives-matter-critic-fired-f...
Privacy is the only tool that protects in a society where free speech is not respected. So no, you probably don't have any secrets worth protecting, but others do. It's these victims that matter- and you are turning a blind eye to the defenseless when you are saying your privacy isn't important.
I don't have that view of HN, it's just that most of us understand that corporations are not evil by default, they are not part of a bigger scheme that wants to enslave the world.
That said, I believe that most HN are very privacy-aware. Indeed one of the reasons Echo wasn't a huge success is privacy invasion.
If you read the latest threads regarding Paris Attacks, you'll see that most HN users are ready to give up security for freedom (if there ever was such a trade-off, I'm not even sure anymore).
That said, I believe that most HN are very privacy-aware. Indeed one of the reasons Echo wasn't a huge success is privacy invasion.
If you read the latest threads regarding Paris Attacks, you'll see that most HN users are ready to give up security for freedom (if there ever was such a trade-off, I'm not even sure anymore).
> Indeed one of the reasons Echo wasn't a huge success is privacy invasion
Most modern phones passively listen to your voice too, and people carry those with them everywhere. They are present in the most intimate situations, rather than (e.g.) just in your living room. So I don't think there's a reason for people to feel differently about Echo than about Cortana on Xbox, or "Ok Google", or any other voice activated interface.
Most modern phones passively listen to your voice too, and people carry those with them everywhere. They are present in the most intimate situations, rather than (e.g.) just in your living room. So I don't think there's a reason for people to feel differently about Echo than about Cortana on Xbox, or "Ok Google", or any other voice activated interface.
> it's just that most of us understand that corporations are not evil by default
Perhaps not evil but they are amoral.
If a course of action is not illegal and would increase revenue then a company really should be doing it. Particularly if their competitors are doing so.
Perhaps not evil but they are amoral.
If a course of action is not illegal and would increase revenue then a company really should be doing it. Particularly if their competitors are doing so.
> it's just that most of us understand that corporations are not evil by default
That's not an objective fact; it's kind of condescending to present it that way. I would say that they corp's are amoral.
>they are not part of a bigger scheme that wants to enslave the world.
Corp's act in the self-interest of the directors without regard for whether their actions increase/decrease "world enslavement".
That's not an objective fact; it's kind of condescending to present it that way. I would say that they corp's are amoral.
>they are not part of a bigger scheme that wants to enslave the world.
Corp's act in the self-interest of the directors without regard for whether their actions increase/decrease "world enslavement".
There are also legal differences in corporate structures, e.g. benefit corporations, https://medium.com/@ystrickler/resist-and-thrive-1d36819853c...
"We want Kickstarter to be similarly in sync with society. Earlier this year we became a Public Benefit Corporation. This means we are legally obligated to consider the impact of our decisions on society, not just our shareholders. Though we are still a for-profit company, as a PBC it’s very different from the expectation that for profit companies maximize shareholder value above all. It acknowledges and embraces that you are a part of a larger community."
"We want Kickstarter to be similarly in sync with society. Earlier this year we became a Public Benefit Corporation. This means we are legally obligated to consider the impact of our decisions on society, not just our shareholders. Though we are still a for-profit company, as a PBC it’s very different from the expectation that for profit companies maximize shareholder value above all. It acknowledges and embraces that you are a part of a larger community."
Yeah, I know, there are exceptions and special cases, I'm talking about your ANSI standard corporation, and I think that skepticism is prudent until something like the PBC becomes the dominant corporate structure (or until you can buy iced tea in Hell, whichever comes first).
There is a significant difference between private companies collecting data and the state doing wholesale surveillance.
I don't particularly care for the first one, I do very much for the second. These are separate concerns. If we can't have data-driven gadgets because the state may get that data, we're solving the wrong problem: we need to get rid of the state.
I don't particularly care for the first one, I do very much for the second. These are separate concerns. If we can't have data-driven gadgets because the state may get that data, we're solving the wrong problem: we need to get rid of the state.
> There is a significant difference between private companies collecting data and the state doing wholesale surveillance.
I used to agree, but don't we know for certain that this is false now? With the Snowden documents, we know that the USA government, along with others, knows how valuable these private companies' data stores are and will hack their way in so that they can get access (if they're refused when they first ask politely).
I no longer think there's much real difference at all between the private companies collecting the data and then actively/passively sending it to the government, vs. the government doing all the collecting and analyzing themselves.
And the point that I was trying to make is that even if the private companies can collect and analyze the data safely (they can't), that still sets up a society that is willing to be watched. That is the hardest part for totalitarian governments to overcome; if you hand the USA or China or Russian governments a silver platter of a willing population that will accept the surveillance from one entity, they will accept it from another. That's a dangerous place to be.
I used to agree, but don't we know for certain that this is false now? With the Snowden documents, we know that the USA government, along with others, knows how valuable these private companies' data stores are and will hack their way in so that they can get access (if they're refused when they first ask politely).
I no longer think there's much real difference at all between the private companies collecting the data and then actively/passively sending it to the government, vs. the government doing all the collecting and analyzing themselves.
And the point that I was trying to make is that even if the private companies can collect and analyze the data safely (they can't), that still sets up a society that is willing to be watched. That is the hardest part for totalitarian governments to overcome; if you hand the USA or China or Russian governments a silver platter of a willing population that will accept the surveillance from one entity, they will accept it from another. That's a dangerous place to be.
