The Data Authenticity Protocol

We need a data authenticity protocol, stat!

On my journey to become more fluent with statistics and data analysis, I have been reading Sir David John Spiegelhalter’s book ‘The Art of Statistics.’ One of the take-homes on reading this book has been that the source of data is sometimes the greatest challenge to prove correct or authentic in origin.

It seems crazy to me that in a tech world where we have blockchain ledgers, PKI, Kerberos, etc. — we still do not have a way of proving raw dataset authenticity.

I hope to tackle this by identifying the problem and providing a straw-man solution. This post will not lead to a fully-fledged IETF RFC (yet) but will pave the way for a more formal proposal at a later date. ETA 2021

Beauty of Random - Discussion & Crypto

The Beauty of Random Ever wondered how random is random? Think about how random your day could be if you were to ignore your instincts and drop your habits. You could walk out of the door, take a different route, speak to a random stranger and make them smile. Take that thought and think about all the other random going on in the universe. You could be that person who was spoken to by a random stranger today.

gohugo behind apache with letsencrypt

Introduction So I learn’t pretty quickly that running ssl cert termination on an AWS ELB was not that smart from a cost perspective. Pre req’s:- Ubuntu 16.04+ Running Apache2 Certbot installed using instructions at Certbot EFF The http apache virtualhost config Before you start you will need to have a config setup similar to this:- NameVirtualHost *:80 <VirtualHost *:80> ServerName ServerAlias ProxyPreserveHost On <Proxy *> AddDefaultCharset Off Order deny,allow Allow from all </Proxy> ProxyPass / http://localhost:8080/ ProxyPassReverse / http://localhost:8080/ ErrorLog ${APACHE_LOG_DIR}/myblog-error.

gohugo in production

Introduction Running gohugo in production can be a little confusing. Not because the documentation is bad, because it really is good for an open source project. However, there are some things you should do, before running your site on a public facing platform. Pre req’s:- Ubuntu 16.04+ shell access to your node ssl cert (you don’t have to, but you know you should) hugo is installed and you have created a hugo user in your distro of choice.


Introduction Welcome to my new blog site. Powered using the gohugo project, that can be found at Why gohugo? Speed of Development. It took me an hours work to get this blog up and running. No database to maintain. The idea of maintaining all content via source control is extremely appealing. Its Golang based! Whats not to love? Speed, simplicity and open source. What to expect content wise?


Me A bag of stardust - living chemical reaction, after chemical reaction. An Engineering Manager with a passion for security, data and any science related subjects. A big geek, with an appreciation for pop culture nerd humour. An amateur cryptologist with a great passion for the history of cryptography. What I Do:- Question all the things. Always question all the things. Furious Yak Shaving. Collect metrics from everything, even Humans.