Author: Akshat Rathi

Akshat Rathi is a senior reporter for Bloomberg News. He has previously worked at Quartz, The Economist and The Conversation. His writing has appeared in Nature, The Guardian and The Hindu. He has a PhD in chemistry from Oxford University and a BTech in chemical engineering from the Institute of Chemical Technology, Mumbai.

Ten tiny places that have their own domain names

Akshat RathiLeave a comment

Claiming to be a country is an easy task. But to make others accept your claim is a lot harder. Aspiring states need favours from great powers, or sometimes even celebrities, to establish their legitimacy. In the digital age, this starts with wanting a top-level domain name, such as the “.in” suffix for India.

The Scottish National Party, which is rooting for Scotland’s separation from the UK in a referendum to be held this year, launched a campaign in 2008 to get Scotland its own top-level domain name. After five years, the International Corporation for Assigned Names and Numbers (ICANN), a consortium that controls these suffixes, agreed to setup the “.scot” suffix.

As Nina Caspersen, who studies the politics of unrecognised states at the University of York, wrote on The Conversation this week, states such as Somaliland and Transnistria start by setting up websites where they claim to be “independent and democratic”. However, with websites ending in “.com” or “.org”, respectively, their claims look weak.

These countries would have had better luck had they been dependent regions to start with, because ICANN assigns domain names to dependent regions if they apply. That is why, although there are the 206 sovereign states (of which 11 are not recognised by the United Nations), there are 255 country-code domain names.

This can go too far. For example, Heard and McDonald Islands, a dependency of Australia in the Indian Ocean, has its own top-level domain name, “.hm”, even though its population is zero, and its official website uses Antarctica’s top-level domain name, “.aq”. And it’s not alone.

Here is a list of the ten least populated regions with their own top-level domain name:

Bar chart-01

First published at The Conversation.The Conversation

New cyber-attack model helps hackers time the next Stuxnet

Akshat RathiLeave a comment

Of the many tricks used by the world’s greatest military strategists, one usually works well—taking the enemy by surprise. It is an approach that goes back to the horse that brought down Troy. But surprise can only be achieved if you get the timing right. Timing which, researchers at the University of Michigan argue, can be calculated using a mathematical model—at least in the case of cyber-wars.

James Clapper, the director of US National Security, said cybersecurity is “first among threats facing America today,” and that’s true for other world powers as well. In many ways, it is even more threatening than conventional weapons, since attacks can take place in the absence of open conflict. And attacks are waged not just to cause damage to the enemy, but often to steal secrets.

Timing is key for these attacks, as the name of a common vulnerability—the zero-day attack—makes apparent. A zero-day attack refers to exploiting a vulnerability in a computer system on the same day that the vulnerability is recognized (aka when there are zero days to prepare for or defend against the attack). That is why cyber-attacks are usually carried out before an opponent has the time to fix its vulnerabilities.

As Robert Axelrod and Rumen Iliev at the University of Michigan write in a paper just published in the Proceedings of the National Academy of Sciences, “The question of timing is analogous to the question of when to use a double agent to mislead the enemy, where it may be worth waiting for an important event but waiting too long may mean the double agent has been discovered.”

Equations are as good as weapons

Axelrod and Iliev decided the best way to answer the question of timing would be through the use of a simple mathematical model. They built the model using four variables:

  1. Cyber-weapons exploit a specific vulnerability.
  2. Stealth of the weapon measures the chance that an enemy may find out the use of the weapon and take necessary steps to stop its reuse.
  3. Persistence of the weapon measures the chance that a weapon can still be used in the future, if not used now. Or, put another way, the chance that the enemy finds out their own vulnerability and fixes it, which renders the weapon useless.
  4. Threshold defines the time when the stakes are high enough to risk the use of a weapon. Beyond the threshold you will gain more than you will lose.

Using their model, it is possible to calculate the optimum time of a cyber-attack:

When the persistence of a weapon increases, the optimal threshold increases—that is, the longer a vulnerability exists, the longer one can wait before using it.

When the stealth of a weapon increases, the optimal threshold decreases—the longer a weapon can avoid detection, the better it is to use it quickly.

Based on the stakes of the outcome, a weapon must be used soon (if stakes are constant) or later (if the stakes are uneven). In other words, when the gain from an attack is fixed and ramifications are low, it is best to attack as quickly as possible. When the gain is high or low and ramifications are high, it is best to be patient before attacking.

How to plan the next Stuxnet

Axelrod and Iliev’s model deserves merit, according to Allan Woodward, a cybersecurity expert at the University of Surrey, because it fits past examples well. Their model perfectly predicts timing of both the Stuxnet attack and Iran’s counter to it.

Stuxnet was a worm aimed at interfering with Iran’s attempts to enrich uranium to build nuclear weapons. So, from an American perspective, the stakes were very high. The worm itself remained hidden for nearly 17 months, which means its stealth was high and persistence was low. According to the model, US and Israel should have attacked as soon as Stuxnet was ready. And indeed that is what seems to have happened.