A catchy way to say it: If you build it, the governments will take it.
>There is a significant difference between private companies collecting data and the state doing wholesale surveillance.
Not under the current rules where the data are treated as "business records" and subject not only to spying while en route, but also to administrative subpoena and all sorts of other "legal" and questionably legal collection methods employed by various divisions of the state.
>we need to get rid of the state.
For sure, the part that wants to collect all the data needs to go.
Not under the current rules where the data are treated as "business records" and subject not only to spying while en route, but also to administrative subpoena and all sorts of other "legal" and questionably legal collection methods employed by various divisions of the state.
>we need to get rid of the state.
For sure, the part that wants to collect all the data needs to go.
i understand your argument and the distinction it makes, but unfortunately i think in a societal context, that ship has sailed.
the people chose to carry smartphones with them all the time, everywhere. that decision was given up without a fight, in fact it was welcomed as the best thing that has happened in the technology revolution to date.
not only has the developed world already made this decision, the developing world continues to make this decision on a day to day basis, and their choice is clear; devices on everyone, everywhere.
the people chose to carry smartphones with them all the time, everywhere. that decision was given up without a fight, in fact it was welcomed as the best thing that has happened in the technology revolution to date.
not only has the developed world already made this decision, the developing world continues to make this decision on a day to day basis, and their choice is clear; devices on everyone, everywhere.
>This is a direct path to a totalitarian surveillance state...
My critique of this argument is that it has no bounds. Totalitarian surveillance states are very possible without modern (2000+) electronic devices and have existed for a good half century. To add to that, there are many other technologies that are essential to the kind of centralized bureaucracy that totalitarian states generally use. Without electronic communication, it would be extremely difficult to disseminate policy. Without electronic storage, it would be very hard to collate descriptions of suspects and centralize information. The parts of the Catholic church of the middle ages would very much have liked to run a totalitarian state - but it was beyond the technology of the time.
So, if you think we should oppose technology that allows states to survival and terrorize their citizens, there is a longer list to go after: police, vehicles, computers, electricity, etc. All of these technologies gave rise to fears that they would restrict freedom and those fears were ultimately realized. In many ways, we are far less free than people who lived in societies without electricity or cars or any of those things. However, we are also safer from many groups that used to use their freedom to take advantage of others (though not all, obviously).
I agree that this kind of electronic surveillance (or, more specifically, the ability for machines to collect and collate information) is transformative. It's similar to other technologies that changed things - the telegram, electricity, plumbing, etc. It will alter the balance of power and we, as citizens, should think about how we want this technology used and not used. However, I find the idea that this technology _in particular_ is any more or less totalitarian than ones that have come before it to be silly on its face.
My critique of this argument is that it has no bounds. Totalitarian surveillance states are very possible without modern (2000+) electronic devices and have existed for a good half century. To add to that, there are many other technologies that are essential to the kind of centralized bureaucracy that totalitarian states generally use. Without electronic communication, it would be extremely difficult to disseminate policy. Without electronic storage, it would be very hard to collate descriptions of suspects and centralize information. The parts of the Catholic church of the middle ages would very much have liked to run a totalitarian state - but it was beyond the technology of the time.
So, if you think we should oppose technology that allows states to survival and terrorize their citizens, there is a longer list to go after: police, vehicles, computers, electricity, etc. All of these technologies gave rise to fears that they would restrict freedom and those fears were ultimately realized. In many ways, we are far less free than people who lived in societies without electricity or cars or any of those things. However, we are also safer from many groups that used to use their freedom to take advantage of others (though not all, obviously).
I agree that this kind of electronic surveillance (or, more specifically, the ability for machines to collect and collate information) is transformative. It's similar to other technologies that changed things - the telegram, electricity, plumbing, etc. It will alter the balance of power and we, as citizens, should think about how we want this technology used and not used. However, I find the idea that this technology _in particular_ is any more or less totalitarian than ones that have come before it to be silly on its face.
Pre-automation surveillance states were people and paper-intensive. They didn't scale. The most powerful analytics were out of their reach. They couldn't sweep up everything and discover what was important. And, in the end, they were overthrown by a combination of discontent, internal sabotage, and a variety of external influences.
Be that as it may, the FBI isn't above reaching back to the old ways. They run 15,000 paid informants nationwide, backed by the information dredged up by pervasive surveillance. Parallel construction is just the beginning of what that cyberspace/meatspace combination is capable of.
With the NSA and pervasive surveillance, it is possible to build an eternal, indestructible static system, governed by an elite, and with the appearance of representation.
Be that as it may, the FBI isn't above reaching back to the old ways. They run 15,000 paid informants nationwide, backed by the information dredged up by pervasive surveillance. Parallel construction is just the beginning of what that cyberspace/meatspace combination is capable of.
With the NSA and pervasive surveillance, it is possible to build an eternal, indestructible static system, governed by an elite, and with the appearance of representation.
>Pre-automation surveillance states were people and paper-intensive. They didn't scale.
Tell that to people who lived in eastern block countries.
I agree that this technology, like all communication technology, makes it easier for governments to repress their people. However, I don't think there's any reason to believe this is the straw that finally subjugates all mankind under tyrannical government or that this technology will be any different than previous advances. As I said before, this is only one of many technologies that are necessary to run the theoretical nightmare scenario you've outlined.
