Cloud Computing Thoughts

http://www.secureit.com/resources/Cloud%20Computing%20Mills%20Nixon%20Peabody%205-09.pdf

Here's an interesting presentation by a Law Firm concerning Cloud Computing:

I have no objection to using Clouds per se. I may choose to set up, say, an EverNote account or a Google Mail account, which puts my data on the net. But I chose to do that.

Logos4 should both offer the choice and explain the risks involved.

https://community.logos.com/discussion/comment/133811#Comment_133811

Choice is the key. There is a lot of personal information that can be in prayer lists, notes, etc... While I think that the concept is meant to be beneficial, there are very serious concerns with the privacy of the cloud...

I have heard two sides most frequent; first is basically who wants to hack a Bible software server and second don't put personal information on it; well both are pretty pathetic excuse to just fall in line and accept a problem.

First, a Bible software server with personal information and prayer lists on it, could very well be a prime target especially for political warfare... Politics have lead to breaking into offices and hacking email accounts, think a prayer list that can have very damaging information won't be a prime target.

Secomd if we don't use the feature, why have it available or why purchase the software if that is the argument. Just as there is a hidden option to set an update channel, there should be the same for what transfers through the cloud...

I know the argument is it saves Logos a lot of resources, both time and money... However if by some horrible occurence privacy is violated in such a way, lawsuits are much more costly and time consuming, even if they are won... The name damage alone would have potential buyers scared away...

DMB

https://community.logos.com/discussion/comment/133811#Comment_133811

I don't think you're a ninny. A good reason to have a 'forum' is just that; a means of discussing various issues and their perceived significance. When I chose to reply to this message, on my browser (Opera), I quickly moused up and enabled cookies and javascript and did a refresh to pick up the Logos-sign in cookie. I run as light as possible (cookies/scripts/plugins off) and for years had no trouble with junk email etc. When I install software, and the software wants an internet connect or 'act as a server', the answer is always 'no' unless I know why. I don't accept software developers' assumption of 'owning' my PC as a tradeoff for using their software. To me, that's like inviting a salesman over to see his wares, and him dirtying up my carpet (saying it's part of 'the deal'). Poor courtesy is poor courtesy and life is too short. That's why periodically Logos raises my eyebrows a bit. But as Dan recommended, I keep Logos' internet connect turned off, update every now and then, and am pleased as punch with Bible study and Logos. But I AM curious why Logos likes to know about people's prayer lists. Now that is a bit strange.

https://community.logos.com/discussion/comment/133816#Comment_133816

Also forgot one common rant for all the emphasis and protect the cloud talk that goes on.... Why not make the cloud truly useful... Since the all knowing cloud has our license information, why is it that I have to search cds/dvds for resources not on the server when I did a fresh install after cleaning my HDD? I still have to spend the time to find out what 11 resources are missing from my laptop that I have on my desktop... You'd think the cloud would be able to have a report that you can pull telling us what resources are missing....

https://community.logos.com/discussion/comment/133816#Comment_133816

I have heard two sides most frequent; first is basically who wants to hack a Bible software server and second don't put personal information on it; well both are pretty pathetic excuse to just fall in line and accept a problem.

Frank, you may characterize personal responsibility as "a pathetic excuse" but Logos has said since the beginning....don't store personal info in your notes if you aren't comfortable...it's just bible notes and not the level of security intended for things like bank transactions.

Do you email your bank card number and your pin to people?

If not, why not? Could it be because you know the security limitations of email and are taking some "personal responsibility"?

Personal responsibility is not a "pathetic excuse."

Sorry...

https://community.logos.com/discussion/comment/133818#Comment_133818

Since the all knowing cloud has our license information, why is it that I have to search cds/dvds for resources not on the server when I did a fresh install after cleaning my HDD?

I've reformatted 50 times since the beta cycle started and not once have I had to do that. All came from the cloud just fine.

https://community.logos.com/discussion/comment/133817#Comment_133817

I don't think you're a ninny. A good reason to have a 'forum' is just that; a means of discussing various issues and their perceived significance. When I chose to reply to this message, on my browser (Opera), I quickly moused up and enabled cookies and javascript and did a refresh to pick up the Logos-sign in cookie. I run as light as possible (cookies/scripts/plugins off) and for years had no trouble with junk email etc. When I install software, and the software wants an internet connect or 'act as a server', the answer is always 'no' unless I know why. I don't accept software developers' assumption of 'owning' my PC as a tradeoff for using their software. To me, that's like inviting a salesman over to see his wares, and him dirtying up my carpet (saying it's part of 'the deal'). Poor courtesy is poor courtesy and life is too short. That's why periodically Logos raises my eyebrows a bit. But as Dan recommended, I keep Logos' internet connect turned off, update every now and then, and am pleased as punch with Bible study and Logos. But I AM curious why Logos likes to know about people's prayer lists. Now that is a bit strange.

I don't think Logos wants to know anything about our Notes and Lists etc. They are presenting this as a service that allows me to use Logos from anywhere in the world (that can connect to the Net) and 'voila' my Notes and Lists and highlighting etc are available to me instantly. It's a noble purpose and I'm sure they have offered it sincerely.

However, I think they have also offered it naively and with too much 'innocence'. If this were a perfect world, it would be a great feature. But it's far from a perfect world and, as some of the above posts mention, Government agencies may gain access to our data with us never knowing. As Logos' cloud is actually Amazon's cloud, this risk is quite real - too real to ignore.

Of course, no-one should write slanderous or illegal notes. But personal notes and prayer lists could easily contain information that we simply want to remain private for no other reason than it's personal.

Logos needs to make this more sophisticated, provide use with choice that doesn't involve not using the software and, most important, explain upfront that using this software/feature will result in personal data being stored on someone else's servers. In fact it should seek permission to do this before switching the feature on.

https://community.logos.com/discussion/comment/133822#Comment_133822

Frank, you may characterize personal responsibility as "a pathetic excuse" but Logos has said since the beginning....don't store personal info in your notes if you aren't comfortable...it's just bible notes and not the level of security intended for things like bank transactions.