Iran may have responded to this attack by targeting the workstations of Aramco, an oil company in Saudi Arabia that supplied oil to the US. Although the US called this the “most destructive cyber-assault the private sector has seen to date,” it achieved little. However, for Iran, the result mattered less than the speed of the response. In a high stakes case, the model predicts immediate use of a cyber-weapon, which is what happened in this case, too.

Although the model has been developed for cyber-attacks, it can be equally effective in modeling cyber-defense. Also, the model need not be limited to cyber-weapons; small changes in the variables can be made so that the model can be used to consider other military actions or economic sanctions.

Just like the atomic bomb

Eerke Boiten, a computer scientist at the University of Kent, said: “These models are a good start, but they are far too simplistic. The Stuxnet worm, for example, attacked four vulnerabilities in Iran’s nuclear enrichment facility. Had even one been fixed, the attack would have failed. The model doesn’t take that into account.”

In their book Cyber War: The Next Threat to National Security and What to Do About It, Richard Clarke and Robert Knake write:

It took a decade and a half after nuclear weapons were first used before a complex strategy for employing them, and better yet, for not using them, was articulated and implemented.

That transition period is what current cyber-weapons are going through. In that light, the simplicity of Axelrod and Iliev’s model may be more a strength than a weakness for now.The Conversation

First published at The Conversation. Image credit: usairforce

Nanoparticles cause cancer cells to die and stop spreading

Akshat RathiLeave a comment

More than nine in ten cancer-related deaths occur because of metastasis, the spread of cancer cells from a primary tumour to other parts of the body. While primary tumours can often be treated with radiation or surgery, the spread of cancer throughout the body limits treatment options. This, however, can change if work done by Michael King and his colleagues at Cornell University, delivers on its promises, because he has developed a way of hunting and killing metastatic cancer cells.

When diagnosed with cancer, the best news can be that the tumour is small and restricted to one area. Many treatments, including non-selective ones such as radiation therapy, can be used to get rid of such tumours. But if a tumour remains untreated for too long, it starts to spread. It may do so by invading nearby, healthy tissue or by entering the bloodstream. At that point, a doctor’s job becomes much more difficult.

Cancer is the unrestricted growth of normal cells, which occurs because mutations in normal cell cause it to bypass a key mechanism called apoptosis (or programmed cell death) that the body uses to clear old cells. However, since the 1990s, researchers have been studying a protein called TRAIL, which on binding to the cell can reactivate apoptosis. But so far, using TRAIL as a treatment of metastatic cancer hasn’t worked, because cancer cells suppress TRAIL receptors.

When attempting to develop a treatment for metastases, King faced two problems: targeting moving cancer cells and ensuring cell death could be activated once they were located. To handle both issues, he built fat-based nanoparticles that were one thousand times smaller than a human hair and attached two proteins to them. One is E-selectin, which selectively binds to white blood cells, and the other is TRAIL.

He chose to stick the nanoparticles to white blood cells because it would keep the body from excreting them easily. This means the nanoparticles, made from fat molecules, remain in the blood longer, and thus have a greater chance of bumping into freely moving cancer cells.

There is an added advantage. Red blood cells tend to travel in the centre of a blood vessel and white blood cells stick to the edges. This is because red blood cells are lower density and can be easily deformed to slide around obstacles. Cancer cells Have a similar density to white blood cells and remain close to the walls, too. As a result, these nanoparticles are more likely to bump into cancer cells and bind their TRAIL receptors.

Leukocytes are WBCs and liposomes are nanoparticles. King/PNAS

King, with help from Chris Schaffer, also at Cornell University, tested these nanoparticles in mice. They first injected healthy mice with cancer cells, and then after a 30-minute delay injected the nanoparticles. These treated mice developed far fewer cancers, compared to a control group that did not receive the nanoparticles.

“Previous attempts have not succeeded, probably because they couldn’t get the response that was needed to reactivate apoptosis. With multiple TRAIL molecules attached on the nanoparticle, we are able to achieve this,” Schaffer said. The work has been published in the Proceedings of the National Academy of Sciences.

While these are exciting results, the research is at an early stage. Schaffer said that the next step would be to test mice that already have a primary tumour.

“While this is an exciting and novel strategy,” according to Sue Eccles, professor of experimental cancer therapeutics at London’s Institute of Cancer Research, “it would be important to show that cancer cells already resident in distant organs (the usual clinical reality) could be accessed and destroyed by this approach. Preventing cancer cells from getting out of the blood in the first place may only have limited clinical utility.”

But there is hope for cancers that spend a lot of time in blood circulation, such as blood, bone marrow and lymph nodes cancers. As Schaffer said, any attempt to control spreading of cancer is bound to help. It remains one of the most exciting areas of research and future cancer treatment.The Conversation

First published at The Conversation.

Image credit: Cornell University