The main difference, from my point of view, is that that other technologies are older and the doomsday scenarios predicted with the rise of telephones, computers and other advances have not come to pass. At the same time, we've had plenty of time to appreciate the advantages of older technology and balance its use in society.
For the recent Paris terror attacks, at least some of the planning was done over text messages. The text messaging system is a better fit for the kind of dystopic observation you're describing: the infrastructure is more centralized, there is lots of legal precedent for observation, there are weak safeguards and no fancy voice recognition is necessary. Of course, the only way we know about the text messages is that they found a physical phone - because despite 20 years of commercial availability - such monitoring is not in place for text messages.
Tell that to people who lived in eastern block countries.
I agree that this technology, like all communication technology, makes it easier for governments to repress their people. However, I don't think there's any reason to believe this is the straw that finally subjugates all mankind under tyrannical government or that this technology will be any different than previous advances. As I said before, this is only one of many technologies that are necessary to run the theoretical nightmare scenario you've outlined.
The main difference, from my point of view, is that that other technologies are older and the doomsday scenarios predicted with the rise of telephones, computers and other advances have not come to pass. At the same time, we've had plenty of time to appreciate the advantages of older technology and balance its use in society.
For the recent Paris terror attacks, at least some of the planning was done over text messages. The text messaging system is a better fit for the kind of dystopic observation you're describing: the infrastructure is more centralized, there is lots of legal precedent for observation, there are weak safeguards and no fancy voice recognition is necessary. Of course, the only way we know about the text messages is that they found a physical phone - because despite 20 years of commercial availability - such monitoring is not in place for text messages.
> The problem is with a big trend in society that we want to be listened to and watched, because it makes life more convenient on a personal level.
I would argue that it isn't convenience that attracts people, its narcissism. Society has been surrendering their privacy for years with Facebook. We are comfortable with it. We have seen a direct connection between sharing more (location, pictures, videos, etc) and getting more (food, taxi rides, sex)
So of course the next frontier is not having to share anything at all. The next frontier is listening and deciding. Its concierge services that bring you an array of options, specifically tailored to you. You are the center of their world, so as long as you keep making purchases and supplying them with information to better serve you.
I would argue that it isn't convenience that attracts people, its narcissism. Society has been surrendering their privacy for years with Facebook. We are comfortable with it. We have seen a direct connection between sharing more (location, pictures, videos, etc) and getting more (food, taxi rides, sex)
So of course the next frontier is not having to share anything at all. The next frontier is listening and deciding. Its concierge services that bring you an array of options, specifically tailored to you. You are the center of their world, so as long as you keep making purchases and supplying them with information to better serve you.
So in order to avoid a totalitarian state, no more personal decisions based on my own analysis of the risk/reward. Right, got it!
For me the advantage for Echo is not so much in speech recognition, but in hearing all sorts of other cheap household sensors. An Amazon dash button that outputs a high-pitch sound can be manufactured ~10-30 times cheaper than one that needs Bluetooth and WiFi. A cheap Smokealarm can become fully networked, a doorbell heard can activate added features, etc.....
Super cheap short range transmitters already exist which don't require an audio frequency listening device (garage door openers, wireless doorbells, X10 type wireless controllers). The only thing missing to provide the same functionality for those devices as Echo could be built with a cheap SDR.
The smoke alarm and doorbells are exceptions (and I guess there are several other good exceptions: clothes washer, clothes dryer, dishwasher, coffee pot) but I think I'd prefer a purpose-built listener with a high pass or notch filter.
The Echo may have some unintentional funny failure modes, such as when a doorbell or other trigger sound plays on a TV commercial.
The smoke alarm and doorbells are exceptions (and I guess there are several other good exceptions: clothes washer, clothes dryer, dishwasher, coffee pot) but I think I'd prefer a purpose-built listener with a high pass or notch filter.
The Echo may have some unintentional funny failure modes, such as when a doorbell or other trigger sound plays on a TV commercial.
I have so many connected devices in my home. How do I determine which ones have microphones and which don't?
You can't. The answer is to reduce the number of connected devices.
Your refrigerator does not need networking capability. Nor does you wash machine or your toaster or your tig welder.
In fact, I would argue that even your display device (your "smart tv") should not have a network connection, but I think I'm in the minority there. For those that are interested, I have very good luck using "commercial displays" like the ones you see in airport signage. They are dumb. They are also fantastic and well engineered displays.
Your refrigerator does not need networking capability. Nor does you wash machine or your toaster or your tig welder.
In fact, I would argue that even your display device (your "smart tv") should not have a network connection, but I think I'm in the minority there. For those that are interested, I have very good luck using "commercial displays" like the ones you see in airport signage. They are dumb. They are also fantastic and well engineered displays.
> Your refrigerator does not need networking capability. Nor does you wash machine or your toaster or your tig welder.
Although you are correct, there's a lot of advantages that can be had with these devices being on a network.
I know this answer isn't for everyone, but I personally have a home-network dedicated to devices, and it's air-gapped from the internet. I don't really see any other solution to this (other than FOSS-everything), but I would love one.
Although you are correct, there's a lot of advantages that can be had with these devices being on a network.