Until I read these threads (i.e. the ones appearing over the last few weeks) I didn't realise what was happening. Where do Logos say this? During the sales process? During the installation? When turning 'Use Internet' On?

If they do provide this info in these ways, then I am mistaken and happily withdraw some of the things I have said - I must have missed it. But if it's buried in the Licence agreement or is only on the Blogs/Forum/Wiki etc then i don't think they are saying it loud enough...

Matthew C Jones

Just some things to think about for those who think I'm being a ninny about security in this whole "move to cloud" game.

Your word, not mine [:D] In reality, the forum has worked very well for me on this issue.After very much hashing it out, my perspective has been successfully moved by Andy Bell's calm reasoning, to encourage the option of choosing a local (off-cloud) storage of personal data.

If I am about to board a 747 and notice my pilot has knocked back a row of beers [B] [B] [B] [B] [B] [B] [B] , I can choose not to board the plane, ask for the co-pilot to take charge, report the drunk pilot, or try to man the cockpit myself. If I choose the last option it will be the last option I choose. The air marshalls will not call me a "ninny" but a terrorist and deal with me harshly.

IMHO, cloud will be another option in the mix--it won't "take over the world." People are getting more concerned about their privacy, not less

This whole "privacy" issue is funny to me. I was raised in Japan, a country that is all about group-think. The reality of the Spiritual War Eph 6:12 being waged is masked by trivial concerns like "I wonder what AT&T, Coke or Logos are doing with my private data." Those who yell loudest for privacy are sure drawing a lot of attention to themselves. The Whack-a-Mole arcade game should teach us to duck when that hammer is coming down. The best defense against attack is to be invisible. An option for off-line (local) storage makes a lot of sense. Thanks to everybody for hashing it out for so long and to Andy Bell (Yes, that is his real name [:)]) for stating it quietly enough for me to hear it.

https://community.logos.com/discussion/comment/133839#Comment_133839

If it is of concern to people, vote on the uservoice suggestion so Logos for it.

http://logos.uservoice.com/forums/42823-logos-bible-software-4/suggestions/660833-add-an-option-that-allows-a-user-not-to-upload-the?ref=title

https://community.logos.com/discussion/comment/133822#Comment_133822

I have heard two sides most frequent; first is basically who wants to hack a Bible software server and second don't put personal information on it; well both are pretty pathetic excuse to just fall in line and accept a problem.

Frank, you may characterize personal responsibility as "a pathetic excuse" but Logos has said since the beginning....don't store personal info in your notes if you aren't comfortable...it's just bible notes and not the level of security intended for things like bank transactions.

Do you email your bank card number and your pin to people?

If not, why not? Could it be because you know the security limitations of email and are taking some "personal responsibility"?

Personal responsibility is not a "pathetic excuse."

Sorry...

Robert please don't take this the wrong way, but that is a pathetic apples to oranges comparison! Bank activity to a prayer list in a program created to track prayer??? Personal responsibility...??? Is it irresponsible of the user to want to use a program that they purchade for the full capabilities or irresponsible of the company for not allowing an opt out on specifics??? In L4 it is all or nothing. Either use L4 or not. Or either use internet function for things like study guides you create or not use them because Logos refuses to allow the end user the choice of what information is hovering in the cloud. Then the question arises if a user did not know from the beginning about the extent of the cloud, then later decides to turn the internet access off... Does any previouslycloud accepted information then get removed from the cloud??? I haven't noticed it happen when I tried turning off internet, all information still was available... So please Robert do not patronize me/those of us who has a serious concern with privacy and lack of control over it with something as ignorant as sending your bank account information through an email... Prayer Lists were supposed to have been created to be a journal record of prayer items thus we are just asking to be able to use this feature without putting potentially devastating information in a hackable cloud. Emails are not created to process bank transactions nor are they ever insinuated to be created for such use, other than by scam artists...

Also are we asking for a lot, look around at things like Facebook and the privacy issues they are being drilled about. By no means am I comparing what Logos is doing to Facebook or Google, however it very well could fall under some laws that many are calling for to be created, which would mandate software companies/service providers allow users full choice on the who, what, when, where and whys of what is in a cloud or records or being sold... It may very well be beneficial for Logos to implement as a precaution instead of scrambling if this type of legislation gets signed into law...

https://community.logos.com/discussion/comment/133828#Comment_133828

If they do provide this info in these ways, then I am mistaken and happily withdraw some of the things I have said - I must have missed it. But if it's buried in the Licence agreement or is only on the Blogs/Forum/Wiki etc then i don't think they are saying it loud enough...

Those concerned with privacy and confidentiality should always, always carefully read EULA's. Take responsibility folks. I'm not a huge privacy advocate, but I have refused software because of what an EULA said.The EULA is the primary means by which a company is bound to any legal responsibility. Not reading an EULA, is like not reading the warning label on a bottle of medicine (as a volunteer firefighter, I've seen the effects of that sending people to the emergency room.).

Logos' EULA is quite short and easy to read in comparison to most, and the section on confidential information is a heading, in large, blue, bold type. Even a cursory glance through the EULA would draw your attention to it. The fact of online data storage, is also discussed openly (no legalese, nor small print).

I found the EULA online in less than a minute by searching for it within Logos' web site.

EDIT: for some reason the forum software reduced the font size.

Oh, and here's the URL for the EULA:

http://www.logos.com/ArticleViewer/2090

For your convenience, I'll quote the relevant parts here:

First the warning to read the "warning label:"

Please note: This is the
contract that all users of Logos Bible Software must agree to in order
to use the software.

