Saturday, July 28, 2018

WOTC - Re-election of Donald Trump

I asked this question in the Wisdom of the Crowd:
Do you expect President Trump to be re-elected in 2020?

Here are the responses:
39 % - No. He will lose the general election.
34 % - Yes. He is quite popular.
20 % - No. He will lose the Republican nomination.
7 % - No. He will not stand for re-election

Yes - 34%. No 66%.

See the pie chart at:
http://www.wisdomofthecrowd.sg/chart.aspx?ID=760

WOTC - Lapses reported by Auditor General

I asked this question in the Wisdom of the Crowd:

Are you concerned with the findings of the Auditor General on lapses in government agencies?

Here are the responses:
57 % - I have major concern over these lapses.
29 % - The government agencies are quite slack in doing their work.
10 % - As there are many transactions, a few oversights are to be expected.
5 % - These lapses are normal and should not raise any concern.

85% are concerned; 15% find it to be acceptable.

See the pie chart at: 
http://www.wisdomofthecrowd.sg/chart.aspx?ID=759

WOTC - Change to NS Policy

I asked this question in the Wisdom of the Crowd:
What change is required for our National Service strategy?

Here are the responses:
38 % - Continue NS. But reduce the full time consription to 1 year.
25 % - Continue NS. But reduce the reservist training.
19 % - Stop NS. Rely on professional army
17 % - Continue the current policy to have a credible defense capability.

83% want the NS commitment to be reduced or abolished. 17% want to continue it as it is.

See the pie chart at:
http://www.wisdomofthecrowd.sg/chart.aspx?ID=761

Friday, July 27, 2018

Allow limited access through the Internet

The SingHealth has disabled the connection through the Internet for access to their computer system. This is causing inconvenience to doctors who need to access the system to book appointments and to view the patient records.

I wish to suggest another approach for SingHealth IT department to handle.

a) Some of the functions are to be handled by the staff. These functions can be disabled for Internet access. They have to be accessed only through the premises, i.e. using Intranet and checking the IP addresses.

b) The doctors in the community can be allowed to access the system for restricted functions, such as booking of appointments, placement of orders or for access to patient recoreds. Each user ID can be limited to a certain number of transactions a day, e.g. 100 transactions. There is no need to allow the user to access 100,000 transactions in a day.

I hope that this approach is possible. We should not allow the system to grind to a halt or for the operations to be placed on an inefficient mode.




Cost-plus pricing

During the years before 1980, the government sold HDB flats based on cost of construction. The flats were affordable. They have to be sold back to the HDB at the controlled prices.

The HDB shops were also rented at low cost.

This was before the days of "asset enhancement".

I prefer the system of housing and shops being sold at cost of construction. This allows the cost of living to be kept low.

This is an example of cost-plus pricing, rather than market pricing.

Thursday, July 26, 2018

Separate access between Internet and Intranet

DPM Teo said that the health database should be separated from the Internet.  This will cause problems because the database is used by doctors within the community.

I like to suggest how this issue can be handled.

Within a computer system, there is a portion that is accessed through the Intranet and another portion through the public Internet.

The staff working in the hospitals can access the database using the Intranet that is not linked to the Internet. This will prevent hackers from accessing the system that is used by the staff.

The staff has more functions and the access is strictly through the Intranet - where there is better control.

The doctors in the wider community can access the database using the Internet, but the functions are restricted. They can only access one patient record at a time and the access is logged.

This approach recognizes that the public access through the Internet should be restricted to a limited function.

New MRT trains

The Land Transport Authority pays $827 million for 66 new trains. Each train has 6 cabines. So the cost per cabin is $2 million. THis excludes the support fees which increases the cost to $1,200 million..

This is obtained from a competitive tender which is participated by five tenderers.

It will be useful to compare the prices paid in other countries for their trains.

Pay attention to what is happening on the ground

It is important for senior people to pay attention to what is happening on the ground on a day to day basis.

For example, the managers of a bus company should check if the bus services are being run punctually.

If the traffic condition cause the buses to bunch together, it is beyond the control of the bus drivers or the supervisors. But the bunching could be due to lack of adherence to the time schedules.

With database technology, it is possible to identify the cases of bunching of buses and to inquire about the reason. Is this being done?

If the management does not pay attention, the rot goes down the line. The workers on the ground knows that their managers do not care, so they will also slacken.

I have observed that some buses are not captured in the bus arrival data. I suspect that these buses have faulty trackers and are not reporting their location. This has been happening for many years.

The fact that these faults are not corrected indicate that the management is not paying attention.


Hacking of SingHealth database

DPM Teo has revealed more information about the hacking of the SingHealth database.

https://www.channelnewsasia.com/news/singapore/internet-separation-should-have-been-implemented-teo-chee-hean-10558584

He talked about internet separation. I wonder how this could prevent the hacking and still allow the wider community to access the information?

The critical information is still missing. How did the hacker retrieve information from the database servers?