I know this answer isn't for everyone, but I personally have a home-network dedicated to devices, and it's air-gapped from the internet. I don't really see any other solution to this (other than FOSS-everything), but I would love one.
Indeed!
Problem is that there exists people who try to convince us that we need a middleman between our networked devices and us - that we need to connect our devices not into our home network but with their servers.
The reality is that we do not need middlemen, the middlemen needs us such that they could steal the data, repackage it and sell it.
I will give one example that I have already given before.
Suppose you have an IoT device in your bedroom that uploads CO2 values (of course it may also do something useful too such us showing this data to you or regulating the ventilation).
Now the rate of CO2 production depends on bodily activities. More activity means more CO2 production. I suppose that you agree that having this information you more or less are capable to deduce when a couple has sex.
This means that we could calculate a metric how much sex is going on and relate it to specific user.
Suppose that we detect that rate of sex has gone down by 20 (a made up number dependant of our model). We can now sell this information.
This information is for example useful perhaps for psychologist who want to sell you counselling.
But it is even more interesting for divorce lawyers who now could prey on couples having period of difficulty in their sex lives.
Even more, this information could be made more valuable by some additional influence. For example feeding the user with articles related to marital happiness and sex life.
I leave the rest for you imagination.
I think that such devices are very usable, but the data should not leave our home.
Problem is that there exists people who try to convince us that we need a middleman between our networked devices and us - that we need to connect our devices not into our home network but with their servers.
The reality is that we do not need middlemen, the middlemen needs us such that they could steal the data, repackage it and sell it.
I will give one example that I have already given before.
Suppose you have an IoT device in your bedroom that uploads CO2 values (of course it may also do something useful too such us showing this data to you or regulating the ventilation).
Now the rate of CO2 production depends on bodily activities. More activity means more CO2 production. I suppose that you agree that having this information you more or less are capable to deduce when a couple has sex.
This means that we could calculate a metric how much sex is going on and relate it to specific user.
Suppose that we detect that rate of sex has gone down by 20 (a made up number dependant of our model). We can now sell this information.
This information is for example useful perhaps for psychologist who want to sell you counselling.
But it is even more interesting for divorce lawyers who now could prey on couples having period of difficulty in their sex lives.
Even more, this information could be made more valuable by some additional influence. For example feeding the user with articles related to marital happiness and sex life.
I leave the rest for you imagination.
I think that such devices are very usable, but the data should not leave our home.
Cameras and accelerometers can be a rough stand-in for a mic if one is not available.
I don't think privacy is the main issue with this product launch, yes it is a major issue but we had these discussions already with Google Now, Cortana, etc. There's nothing new to discuss.
The main topics I am surprised:
1. Why do I need a dedicated device if any phone can do this too?
2. I think Google is capable of doing way more than Amazon AI-wise since they have more NLP experience and more data about us and the world
3. This is another time that Bezos launches a questionable product which will probably fail (Amazon Fire), the one success in the hardware space of Amazon is the Kindle though
The main topics I am surprised:
1. Why do I need a dedicated device if any phone can do this too?
2. I think Google is capable of doing way more than Amazon AI-wise since they have more NLP experience and more data about us and the world
3. This is another time that Bezos launches a questionable product which will probably fail (Amazon Fire), the one success in the hardware space of Amazon is the Kindle though
I am dreading the first time I visit someone with one of these. I wonder how they will respond to my request to turn it off? offense? understanding? pity and ridicule?
Amazon and Google have both figured out that the current commodity of value isn't oil, and isn't energy in general, it is information. The people with more information have an advantage over the people with less information. That advantage can be tactical, commercial, or personal. So collecting information while being helpful gives you a much better asset than simply being helpful does.
We've read stories of cops misusing information databases to check up on their ex-spouses or future dates, Google SREs reading people's mail, and NSA analysts passing around "juicy" intercepts with prurient but no security value. We've got people on the other side of these piles of information and those people are fallible, and susceptible to bribes, and generally susceptible to poor judgement.
What is worse, is that the "service" that something like Alexa offers is pretty credibly offered in a modest cluster of modern machines with GPUs. I would expect that a 32 node Jetson cluster could provide reliable general speech recognition and execution. But the illusion is that you need a "big cloud" of machines to do this. You don't.
So I'm all in favor of these interesting technologies helping folks out, but I really wish we would step past 'cloud' and into a 'house cluster' which, like your furnace or HVAC system, does the work locally and protects your privacy. It is a company I have seriously considered starting twice now. Even in the US people can get multi-megabit connectivity to the Internet from their home, there is no reason any more why you shouldn't be able to access your pictures, your media, your email, and communities by talking to your server in your house. The challenge is turning it into an appliance. That is doable I believe.
Amazon and Google have both figured out that the current commodity of value isn't oil, and isn't energy in general, it is information. The people with more information have an advantage over the people with less information. That advantage can be tactical, commercial, or personal. So collecting information while being helpful gives you a much better asset than simply being helpful does.
We've read stories of cops misusing information databases to check up on their ex-spouses or future dates, Google SREs reading people's mail, and NSA analysts passing around "juicy" intercepts with prurient but no security value. We've got people on the other side of these piles of information and those people are fallible, and susceptible to bribes, and generally susceptible to poor judgement.