CAREFULLY
READ THE FOLLOWING LICENSE AGREEMENT. BY CLICKING ON THE "I ACCEPT THE
TERMS OF THE LICENSE AGREEMENT" BUTTON AND CLICKING THE NEXT BUTTON, YOU
ARE CONSENTING TO BE BOUND BY AND ARE BECOMING A PARTY TO THIS
AGREEMENT. THIS PRODUCT REQUIRES USER REGISTRATION AND WILL CEASE TO
FUNCTION IF USER REGISTRATION IS NOT CONFIRMED. IF YOU DO NOT AGREE TO
ALL OF THE TERMS OF THIS AGREEMENT, CLICK THE "CANCEL" BUTTON, AND, IF
APPLICABLE, RETURN THIS PRODUCT TO THE PLACE OF PURCHASE FOR A FULL
REFUND.

Next the section on on line data storage (this is the entire section):

ONLINE BACKUP

Data
you enter into the Software, including notes, settings, preferences, and
documents, will be automatically backed up to Logos.com over the
Internet, and downloaded to other instances of the Software logged in
using your email and password. This automatic synchronization helps you
access your content on multiple computers and may be used to let you use
your own data online. Logos will not share your data without your
permission, but may examine it programmatically for anonymous
statistical purposes or in order to provide technical support.

You are
responsible to keep the password associated with your Logos.com login
private. It is the primary means of security for data synchronized
through the Software.

Finally the entire section on Confidentiality (as if the above weren't enough):

CONFIDENTIALITY

The
Software contains trade secrets and proprietary know-how that belong to
us and it is being made available to you in strict confidence. ANY USE
OR DISCLOSURE OF THE SOFTWARE, OR OF ITS ALGORITHMS, PROTOCOLS OR
INTERFACES, OTHER THAN IN STRICT ACCORDANCE WITH THIS LICENSE AGREEMENT,
MAY BE ACTIONABLE AS A VIOLATION OF OUR TRADE SECRET RIGHTS.

This looks pretty easy to understand to me. If you don't like it, don't just complain, suggest change.

https://community.logos.com/discussion/comment/133874#Comment_133874

Frank,

I believe the last post pretty much outlines my point...

Quoting the EULA:

DO NOT STORE HIGHLY CONFIDENTIAL INFORMATION IN THE SOFTWARE. The Software is designed for consumer reference and study purposes, and while we will take all precautions to protect your data, we cannot ensure the level of security you would expect from online banking or other highly secure services.
You are responsible to keep the password associated with your Logos.com login private. It is the primary means of security for data synchronized through the Software.

The banking comparison that you thought was so "pathetic" was Logo's....not mine.

https://community.logos.com/discussion/comment/133822#Comment_133822

[quote]Frank, you may characterize personal responsibility as "a pathetic
excuse" but Logos has said since the beginning....don't store personal
info in your notes if you aren't comfortable...it's just bible notes and
not the level of security intended for things like bank transactions.

I've always thought it rather odd to put features into a piece of software and then ask users not to use those features, or refuse to be responsible for the results of users using those features. You can't have it both ways--you can't advertise your software as having all these really neat capabilities, and then say, "but we're not responsible if you actually use them." Either don't offer the features, and risk losing the business, or take the problems created by people actually using them seriously. Either Logos needs to take responsibility, and answer the sorts of questions contained in the article to its users, or Logos needs to allow users to keep their personal data--data they've entered--off the cloud.

The sum total of the "personal responsibility" argument is this: "I expect you to be personally responsible for the information you allow to be posted to a server you have no control over, but I will not give you the tools to control the flow of that information." If it doesn't seem to make any sense, that's because it doesn't, in fact, make any sense.

:-)

Russ

https://community.logos.com/discussion/comment/133878#Comment_133878

BTW, for anyone who's concerned about, there is a feature request out on uservoice.logos.com. The more people who vote for a privacy feature, the more likely Logos is to build it. I think it's important, probably the most important thing Logos can do right now, so I've put three votes on it.

:-)

Russ

https://community.logos.com/discussion/comment/133878#Comment_133878

I've always thought it rather odd to put features into a piece of software and then ask users not to use those features, or refuse to be responsible for the results of users using those features.

Russ, my brother...that's a straw man...not accurate at all.

They never said don't use notes.

They coded a notes feature into the software and said "this is how secure it is/isn't so don't store certain types of info there"

How is that saying "don't use this feature?"

C'mon...this is silly (that was intended for the whole thread and not you specifically) Logos has said repeatedly that their "notes" feature is akin to "your scribbled notes in the margin of your bible" and nothing more. And as everyone can see, they've been forthright from the beginning about what level of security the notes get...

Why all the complaining? I understand the idea that notes as they currently are doesn't "match my taste and preferences" because frankly the notes don't match what I'd like to see, but that's a matter of my own preference, not poor design or Logos not being responsive to their customers.

I've chosen to use the notes in the way that logos intended, and keep my private stuff private.

https://community.logos.com/discussion/comment/133900#Comment_133900

It still sounds like they want the best of both worlds without any sort of consequence to me. That's probably overstated, but it seems to me you can't have it both ways. You can't say here's a cool feature, but I don't want you to use it to full effect. ie, Notes may be a good example. The security part that I agree with what appears to be said or indicated is that "Don't use it for Private stuff" and we're not going to provide an option at this time and oh yeah if you do, you're on your own. It just seems like circular logic to me.

That said my general opinion is that this feature is important to me and I'm fine with agreeing to disagree.

ETA: This is of interest to me personally and professionally in that I am researching the Cloud Computing market for my company and I'm not quite sure how Logos arrived to their conclusions but that's their specific business .

Anthony H

https://community.logos.com/discussion/comment/133890#Comment_133890

I agree that personal responsibility it of paramount importance and requires the individual to be diligent and realistic about usage on any system -cloud or otherwise.

But the probability is that this issue will come to a head via Federal and State mandate, if not sooner, certainly later.

