OpenIDEO is an open innovation platform. Join our global community to solve big challenges for social good. Sign Up / Login or Learn more

Compartments preventing compromise

As with a boat, your computer, and by extension your life, can be compartmentalized so that the failure of one part doesn't impact the rest.

Photo of Lukas à Porta
2 0

Written by

Sketch 1 (1,500 characters)

For this sketch, I was inspired by an analogy drawn between a boat and a computer (I unfortunately don't recall the source), where the captain is the operating system, the cruise members are the software and the hull is the hardware. But this analogy only illustrated how a computer functions, and was not relevant to information security. On a daily basis, I use virtualization to create isolated spaces, a concept that is common in information security (with application sandboxing ; containerization, etc.). It is an incredibly useful mechanism that is hard to explain to the layman. Large boats or cruise ships, with their compartments which can be isolated from each other in case of a leak, represents a good analogy. To take this idea further, I would port this image into Inkscape to make a digital rendering, enhancing the concept with a more detailed illustration and further examples.

Sketch 2 (1,500 characters)

Onions have layers and each layer represents a protection. Why not use onions as a way to illustrate virtualization and application sandboxing? These two mechanisms are incredibly useful in information security and are derived from the same idea : if your application or operating system get compromised, at least your entire system or datacenter won't. The next step would be to illustrate what is inside an onion. For this sketch, I was inspired by the Tor Project's logo. In a similar vein, I thought about demonstrating this concept with a cake, which also has layers.

What have you learned through this sketching process? (1,000 characters)

Through this exercise, I have learned that there are not a lot of resources available to visually demonstrate information security as related to compartmentalisation. For instance, Wikipedia doesn't have many illustrations available on this important topic.

Tell us more about you. (1,000 characters)

I am an open source promoter and I have recently been selected to be a technical writer for the Qubes OS project. I have a background in political science, and I am always looking for means to bridge the gap between fields so that everyone can benefit from tools available in other domains.

Why are you participating in this Challenge? (750 characters)

I am participating in this challenge because I believe it is of critical importance to illustrate concepts related to cyber security in a way that the general public can understand. I want to shed some light on obscure concepts using sound analogies, so that people can feel empowered to make the right decision in their digital lives and not be afraid or discouraged to proceed. Whatever I do within this context will prove useful for Qubes OS. I am happy to contribute to project that promotes digital security.

Website(s)

I have a personal website, https://refre.ch, which includes links to past articles I wrote. Recently, I wrote about hardware and firmware security and created custom illustrations : https://medium.com/linagora-engineering/https-medium-com-linagora-engineering-is-hardware-the-black-hole-of-computing-bdb9977ed5a8

What is your experience with the field of cybersecurity?

  • I have minimal experience and/or knowledge in the cybersecurity field.

What best describes you?

  • Other

How did you hear about this OpenIDEO Challenge?

  • In the news

Location: City

Asnières-sur-Seine, next to Paris (France)

Location: State / District

Hauts-de-Seine

Location: Country

  • France

2 comments

Join the conversation:

Comment
Photo of Dima Boulad

Hello Lukas à Porta  Happy to see your contribution to the Cybersecurity challenge. How would you consider pushing this idea further? We've had a large number of very interesting creations, have you had a chance to browse other submissions? There's a very interesting conversation around cybersecurity going on!

Photo of Lukas à Porta

Hello Dima Boulad, thanks for your interest. I will push the idea further by describing it better and to use it to illustrate the holistic security concept (which roughly states that the infosec and physical security should be "thought" together. Protect your life : protect your computer). Next, year, together with my dearest friend, I intend to work on a manual on infosec for children and to release it freely. I had this project for some times now.