What is worse, is that the "service" that something like Alexa offers is pretty credibly offered in a modest cluster of modern machines with GPUs. I would expect that a 32 node Jetson cluster could provide reliable general speech recognition and execution. But the illusion is that you need a "big cloud" of machines to do this. You don't.
So I'm all in favor of these interesting technologies helping folks out, but I really wish we would step past 'cloud' and into a 'house cluster' which, like your furnace or HVAC system, does the work locally and protects your privacy. It is a company I have seriously considered starting twice now. Even in the US people can get multi-megabit connectivity to the Internet from their home, there is no reason any more why you shouldn't be able to access your pictures, your media, your email, and communities by talking to your server in your house. The challenge is turning it into an appliance. That is doable I believe.
"So I'm all in favor of these interesting technologies helping folks out, but I really wish we would step past 'cloud' and into a 'house cluster' which, like your furnace or HVAC system, does the work locally and protects your privacy."
This is the model, and it largely already exists.
If you're willing to give up the most candy and fluffy of high tech "features" (the ones that break all the time and are of questionable value anyway) you can have a very nice home control system that has no network connectivity and zero wireless emanations.
It's also more tasteful. LCD screens in the living area are the new formica.
This is the model, and it largely already exists.
If you're willing to give up the most candy and fluffy of high tech "features" (the ones that break all the time and are of questionable value anyway) you can have a very nice home control system that has no network connectivity and zero wireless emanations.
It's also more tasteful. LCD screens in the living area are the new formica.
The device does not communicate with amazon.com until you say "alexa" and the code/hardware for that is all done on the device itself. So its not listening and streaming everything, all the time. It is listening all the time, yes- But only for the word 'alexa' - If it hears that word, then it starts talking to amazon.com and starts doing voice recognition. This is very easy to verify yourself with a network monitor.
Do you ask people with iphones or androids to turn them off when you are close because its listening for "hey siri" or "ok google" ?
If you asked me to turn mine off when visiting, I would happily oblige you- And then label you as a nutcase who has lined their walls with tinfoil.
Do you ask people with iphones or androids to turn them off when you are close because its listening for "hey siri" or "ok google" ?
If you asked me to turn mine off when visiting, I would happily oblige you- And then label you as a nutcase who has lined their walls with tinfoil.
> If you asked me to turn mine off when visiting, I would happily oblige you- And then label you as a nutcase who has lined their walls with tinfoil.
That's an interesting response. So because someone does not like to have unknown third parties listen to everything that is said in a room they're right away tinfoil hatters?
That's an interesting response. So because someone does not like to have unknown third parties listen to everything that is said in a room they're right away tinfoil hatters?
No, because the device does not communicate with amazon.com until you say "alexa" and the code/hardware for that is all done on the device itself. So its not listening and streaming everything, all the time.
(in case you skipped that the first time)
(in case you skipped that the first time)
No, I didn't skip that. It's just that there is an awful lot of trust involved here and I personally would not like a 'live mike' on with a connection to a DC in a room where I'm talking to someone in private simply because I'd have to trust that software not to contain any bugs, backdoors, overrides or other tricks. And that's a guarantee you can't really make without a ton of reverse assembly.
I'm surprised at how trusting people are when it comes to tech like this.
Regular, definitely-not-tinfoil-hat types that I know have little pieces of tape over the cameras in their laptops.
I'm surprised at how trusting people are when it comes to tech like this.
Regular, definitely-not-tinfoil-hat types that I know have little pieces of tape over the cameras in their laptops.
I think jacquesm's question makes more sense combined with this (https://news.ycombinator.com/item?id=10611179) plus a possible distrust of closed software with automatic updates.
Edit: corrected link (was https://news.ycombinator.com/item?id=10605775)
Edit: corrected link (was https://news.ycombinator.com/item?id=10605775)
I fail to see the connection with a 'Secret pagan basilica in Rome', can you please explain?
Sorry, my phone's clipboard is very erratic and pasted the wrong link. It's kind of funny in a Dan Brown/Da Vinci Code sort of way, to think that there's a link between modern surveillance and ancient Roman religions.
The link was supposed to point to another comment in the same thread. I have corrected it.
The link was supposed to point to another comment in the same thread. I have corrected it.
But that's like saying that your telephone or PC does not communicate until you invoke it. Arguably, that may be the default mode of the devices, but it is not strictly true ("hackers", legal & illegal wiretaps, etc.). You're depending upon the device to behave as it should, but you don't have complete authority over the device.
> This is very easy to verify yourself with a network monitor.
Are you sure? Suppose, hypothetically, I was looking to circumvent this.
It would be extremely easy. I could monitor for key phrases (e.g. bomb, terror, NSA, freedom.) and then simply wait until the next "alexa" to send that recording to Amazon.
Are you sure? Suppose, hypothetically, I was looking to circumvent this.
It would be extremely easy. I could monitor for key phrases (e.g. bomb, terror, NSA, freedom.) and then simply wait until the next "alexa" to send that recording to Amazon.
> The device does not communicate with amazon.com until you say "alexa" and the code/hardware for that is all done on the device itself. So its not listening and streaming everything, all the time. It is listening all the time, yes- But only for the word 'alexa' - If it hears that word, then it starts talking to amazon.com and starts doing voice recognition. This is very easy to verify yourself with a network monitor.