For "Logos Inc." not to keep their eyes on the "prevailing winds" (meaning potential legislation and enforcement of Federal and State privacy standard) would be fiscally irresponsible as this would require Logos to "back build" into the existing version(s) or push production to the next version to meet the "probably" imposed/enforced standards.

Right now attention is on social computing but the eventual progress and heat will be on anything "cloud".

That being said, the brunt of some of these issues may fall on the data service providers rather than solely on the shoulders of "Logos Inc." Those, shall we say, like Amazon... where I believe "our" data, in part, resides.

Nevertheless, punching holes in a "sinking ship" is not the way to drain the water out. (Logos is NOT the sinking ship...the stance on privacy responsibility is... that is either side.)

https://community.logos.com/discussion/comment/133839#Comment_133839

to encourage the option of choosing a local (off-cloud) storage of personal data.

Just to make sure that there is no misunderstanding - everyone's data is stored locally, all the time. It doesn't take an option to store local.

https://community.logos.com/discussion/comment/133864#Comment_133864

Or either use internet function for things like study guides you create or not use them because Logos refuses to allow the end user the choice of what information is hovering in the cloud.

One can turn off the internet connection and still create, store, update, modify study guides - again just making sure that users reading this thread are not misled.

https://community.logos.com/discussion/comment/133878#Comment_133878

I've always thought it rather odd to put features into a piece of software and then ask users not to use those features,

Again for accuracy, the only features that you lose by running off-line is the automatic synchronization of multiple instances of your application, the internet URL links (home page, sermon sites and Perseus), and free backup services.

Edit: just like any other software that updates via the internet, you
need to link to the internet occasionally to update software or download
resources available only via download.

https://community.logos.com/discussion/comment/133906#Comment_133906

You can't say here's a cool feature, but I don't want you to use it to full effect. ie, Notes may be a good example.

Again for clarity, the only functions of Notes that you lose by working off-line are: (1) automatic synchronization with your additional installations of the product (2) URL link functionality to web addresses and (3) a free data backup service.

https://community.logos.com/discussion/comment/133900#Comment_133900

[quote]They never said don't use notes. They coded a notes feature into the software and said "this is how
secure it is/isn't so don't store certain types of info there" How is that saying "don't use this feature?"

1. I've designed many networks, pieces of software, protocols, and other "stuff" over the years. If there's one thing I've learned, it's that people will use things to the extent possible, not the way you intended them to. In this case, I'm buying a piece of software to use it in the way the software is being advertised--and the advertisement says that I can use it to take notes about the Scriptures. Now what the EULA says is that you can take notes about the Scriptures, but you must not take certain types of notes about the Scriptures. For instance, you shouldn't use it for sermon preparation as long as there's a remote chance you might eventually want to publish a book of your sermons. If you put the notes for this sort of thing in Logos, the data is being handed over to someone else, and you've no clue what the back-end system is going to do with your data.

What does the EULA say about copyright for my notes?

2. You're assuming that you or I know what's "interesting." You say you "keep private stuff private." Now, tell me, what's your definition of "private?" As I've noted many times, most people have no clue about the power of meta-data, or what others can tell about what you're saying where. Since I know there are a lot of unintended consequences to releasing anything about me, I try to keep what's released to a minimum, or control it's scope and intent in strong ways.

So, do you think you understand all the uses of what you write, or say, or take notes on? If not, then how do you determine what's "private?" A lot of the problem here is you're mixing up what used to be called "private," what can really be known about you through information you would never consider "private." We used to have a program in the USAF called EEFIs, for instance, specifically because people just don't understand the power of combined snippets of information.

Is Amazon mining the data put up there through Logos? What does the EULA say about this?

3. A simple point you have apparently overlooked. If I must keep some notes in one piece of software, and other notes in another piece of software, then why use the notes feature at all? You make it sound like it's so simple to sort out what's "private" and what's not, and to keep these things in different files, copying links back and forth, and building cross references, etc. In other words, if I can't use the notes for all my notes, then I'm not using the feature the way it was intended.

[quote]Why all the complaining?

Because, unlike many others, I take the threat of a compromise of privacy seriously in many areas. Because, as an IT professional, I've seen what it can do to careers, to people's lives in general, and to entire companies.Many other thoughtful IT professionals have said the same thing, raised the same concerns, etc. For instance, I was just talking to a major customer of cisco's less than a week ago--not a financial organization, or anything like that. They deal with a lot of data you wouldn't consider "private." Well, they're in the process of "insourcing" some things they outsourced several years ago. Why? Partially because of a security breach. But it's not private data! Depends on how you define "private." Enough "public" data, and you might as well not even bother with "private" data any longer.

In the end, my default setting is "yellow alert." That means caution and thoughtful approaches. That means I don't say, "I don't care who knows what, except for these few pieces of my life," I say, "I don't want anyone to know anything about me if I've not specifically told them." I live in a different default world than you do, because I've seen, first hand, the damage not defaulting to protecting data can do to you.

So it comes down to this:

I have not seen one real reason why Logos won't provide the ability to store the data I put into the software wherever I would like to. You don't think it's a threat, fine, put it on the server. I do, fine, give me the option to store it locally. I've read all the threads on this, and the only reasons I've seen not to do this are:

1. "It will cost more to support." This is a red herring that has nothing to do with anything.

2. "Cloud is the future." And I have some great soon to be oceanfront property in Nevada I'd like to sell you, too. As an IT professional, I can tell you that cloud will enter the world as yet one more tool to solve a specific set of problems, not an end-all be-all to all problems.

3. "Just don't put your private data in there." Again, define "private." Why shouldn't all my data be private until I tell someone it's not?

Now, let me turn the question around: Why do you find it so unbelievable that Logos should allow users to store data they have entered where they want to? You'd rather see other features first? Well, I tend to think of privacy as the "killer app." If I can't trust you on that front, why should I trust you anyplace else?

