All Posts in Technology

|In: Organizational Effectiveness|Last Updated:

Some ideas pop up in every culture.

An old Islamic proverb advises you to “Trust in Allah, but tie your camel.” Former President Reagan translated the Russian version — “Trust but verify.”

And we chip-heads have extranets.

I gave my first speech about extranets to the Minnesota Telecommunications Association in 1993, not that I was smart enough to coin the term.

It was a simpleminded speech. The World Wide Web was just getting started, e-mail gateways were expensive and unreliable, and the office suite wars were still raging with no clear winner yet in sight. So I guessed wrong on many of the specifics. The key point was right, though. IT’s focus was typically internal — on WANs, which improved communications with ourselves, not on ways to improve communications with customers.

An extranet is a private network connection between two or more companies built around standard Internet technologies. I’ve recently moved from speechifying to setting one up, finding out first-hand that successful extranets have some tricky, trust-but-verify-related design issues. For example:

Security policy: Does yours describe the level of trust you assign to your customers’ employees? You can’t toss this problem over the transom to your security group either: Their job is to implement your security policy, not to create it.

Firewalls: You need one per company, of course, not a particularly sophisticated insight by itself. Each company needs to protect its network from its trusted partners. Don’t, by the way, economize by using the same firewall for your Internet and extranet connections. Each implements a different security policy. Internet users are total strangers. Presumably you trust extranet users more.

Authentication servers: If an extranet is a good idea for one customer it’s a good idea for lots of them. And once you’ve established an extranet connection to two customers, you’ve connected their networks to each other. They may even be competitors.

Authentication servers restrict the use of extranet connections to trusted individuals, protecting your customers from each other. A key point here: Your role is to encourage your customers to implement this technology. They each have to install and administer it. Otherwise you’ve taken ownership of their network security, along with the liability if something goes wrong.

In the Fun-You-Don’t-Need department, think about compatibility testing. Authentication servers require client software on every system that accesses the extranet. Different customers may choose different authentication servers.

Server ownership: In some cases this is a non-issue. What if you’re running a joint project, though? Like a lot of issues, this one’s easy to resolve if you remember it. One company or the other owns and administers the server and puts it inside their firewall.

Mobile users: This is the toughest design issue your network engineers face. When you’ve established a joint project team and a customer’s team comes to visit, you should be able to provide desks and network connections. They should be able to work without right-clicking on Network Neighborhood to reconfigure their IP settings.

Problem resolution: Don’t forget this one. Although every device on your extranet may be fully managed, the end-to-end connection is not. When something fails, nobody knows whose device is at fault. You’ll need reporting and escalation procedures. Probably, each company’s employees will call their own help desks. Instead of pointing fingers at each other, the help desks will work together to solve the problems.

And last but by no means least: Make sure everyone involved knows why you’re doing this. “Improving communications with our customers” sounds really great, but as Gertrude Stein said about Oakland, there’s no there there. If you think through the tangible benefits up front, everyone involved will know what they’re trying to accomplish.

Comments

|In: Industry Commentary|Last Updated:

An epoch ago, when I worked at the daily newspaper, one of my jobs was pricing “we-prints” — commercial print jobs we ran on our presses for inclusion in the newspaper. By printing an advertiser’s material along with the rest of the newspaper, we saved them the cost of inserting their promotion into it later.

Our general counsel explained the ground rules. Our distribution system, he explained, was a de facto monopoly. Our monopoly position meant we had to cover all of our real costs plus a profit margin — selling below cost would have violated the antitrust laws.

Until now, I’ve avoided writing about Microsoft’s difficulties with the Department of Justice, since this issue doesn’t affect how you manage your IT department. However, it does concern all of us in the industry — and the amount of point-missing and red-herring chasing on the subject seems so excessive that I’ve changed my mind. So here are a few popular ideas about the subject, and why they’re just plain wrong. Caveat: I’m not a lawyer — these are informed, rather than authoritative, opinions.

Popular Idea #1: The only monopolies are created by legislation. Ironically, I’ve seen this printed in the daily newspaper, a de facto monopoly in many cities. Most airports are now dominated by a single carrier. Most desktops run some version of Windows.

This particular bit of silliness is based entirely on ignorance. The antitrust laws were, in fact, created to control the de facto monopolies of the day — big oil companies — and their favorite anti-competitive tactic. Big oil sold gas below cost to drive competitors out of business. Then it jacked prices way up.

Popular Idea #2: We should let the market, not the government, decide. The market has decided. It’s given Microsoft a monopoly in the desktop operating system market, and Justice isn’t trying to reverse that decision. Nothing in any Justice Department action tries to give an artificial advantage to alternative operating systems.

Antitrust laws kick in when significant competition doesn’t exist in a market. IBM has given up on OS/2, Macintosh sales have collapsed, and most software developers publish solely on Windows. The notion that the operating system marketplace is competitive is a fantasy. Antitrust laws apply to this situation.

Popular Idea #3: Microsoft should be free to decide what is part of the operating system. If Microsoft had waited, merging Internet Explorer and Windows Explorer into a single Windows 98 utility, I doubt Justice or anyone else would have taken action.

Internet Explorer isn’t part of Windows 95, though, any more than it’s part of the other operating systems you can get it for. Proof: As astute observers have pointed out, Microsoft categorizes Internet Explorer under Business Software on its Web site. You won’t find it listed under Operating Systems, even as a hypertext link.

Internet Explorer is an application, not an OS function. Microsoft bundled some OS kernel updates and some Internet Explorer functions into the same DLLs. That’s all.

Popular Idea #4: Since Netscape gives away its browser too, why shouldn’t Microsoft? Because of its desktop OS monopoly, Microsoft gets to bundle Internet Explorer into PCs as they ship. Netscape’s customers have to download it. A free market doesn’t ask consumers to make purchase decisions based on the greater good, only their own — and even free, Netscape costs more than Internet Explorer.

The parallel with our we-print situation is exact: in both cases a monopoly in distribution confers an unfair advantage and requires the company with the monopoly to sell its product at a profit.

Popular Idea #5: Microsoft shouldn’t be penalized for its success. Microsoft isn’t being penalized for its success. Should it lose in court, Microsoft will have been penalized for violating the consent decree it signed, and the antitrust laws of this country.

Microsoft’s existence depends on enforcement of intellectual property laws. Just like you and me, it has to obey the others, too — it doesn’t get to pick and choose.

Comments