My personal issue with this is: That could be changed at anytime without any warning. Yes, I tend towards the tinfoil side of things, but the fact is: You can't really always know that, unless you are consistently monitoring the connection.
My personal issue with this is: That could be changed at anytime without any warning. Yes, I tend towards the tinfoil side of things, but the fact is: You can't really always know that, unless you are consistently monitoring the connection.
I've got a Moto-X android phone and I changed its voice activation function to be the phrase "Kirk to Enterprise" (geeky yes, but also very unlikely to be spoken in public) and what I've found is that the limited ML classifier in the phone hits it regularly. I suppose I could try something in Klingon. In the referenced article, the unit activated unintentionally as well.
That is a nice way to say that your argument is unconvincing in that it depends on the ML classifier to recognize the 'wake' phrase reliably, and I have ample evidence that it has a number of false positives. And when it "wakes up" it is trying to figure out what you're asking it to do, and if you're not then you are perhaps in danger of it doing something you didn't intend. I eventually turned this feature off on my phone entirely, I could not make it reliable.
And I expect to hear interesting stories of that time when someone's phone called or did something unexpected, because the technology makes it inevitable.
That is a nice way to say that your argument is unconvincing in that it depends on the ML classifier to recognize the 'wake' phrase reliably, and I have ample evidence that it has a number of false positives. And when it "wakes up" it is trying to figure out what you're asking it to do, and if you're not then you are perhaps in danger of it doing something you didn't intend. I eventually turned this feature off on my phone entirely, I could not make it reliable.
And I expect to hear interesting stories of that time when someone's phone called or did something unexpected, because the technology makes it inevitable.
This is actually what we're doing at Plum. We're making WiFi and Bluetooth enabled dimmer switches that are running Linux on-top of an ARM9. The primary software for controlling it is written in Erlang and we're using distributed consensus for providing "advanced lighting configuration and control features". Your light switches form a cluster in your own home.
That's the first step (we're trying to launch a product) and ultimately the goal is enabling customers to completely sever the Plum cloud dependency. Right now if you want 100% of the features (schedules, scenes, provisioning, what-not), you have to connect them to the internet, but we want users to have all of the features without any need for Plum's servers. As it stands, about 40% of the features do not require Plum's cloud and actually don't even use it if it's available, so we're working in that direction.
We've also talked about open sourcing a subset of the cloud infrastructure so that users could prop-up their own servers if they really wanted "remote control" of lights (which does matter to people).
Privacy sensitive IoT devices are certainly possible but until more people care about their privacy, it will unfortunately be very niche and a bit of an after-thought to go the extra mile to provide services that can be decoupled from the "smart devices" in the home. Particularly so, considering there's a land grab happening in the IoT space right now and corporations are trying to dominate the home IoT platform.
Humans, in a capitalist society, pretty reliably follow "ask for forgiveness, not permission". Which is interestingly at odds with the more fringe ethical philosophies of free software, privacy respecting software, and generally "ethical" software (that obviously needs explication but I won't go into it here).
That's the first step (we're trying to launch a product) and ultimately the goal is enabling customers to completely sever the Plum cloud dependency. Right now if you want 100% of the features (schedules, scenes, provisioning, what-not), you have to connect them to the internet, but we want users to have all of the features without any need for Plum's servers. As it stands, about 40% of the features do not require Plum's cloud and actually don't even use it if it's available, so we're working in that direction.
We've also talked about open sourcing a subset of the cloud infrastructure so that users could prop-up their own servers if they really wanted "remote control" of lights (which does matter to people).
Privacy sensitive IoT devices are certainly possible but until more people care about their privacy, it will unfortunately be very niche and a bit of an after-thought to go the extra mile to provide services that can be decoupled from the "smart devices" in the home. Particularly so, considering there's a land grab happening in the IoT space right now and corporations are trying to dominate the home IoT platform.
Humans, in a capitalist society, pretty reliably follow "ask for forgiveness, not permission". Which is interestingly at odds with the more fringe ethical philosophies of free software, privacy respecting software, and generally "ethical" software (that obviously needs explication but I won't go into it here).
What kind of features beyond those that a normal dimmer provides do you add when you have a wifi/bluetooth enabled dimmer? Does that translate into 'you can control the light from your phone'? Or are there other things that I haven't thought of that a light can do other than being on/off or somewhere in between?
Responding to various conditions and sensors (in my case a legacy Kinect), sequenced timers, coordinated scenes across multiple lights, etc. My devices don't connect to the Internet to do it, but the local network is required. I use Hue and DMX-512 myself, but any Wifi-enabled light could benefit.
Nest-like machine learning (the thinking on which predates Nest) can later be added in a cloudless way that starts to anticipate what lights to turn on together, what actions should trigger what scenes, etc.
Presumably Plum has similar ideas.
Nest-like machine learning (the thinking on which predates Nest) can later be added in a cloudless way that starts to anticipate what lights to turn on together, what actions should trigger what scenes, etc.
Presumably Plum has similar ideas.
Lighting which slowly increases in intensity in concert with an alarm clock.
Home lighting which is activated by a motion sensor but doesn't blind you or awaken others but helps prevent you from stumbling through the home in the middle of the night.
Lighting which could be coordinated with media controls.
Simply more economical way to move or add an additional light switch than hiring an electrician to do it the old fashioned way.