Why doesn't Logos allow me to control my own data without resorting to simply not using the software?

Russ

P.S. You make it sound like you'd never write anything private in the margins of a Bible. In reality, people write private things there all the time. It's just that they believe they have control over the information written there--and control is the issue here, because privacy always comes back to control. Logos says, "we'll be glad to provide a place for you to enter your data, but we won't allow you to control the data you enter." That's completely different than writing notes in the margin of a Bible. In other words, it's dangerous to say, "Just use it like you'd use the margins of your Bible." Because you have less control over the data in Logos than you do the data in the margins of your Bible.

https://community.logos.com/discussion/comment/133936#Comment_133936

[quote]Again for accuracy, the only features that you lose by running off-line
is the automatic synchronization of multiple instances of your
application, the internet URL links (home page, sermon sites and
Perseus), and free backup services.

Sorry, but this is wrong. You also lose the automatic update of the software, downloading of new content, and probably other things. So, again--you can have privacy, you just can't buy any new content, nor get new updates pushed to you. In other words, you can't have privacy and use the software as intended.

All I ask is that the synchronization of data the user enters be untied from synchronizing the software. I really find it astounding that so many people here disagree with that idea, or think privacy is of so little use or import that they would argue against such a thing.

Russ

https://community.logos.com/discussion/comment/133938#Comment_133938

You can't say here's a cool feature, but I don't want you to use it to full effect. ie, Notes may be a good example.

Again for clarity, the only functions of Notes that you lose by working off-line are: (1) automatic synchronization with your additional installations of the product (2) URL link functionality to web addresses and (3) a free data backup service.

Again for clarity, you can't (1) get new books, (2) updated books/logos versions or (3) select what you want to send and/or pull.

ETA: Apologies, I didn't see Russ' 2nd response when I started the response. So I apologize for the dupe response.

Floyd Johnson

https://community.logos.com/discussion/comment/133900#Comment_133900

Logos has said repeatedly that their "notes" feature is akin to "your scribbled notes in the margin of your bible" and nothing more. And as everyone can see, they've been forthright from the beginning about what level of security the notes get...

Where has Logos said this? Some time ago, I suggested that this what notes should be - but I have never heard Logos say that was their goal. Now MJ (in another thread) suggests this too is not the case, but that notes should be akin to sticky notes, not marginal notes.

On the other hand, I don't go handing out my "note taking" Bible to everyone. I have several Bibles on my shelf that I feel very free in handing out, but I do not casually give out the Bible in which I take notes.

https://community.logos.com/discussion/comment/133934#Comment_133934

Or either use internet function for things like study guides you create or not use them because Logos refuses to allow the end user the choice of what information is hovering in the cloud.

One can turn off the internet connection and still create, store, update, modify study guides - again just making sure that users reading this thread are not misled.

I fully understand this... However for those that want to back the EULA as so explanatory, nowhere does it say in advance that you will be stuck paying for upgrade DVDs in the future just to keep your information secure. So the point is still Logos wants to sell the features, but not be straight forward from the jump that you can't use them and the program to its fullest and keep your information private. Personally the argument that you don't enter private data is utter stupidity in the sense of a business selling product. My point is not in regards to notes, sermons, handouts, etc... The most crucial part Prayer Lists... Why offer a feature that will obviously be private in nature and as stated earlier could if hacked cause severe pain, damages or embarrassment for persons on a prayer list. To argue don't put it on there nullifies the feature and again cause need for 3rd party application all for a silly desire to not allow the user the right to select what goes in the cloud and what does not...

https://community.logos.com/discussion/comment/133955#Comment_133955

Now MJ (in another thread) suggests this too is not the case, but that notes should be akin to sticky notes, not marginal notes.

I suggested this image in lieu of the images that Bob P. has provided. The image is for the purposes of convincing Logos that their design for notes should consider longer notes and primitive tables & graphics as essential elements. It has no direct relationship to the question of cloud computing and security. Indirectly the size of graphic image files could be an element of design consideration. Let's not conflate the 2 independent threads.

https://community.logos.com/discussion/comment/133874#Comment_133874

Ok so let's look at it this way, what defines "documents"? We want to throw the EULA as so simple, easy and covering the issue... Define "Documents" - no where does it define what that details... It does not once mention Prayer Lists which are a separate feature, unless Logos considers them defined under documents....

If personal prayer requests got hacked, one can point to the fact that Prayer Lists is not mentioned and cause a lot of nonsense for Logos. This is open to a lot of questioning and potential mess... Why not be prepared and not responsive? What happens if I decide I'm done with Logos and want my information out of the cloud? How do I get it out of the cloud or can I? This is not addressed in the EULA, so their is a lot to question and a lot that needs more than a generic answer.

Unfortunately this is one huge area that has us debating whether or not to suggest the purchase to our Bible College Students, there was never a question with L3, because there was user control of information and what was being installed and what was not...

Hopefully Logos gets on the ball with it and doesn't get caught off guard by legislation....

And as for your don't complain - suggest change... You were around through the whole Beta process when this was heavily debated, complained about and many suggestions were made to make the user comfortable with what was being synced, was in the cloud and what was being downloaded and installed... All rejected by Logos under the banner of cost savings on Tech Support....

If they do provide this info in these ways, then I am mistaken and happily withdraw some of the things I have said - I must have missed it. But if it's buried in the Licence agreement or is only on the Blogs/Forum/Wiki etc then i don't think they are saying it loud enough...

Those concerned with privacy and confidentiality should always, always carefully read EULA's. Take responsibility folks. I'm not a huge privacy advocate, but I have refused software because of what an EULA said.The EULA is the primary means by which a company is bound to any legal responsibility. Not reading an EULA, is like not reading the warning label on a bottle of medicine (as a volunteer firefighter, I've seen the effects of that sending people to the emergency room.).