Home lighting which is activated by a motion sensor but doesn't blind you or awaken others but helps prevent you from stumbling through the home in the middle of the night.
Lighting which could be coordinated with media controls.
Simply more economical way to move or add an additional light switch than hiring an electrician to do it the old fashioned way.
Schedules for when and how long to turn a light on, artificially intelligent schedule or scene recommendations based on data from the motion detection sensor (recos first because poltergeist lights are more irritating than your thermostat occasionally thinking you're not home when you are), integration between our led light ring and security products, scenes for different moods triggered via phone or via AppleTV or an alarm clock / schedule, integration with Amazon Echo to control lights, rooms, and scenes via voice; geo-fencing of mobile phone to control lights or scenes based on whether you're coming home or leaving, etc...
> We've also talked about open sourcing a subset of the cloud infrastructure so that users could prop-up their own servers if they really wanted "remote control" of lights (which does matter to people).
As someone who runs his own home-automation server: Have you thought about something like a stand-alone server, that I'm able to turn off net-access for (open-source or not)? I'm currently looking for something like that, and I'm not aware of anything that exists.
As someone who runs his own home-automation server: Have you thought about something like a stand-alone server, that I'm able to turn off net-access for (open-source or not)? I'm currently looking for something like that, and I'm not aware of anything that exists.
I make such a device. There are also expensive systems from AMX, Crestron, Control4 and others that presumably don't require an Internet connection. And you can run apps on a PC like LinuxMCE or Homeseer.
Interesting. Link? I would be interested in perusing your wares, sir!
http://www.nitrogenlogic.com/. The website needs an update and the ordering process could be better. It's a back burner project at the moment, but still available and getting occasional firmware updates as I find time.
https://youtube.com/tl880linux has demo videos.
https://youtube.com/tl880linux has demo videos.
No because the lightpads themselves are clustered, full-featured Linux machines in the form factor of a switch, they serve that purpose [of a server] within the home so you won't need a server internally at all.
But if you needed any access to the lights from outside the home, you would. In which case you can either colocate one or prop one up on AWS to serve as the remote command bus. Plum provides that right now but I want to, at some point, enable folks to do it themselves.
Or if you really want to, run the server in-house and port forward. That could work too.
But if you needed any access to the lights from outside the home, you would. In which case you can either colocate one or prop one up on AWS to serve as the remote command bus. Plum provides that right now but I want to, at some point, enable folks to do it themselves.
Or if you really want to, run the server in-house and port forward. That could work too.
Is this you: http://plumlife.com/ ?
Interesting. The pricepoint is a little high, but I didn't know that they were full linux-clusters. I run my own home-automation server in-house, so I could use this. I see that the android-client is in the works. Is that still the case?
Interesting. The pricepoint is a little high, but I didn't know that they were full linux-clusters. I run my own home-automation server in-house, so I could use this. I see that the android-client is in the works. Is that still the case?
Yes that's us. Android app will definitely come (I'm the Director of Software and I'm an Android user) but it's going to follow the iOS app which is what we're focusing on / nailing down currently.
After training, you could likely do this on a single node. You don't need that much compute for speech to text and then information retrieval.
There are economies of scales to centralized cloud hardware and software services and more importantly to centralized information integration that, combined with the relative difficulty of valuing the price of the privacy we sacrifice, make private clusters an unfeasible market outcome. Cloud is inevitable at this point and I really don't think there's any way of getting around it.
OK, so I'm a privacy fanatic. However, I'm not very troubled by Echo, because two-way verbal interaction is a core feature. So users know that they'll be monitored. There is the concern about loss of third-party privacy. Guests might not know that they're being monitored. Things that listen and watch without warning (such as some "smart" TVs, apps and browser extensions) are far more troubling.
But of course, there's also the concern that adversaries will intercept surveillance data.
But of course, there's also the concern that adversaries will intercept surveillance data.
So here's my confusion. CPU prices are getting lower and processing power is getting higher as time goes on.
We can emulate entire operating systems in a web browser now.
You can fit an entire routable, navigable map of the entire world on a mobile phone or usb stick. Every single named place and every single path or road between them on the planet on a phone, offline.
Why are we still thinking that we need the cloud to process speech? Why not do all the listening, all the private bits, locally, and optionally connect to specific services (Music, Shopping, hotels etc) as and when.
Why not?
We can emulate entire operating systems in a web browser now.
You can fit an entire routable, navigable map of the entire world on a mobile phone or usb stick. Every single named place and every single path or road between them on the planet on a phone, offline.
Why are we still thinking that we need the cloud to process speech? Why not do all the listening, all the private bits, locally, and optionally connect to specific services (Music, Shopping, hotels etc) as and when.
Why not?
The cloud gives vendors a huge corpus of data to improve speech/query recognition accuracy and of course targeting of advertising...
Sure, they can use it to make it better, but I've yet to see proof that they need it to process your voice. I'm definitely not knowledgeable in this area, but I'd imagine that they could make an internetless standalone product that translates, but choose not to.
Some projects such as Jasper[1] actually do that.
[1] https://jasperproject.github.io/
[1] https://jasperproject.github.io/
I wouldn't use this as an example. Last I checked, Jasper still shelled out to Google/AT&T to do the voice-to-text translation
EDIT: Oh, it looks like they have Pocket-sphinx and Julius now for internet-less systems. Interesting....
EDIT: Oh, it looks like they have Pocket-sphinx and Julius now for internet-less systems. Interesting....
Because if you do not move data to off the household, you could not steal it, repackage it and sell it.
You also could not have control over the device and its user post purchase if the essential part of of the product is not under your direct control.
These are in my opinion two major forces that motivate the appearance of "cloud".
You also could not have control over the device and its user post purchase if the essential part of of the product is not under your direct control.
These are in my opinion two major forces that motivate the appearance of "cloud".
[deleted]
[deleted]
Privacy is an asset that people are willing to exchange for tangible benefits. Especially because most people don't really know how to value their privacy until it's been breached.
Create a system that realizes the tangible value of privacy and people will be much less likely to give it away.
What does that look like? That's the billion dollar question. For starters, here's an essay by Albert Wagner of USV that sets the stage for a solution (in a very abstract way): http://continuations.com/post/131372549150/land-capital-atte...
Create a system that realizes the tangible value of privacy and people will be much less likely to give it away.
What does that look like? That's the billion dollar question. For starters, here's an essay by Albert Wagner of USV that sets the stage for a solution (in a very abstract way): http://continuations.com/post/131372549150/land-capital-atte...
Ronald Arkin (the robot ethicist in the article) says, “You see this in sci-fi: Star Trek, Knight Rider. It’s the natural progression.”
Yikes. IMO, the presence of something futuristic on popular TV does not establish it as something to naturally progress to. I look to (good) sci-fi for ideas and thought experiments and, often, cautionary tales.
I don't have a big problem with the privacy issue here, because Amazon's ecosystem is opt-in. But I hope that ethicist is more critical-thinking than the snippet in the interview paints him to be.
Yikes. IMO, the presence of something futuristic on popular TV does not establish it as something to naturally progress to. I look to (good) sci-fi for ideas and thought experiments and, often, cautionary tales.
I don't have a big problem with the privacy issue here, because Amazon's ecosystem is opt-in. But I hope that ethicist is more critical-thinking than the snippet in the interview paints him to be.
I have an Echo in the kitchen, which I love. And other devices in the house that respond to "Ok, Google" or "Hey Siri!".
The conscious trade-off in my family is that voice control is useful, natural, and fun versus a somewhat low probability that amazon/google/apple are recording everything we say. The latter would be as catastrophic for those companies as the VW emissions scandal. Which of course happened, so it's just a low probability, not zero. Companies do dumb things and break the law all the time. The answer is to make sure that sensible laws, vigorously enforced, are in place.
I don't see a huge difference between an Echo and the camera/microphone in my laptop - they both could be listening all the time, and there's a certain level of trust that smarter people than me have checked and found nothing. Can anyone wearing a tin-foil hat in this thread point to credible evidence otherwise? That would be enough to make me change my mind, but I doubt there's anything I could say that would change yours.
The conscious trade-off in my family is that voice control is useful, natural, and fun versus a somewhat low probability that amazon/google/apple are recording everything we say. The latter would be as catastrophic for those companies as the VW emissions scandal. Which of course happened, so it's just a low probability, not zero. Companies do dumb things and break the law all the time. The answer is to make sure that sensible laws, vigorously enforced, are in place.
I don't see a huge difference between an Echo and the camera/microphone in my laptop - they both could be listening all the time, and there's a certain level of trust that smarter people than me have checked and found nothing. Can anyone wearing a tin-foil hat in this thread point to credible evidence otherwise? That would be enough to make me change my mind, but I doubt there's anything I could say that would change yours.
Technically speaking the Amazon Echo does not listen to your conversations and does not transmit them back to headquarters.
The Echo has a low power chip-mode which is able to do "basic" voice recognition and wake the device when the correct phase is spoken.
So the chips itself is interpreting everything you say looking for the correct wake-up phase, but the wrong ones aren't recorded, and most of the device's logic in in idle/sleep/hibernation.
Now, that being said, when the device is awoken anything you ask it IS transmitted back to Amazon HQ. For example "ok Alexa, what is the weather today in New York," the "ok Alexa" won't be transmitted (that just wakes the devices) but the "what is the weather in New York" is transmitted.
Most of these articles focus on the Amazon Echo "always listening" and while that is technically true, there is no known privacy implications to it (since it isn't recorded/transmitted).
The Echo has a low power chip-mode which is able to do "basic" voice recognition and wake the device when the correct phase is spoken.
So the chips itself is interpreting everything you say looking for the correct wake-up phase, but the wrong ones aren't recorded, and most of the device's logic in in idle/sleep/hibernation.
Now, that being said, when the device is awoken anything you ask it IS transmitted back to Amazon HQ. For example "ok Alexa, what is the weather today in New York," the "ok Alexa" won't be transmitted (that just wakes the devices) but the "what is the weather in New York" is transmitted.
Most of these articles focus on the Amazon Echo "always listening" and while that is technically true, there is no known privacy implications to it (since it isn't recorded/transmitted).
I think the problem is being framed incorrectly if we assume it's "Amazon's data", and they can do what they want with it.
I think the conversation needs to start with the assertion that "this is my data, and I'm letting Amazon use it".
I think the conversation needs to start with the assertion that "this is my data, and I'm letting Amazon use it".