Logos' EULA is quite short and easy to read in comparison to most, and the section on confidential information is a heading, in large, blue, bold type. Even a cursory glance through the EULA would draw your attention to it. The fact of online data storage, is also discussed openly (no legalese, nor small print).

I found the EULA online in less than a minute by searching for it within Logos' web site.

EDIT: for some reason the forum software reduced the font size.

Oh, and here's the URL for the EULA:

http://www.logos.com/ArticleViewer/2090

For your convenience, I'll quote the relevant parts here:

First the warning to read the "warning label:"

Please note: This is the
contract that all users of Logos Bible Software must agree to in order
to use the software.

CAREFULLY
READ THE FOLLOWING LICENSE AGREEMENT. BY CLICKING ON THE "I ACCEPT THE
TERMS OF THE LICENSE AGREEMENT" BUTTON AND CLICKING THE NEXT BUTTON, YOU
ARE CONSENTING TO BE BOUND BY AND ARE BECOMING A PARTY TO THIS
AGREEMENT. THIS PRODUCT REQUIRES USER REGISTRATION AND WILL CEASE TO
FUNCTION IF USER REGISTRATION IS NOT CONFIRMED. IF YOU DO NOT AGREE TO
ALL OF THE TERMS OF THIS AGREEMENT, CLICK THE "CANCEL" BUTTON, AND, IF
APPLICABLE, RETURN THIS PRODUCT TO THE PLACE OF PURCHASE FOR A FULL
REFUND.

Next the section on on line data storage (this is the entire section):

ONLINE BACKUP

Data
you enter into the Software, including notes, settings, preferences, and
documents, will be automatically backed up to Logos.com over the
Internet, and downloaded to other instances of the Software logged in
using your email and password. This automatic synchronization helps you
access your content on multiple computers and may be used to let you use
your own data online. Logos will not share your data without your
permission, but may examine it programmatically for anonymous
statistical purposes or in order to provide technical support.

DO NOT
STORE HIGHLY CONFIDENTIAL INFORMATION IN THE SOFTWARE. The Software is
designed for consumer reference and study purposes, and while we will
take all precautions to protect your data, we cannot ensure the level of
security you would expect from online banking or other highly secure
services.

You are
responsible to keep the password associated with your Logos.com login
private. It is the primary means of security for data synchronized
through the Software.

Finally the entire section on Confidentiality (as if the above weren't enough):

CONFIDENTIALITY

The
Software contains trade secrets and proprietary know-how that belong to
us and it is being made available to you in strict confidence. ANY USE
OR DISCLOSURE OF THE SOFTWARE, OR OF ITS ALGORITHMS, PROTOCOLS OR
INTERFACES, OTHER THAN IN STRICT ACCORDANCE WITH THIS LICENSE AGREEMENT,
MAY BE ACTIONABLE AS A VIOLATION OF OUR TRADE SECRET RIGHTS.

This looks pretty easy to understand to me. If you don't like it, don't just complain, suggest change.

https://community.logos.com/discussion/comment/133877#Comment_133877

Robert, the problem I had with the banking comparison was not the EULA, but your mention of putting banking information in an email, which is not in the EULA... As for the rest see my response to the EULA....

Also what is V4 syncing? Does anyone even know? The EULA doesn't address in entirety, so is Logos in violation if I find out that system information or other use is being synced? Not that I believe Logos would do that, but it is an industry action that is highly common, yet it is not addressed in the EULA...

This is starting to sound like a rehash of other threads on the same topic (e.g., http://community.logos.com/forums/t/15836.aspx).

Yes, this is a topic worthy of discussion, and is legitimate on these forums. But it doesn't look like the discussion is going anywhere, though it does seem to be heating up.

While I admit that I'm not disturbed by Logos' programming choice in this regard (I'm a pastor living in a parsonage: AKA a "glass house" so I'm used to being watched [;)]), I wouldn't be opposed to having an option to keep certain data from not syncing. I probably wouldn't use it, but there are many functions of Logos I don't use. That doesn't mean I'd be opposed to others having this option.

How about simply making that a suggestion on the suggestion forums (as well as on uservoice)? A polite, well reasoned suggestion usually go farther than complaints, and it doesn't look like we're convincing each other about our perspectives on what the issues even are anyway.

https://community.logos.com/discussion/comment/133966#Comment_133966

[quote]How about simply making that a suggestion on the suggestion forums (as
well as on uservoice)? A polite, well reasoned suggestion usually go
farther than complaints, and it doesn't look like we're convincing each
other about our perspectives on what the issues even are anyway.

The suggestion has been made on uservoice... I would like to see that suggestion get more votes.

At the same time, Bob has already indicated he won't entertain the suggestion no matter how many votes it receives. So, at the moment, I'm committed to posting articles from the IT press (which I read all the time) in this area to these forums, until enough people see the problems, and get Logos to listen. Part of the problem here is that Logos is going to start losing sales over this--I'm having a hard time pushing a demo out to my Seminary, partially because of this issue--and others have indicated they have a hard time recommending Logos 4 to their students and friends. I have a lot of money invested in this software and resources--I don't want to see it all go down the drain because Logos wouldn't take a simple suggestion (allowing users to control the synchronization of user entered data to the servers) seriously.

:-)

Russ

https://community.logos.com/discussion/comment/133971#Comment_133971

The suggestion has been made on uservoice... I would like to see that suggestion get more votes.

At the same time, Bob has already indicated he won't entertain the suggestion no matter how many votes it receives.

I suggested also posting this in the suggestions forum here.

Also as I read Bob's response, at best this is lower priority than other things. He did not give an unequivocal "No" to the idea.

Here's the entire quote:

"You can turn off Internet Use in the program settings, and get updates
by ordering DVD's on occasion. We'll continue to listen to feedback on
this, though it's lower on our priority list than missing features."

He says, he's listening, he does not say that "he won't entertain the suggestion no matter how many votes it gets."

Part of the problem here is that Logos is going to start losing sales over this

Maybe, but so far Logos sales of version 4 were way above expectations, and continue to be. So, for now, at least, this fear can be put to rest.

But that doesn't mean that the suggestion is not a good one, nor that Logos shouldn't consider it.

https://community.logos.com/discussion/comment/133971#Comment_133971

Wow. I go out for the evening and all these posts! Not bad for a 'silly' thread[;)]

I will admit to rarely reading EULA and even the manuals (help file or printed) when it comes to using most software. If, however, I am using software that I feel might damage my computer (defrag, partition, encryption, system tweaks) I tend to be more careful. It's a bit like the difference between buying a radio and buying a powertool. You expect the radio to work as expected and, within reason, be harmless. A powertool, on the other hand, needs a lot more care.

Logos4 is Bible Study/Research Software. To me, it fell into the 'harmless' category in much the same way as my software dictionary and encyclopedia. I may be being naive, but I would expect software that is intending to copy anything I type onto someone else's computer system to, in a way that cannot be ignored, tell me upfront. An EULA doesn't meet this criteria for me, unless they have a way to force you to read it before accepting it, which they don't.

I agree that prayer lists are more likely to contain sensitive or personal content than notes - my notes (whether on computer or scribbled in the margin) tend to be technical details. But my prayer lists would not be like that.

Anyhow, I think I have made my feelings on this clear enough. I would like the ability to retain internet use for program & resource update notifications without that meaning that data syncing is also given the green light. A separate option to turn data syncing on/off should be provided. That's all. Silly? I don't think so.

DMB

Well, I certainly wish the best for Logos and their sales. More sales means more resources they can afford to code. But at the church fixup meeting today, everyone thought it was a little funny how a Bible software company won't let you keep your notes and prayer lists private. I still think it's a bit strange, since Logos does have an option not to monitor your Logos use ... but they'll take those notes and prayers. Gotta have them. Must be a good reason, right?

https://community.logos.com/discussion/comment/133994#Comment_133994

I still think it's a bit strange, since Logos does have an option not to monitor your Logos use ... but they'll take those notes and prayers. Gotta have them. Must be a good reason, right?

Yes, the reason is user convenience. I write my notes on my desktop, in the office, and they're available to me in my laptop when I'm traveling, or on a smartphone (if I'd ever want to use one). I'm glad to have this functionality. (Just be wise about how you use it.)

As I said above, in place of a complaint, why not make a suggestion in the suggestion forum? (Not that I'm complaining about your complaint [;)])

Matthew C Jones

https://community.logos.com/discussion/comment/133971#Comment_133971

The suggestion has been made on uservoice... I would like to see that suggestion get more votes.

I am all for having a "privacy" option added to Logos 4.
I am all for expressing one's views in uservoice.
I am all for Logos' self determination as to wether or not to add such a feature.
I am even for posting further persuasive points in the forums.

Just don't go whiney rebel on everybody if, in the end, you still don't get what you ask for. I am anxiously awaiting PBB capability coming to Logos 4. I doubt we will ever get it the way we had it in Version 3. But I won't do a sit-in strike for it. (And I do know how ugly strikes can get.)

I think most of the arguments have been made. It is a good idea to keep bumping the thread to the top for new readers to see. But let's not bury it with redundancy.

https://community.logos.com/discussion/comment/133983#Comment_133983

[quote]Also as I read Bob's response, at best this is lower priority than other
things. He did not give an unequivocal "No" to the idea.

In the uservoice forum, no. But at other times and places, he has put out long threads saying, in essence, that he won't consider it.

[quote]Maybe, but so far Logos sales of version 4 were way above expectations,
and continue to be.

Perhaps. But I can name at least two professors who tell their students to steer away from using Logos, partially because of the privacy issues involved here. A lot of the problem is that people just don't know it exists. In the end, my effectiveness (and desire) at selling Logos into the seminary I attend, and the church I attend, is going to depend on whether or not this problem is fixed. I consistently warn people away from Facebook, and try to help them understand the privacy concerns there. I consistently warn people about always using Google search. I would hate to add Logos to the list of things I don't recommend because user privacy isn't protected, and user data not respected.

Russ

https://community.logos.com/discussion/comment/134018#Comment_134018

[quote]Just don't go whiney rebel on everybody if, in the end, you still don't
get what you ask for. I am anxiously awaiting PBB capability coming to
Logos 4.

Let me ask you something: If someone discovers a car they own is tracking where they drive, and there is no way to turn the tracking off, is it "whiny rebel" to sell the car, or simply recommend people not to buy the same car? Or is it simply telling people the truth about products you already own?

I understand the desire for the PBB capability. I would like to see such capability myself. But privacy is the first job Logos should tackle, not the second. Especially since this is such a simple request. They obviously have a list of files that should be synchronized someplace. Making an option to not synchronize those files would probably be on the order of 20 or 30 lines of code. A personal book builder would be on the order of thousands of lines of code. If I had access to the source, I could probably build the feature I'm asking for in a half a day--it would take longer to figure out where to put the option in the UI than it would to modify the list of files to synchronize (assuming Logos is in C--I don't speak C++).

1. It's simple to code.

2. It's important.

I don't see the downside here.

Russ

https://community.logos.com/discussion/comment/134023#Comment_134023

[quote]Also as I read Bob's response, at best this is lower priority than other
things. He did not give an unequivocal "No" to the idea.

In the uservoice forum, no. But at other times and places, he has put out long threads saying, in essence, that he won't consider it.

[quote]Maybe, but so far Logos sales of version 4 were way above expectations,
and continue to be.

Russ

Russ, none of what you just listed is a fault on Logos' part:

The fact that people aren't informed when they buy software.
The fact that some professors won't buy because they perceive that it's less safe than handing your credit card to a waiter.
The fact that you would voluntarily put things into notes that you wouldn't want compromised even though you know that Logos' stance is that you shouldn't do it.
The fact that a whole church will not purchase Logos because they are more determined to put sensitive information where Logos has said not to.

Personal responsibility...it negates the whole conversation.

https://community.logos.com/discussion/comment/134026#Comment_134026

[quote]Personal responsibility...it negates the whole conversation.

*sigh*

No, it doesn't. Giving people the tools to be responsible is the responsible choice for any software manufacturer. Simply saying, "be responsible" without giving users the tools they need to actually be responsible is just plain silly. You can repeat this argument 'til the cows come home, but repeating it doesn't make it any more true.

Personal responsibility requires tools to do the right thing, and knowledge to know what the right thing is. Logos provides neither.

Russ

https://community.logos.com/discussion/comment/134025#Comment_134025

1. It's simple to code.

2. It's important.

I don't see the downside here.

I guess since we don't run Logos and have the overview of all of the factors that weigh into a decision that Bob P does...then it comes as no surprise that we'd have different priorities than he does.

Personal responsibility...no downside.

https://community.logos.com/discussion/comment/134028#Comment_134028

No, it doesn't. Giving people the tools to be responsible is the responsible choice for any software manufacturer.

Sorry Russ...I have to invoke the "says who" rule here...

They sell software...you purchase said software...end of story.

This personal responsibility requires NO TOOLS except the willingness to do so....

Sorry.

https://community.logos.com/discussion/comment/134034#Comment_134034

They sell software...you purchase said software...end of story.

I really hope you're not speaking on behalf of the company and this is really their position. There's an old saying if you don't take care of the customer someone else will.

It's ranked #17 with 165 votes right now. I'm rather hoping if it keeps moving up that Logos reconsiders. ie, What does Logos do if it hits say twice the amount of votes that it has now? If their answer is still the same which is doesn't matter if there are 165 votes or 100,000 votes we're not doing it then I'd say its bad business policy. I haven't seen this yet so I'm of the wait and see attitude.

I also don't believe that the EULA is written in stone in the sense companies change it all the time based on the times and customer base just as their priorities do.

ETA: I sort of view the uservoice as like the CP or Pre-Pub. I just figure enough votes will help Logos prioritize things.

https://community.logos.com/discussion/comment/134037#Comment_134037

I really hope you're not speaking on behalf of the company and this is really their position. There's an old saying if you don't take care of the customer someone else will.

James,

I don't speak for Logos of course...I'm just customer like we all are here.

Logos is taking care of me just fine...I read their EULA, I weigh the options, having weighed said options, I purchase said software, and after doing so I don't whine about my purchase.

It's pretty simple really.

https://community.logos.com/discussion/comment/134042#Comment_134042

I apologize in advance if my tone comes off wrong, but here goes.

I find the term "whine about my purchase" unnecessary and somewhat insulting. It's sort of like me saying that I find some of the people posting on behalf of Logos as "fanboys" and I wouldn't necessarily want them representing my company.

My point is that if we're here for a civil discussion, let's keep it that way, words like "whine" doesn't help the discussion and I don't think Logos would want their position displayed as such or mistakenly taken as such. My 2c.

ETA: No I'm not calling anyone "fanboys" for the record :[H]

https://community.logos.com/discussion/comment/134028#Comment_134028

As I already said, this discussion is going nowhere. No one is being convinced by the other's arguments/viewpoints.

The points have been made, and restated, and restated again.

If there's anything new to add to this topic, please do.

Let me just say, that although I don't agree with the premise that Logos4 compromises privacy or confidentiality (when used wisely), I do think that the fact that some do, is enough to warrant a suggestion that Logos allow users to not upload their personal data. As Russ writes, this probably would not be a major undertaking (I say, knowing nothing about how that part of the code is structured...), would add very little in terms of support requirements, and would give a level of confidence in the software that some users need to use Logos4 without qualms. If this would function in the same way that "Send Feedback" works (from the settings menu), that should be enough.

If someone who felt strongly about this wanted to make that suggestion in the suggestion forum here. I would support it for these reasons.

Rosie Perera

https://community.logos.com/discussion/comment/133878#Comment_133878

I've always thought it rather odd to put features into a piece of software and then ask users not to use those features, or refuse to be responsible for the results of users using those features.

Nowhere did they ask users not to use those features. They've just said be careful how you use them because they are not designed to be as secure as banking software. So you wouldn't put something in them that needs that level of security. Just like the person above mentioned, you wouldn't send your bank account number and pin through email to buy something online because it isn't secure enough. But that doesn't mean you don't trust email at all; you still use it for other things, including quite personal exchanges with your familiy, etc. You take precautions by not accidentally cc-ing your boss on some email to a co-worker when you're saying bad things about the boss. And if you know what's good for you, you probably confine such conversations to in-person rather than email, because you know that anything you send out in email might be forwarded to the one person you don't want to see it. And so on. Get the analogy? You exercise personal responsibility and caution when using software that isn't 100% secure. Logos never promised that its software is 100% secure. The account and password-level security in Logos is pretty good for most purposes, but it's not bullet proof. So they didn't say don't use the feature at all. They've just said, in effect, use it for things that don't need top notch security, and save those other really really private things for your hand-written prayer journal or whatever.

I've had some thoughts about cloud computing in general lately. I do wish I had more control over stuff that is stored in "the cloud" and I prefer not to store stuff in the cloud if I have a choice. I envision a new kind of cloud computing where we own the server and our data never gets stored outside of our own house, but it can be shared among all of our devices and have automatic backup like what Logos offers. We would be able to configure our own private cloud on a server PC in our home network, and all our other computers, laptops, iPhones, etc. would be able to sync to it, and we could secure it as strongly as we wanted. Then we could truly say to the world out here, "Hey, you, get off of my cloud!" (apologies to The Rolling Stones) [:)]