I have speculated in another post that it is a page that is accessible to the staff that has been hacked. I wonder if my guess is correct.

http://tklcloud.com/Feedback/feedback2.aspx?id=252

Competition commission and medical charges

Singapore has a competition law and a commission set up to enforce the law.

The purpose is to ensure that businesses do not collide to increase prices for consumers.

One of the bad decisions taken by the commission is to ask the Singapore Medical Association to remove its guidelines for charges by doctors and specialists.

When the guidelines were removed, the doctors could charge any price that they liked. In the past, if the prices were too high, the SMA would take action against the doctors.

The guidelines did not set a minimum price for doctors. They tell the doctors and the public the reasonable prices to expect.

After the removal of the guidelines, the medical fees went up to high levels. This was one of the key factors for the large increase in medical frees in recent years.

The solution is to allow the medical association to reinstate its guidelines and to play the role of protecting the interest of consumers.

It is ironic that the competition commission, which was supposed to take care of consumers, made a decision that become very bad for consumers.

http://tklcloud.com/Feedback/feedback2.aspx?id=256

WOTC - Re-election of Donald Trump

I asked this question in the Wisdom of the Crowd:

Do you expect President Trump to be re-elected in 2020?

Here are the responses:
39 % - No. He will lose the general election.
34 % - Yes. He is quite popular. 
20 % - No. He will lose the Republican nomination.
7 % - No. He will not stand for re-election
Yes - 34%. No - 66%.

See the pie chart at: 
http://www.wisdomofthecrowd.sg/chart.aspx?ID=760

WOTC - Findings of Auditor General

I asked this question in the Wisdom of the Crowd:

Are you concerned with the findings of the Auditor General on lapses in government agencies?

Here are the responses:
57 % - I have major concern over these lapses.
29 % - The government agencies are quite slack in doing their work.
10 % - As there are many transactions, a few oversights are to be expected.
5 % - These lapses are normal and should not raise any concern.

See the pie chart at: 
http://www.wisdomofthecrowd.sg/chart.aspx?ID=759

Wednesday, July 25, 2018

Customer verification

The Privacy and Data Protection Act (PDPA) requires organizations to protect the privacy of their customers.

As a result, the organizations have to verify their customer before giving information concerning the customer accounts and transactions.

But organizations have a bad way of verifying their customer. They ask the customer to give their personal ID, such as NRIC and some personal details, such as the mother's maiden name or how many accounts you have with us.

I wish to suggest a better way. Allow the customer to give a 6 digit pin number for verification. Each customer should be able to choose a number that they can remember. For example they may wish to 6 digits that they can remember easily.

This should be different from the PIN number that is used for ATM transactions. But it is really up to the customer.

The chance of a stranger knowing the PIN number is 1 in a million.

I hope that our organizations can adopt this common sense approach.

Mischievous posting

A mischievous user posted in my Feedback website a redirection link. When the feedback is displayed, it is redirected to another page, instead of displaying the content.

I found out this mischief. I have since added a check to stop any direction instruction in the content field of the feedback in these two websites:

www.tklcloud.com/feedback
www.tklcloud.com/conv

When a vulnerabilty or mischief is detected, it is possible to take remedial action.

A similar approach can be taken for hacking, such as what has happened with Singhealth. It is useful to share information about how the hacking occured, so that other websites can prevent this kind of abuse.

I do not belief in maintaining secrecy, which is a common habit in Singapore.




Low Trading Volume in Singapore Exchange

Someone told me that the Singapore Exchange is experiencing low trading volume for two reasons:
a) The customers have to complete the Customer Account Review
b) The cessation of price information on Teletext
These two factors have discouraged many old folks, who are not in touch with the latest technology, from trading in the Singapore Exchange. They contributed to the trading in the past.

Hacking into SingHealth Database

We have sketchy information about how the "sophisticated hacker" who is probably state sponsored, carried out the cyber attack.

Here are the information that were released:

a) 1.5 million records were accessed of patients who made visits during a certain period (about 5 years)

b) It seemed that the records of other patients who did not make a visit during this period were not accessed.

c) The DPM said that we have to review the connection to the internet.

d) The hacker got access to a front end terminal.

e) The data was extracted over a period of two weeks.

Based on this information, this is my quess on what had happened:

f) The hacker was able to get the login ID and password of the staff using the affected terminal.

g) There was a page that allows the staff to view the details of all the patients making a visit on a certain date or period and maybe for each hospital or all hospitals.

h) The hacker was able to use this page to patiently download the data of the patients who visited each hospital for each day.

If my guess is correct, then the vulnerability that could be prevented are:

i) All staff access should be through the intranet, rather than the internet.

I shall wait for the discussion in the Commission of Inquiry hearing to see if my guess is correct.

Tan Kin Lian

Hacking into SingHealth Database

I suggest that SingHealth should tell the public how the hacker was able to access the data.

It might get some ideas from the public on how such hacking could be prevented.

It does not help when the people involved said that it is due to "sophisticated hacking" possibly by a state sponsored organization.

Similar cases of massive hacking activities in other countries are also kept secret - I think. If there is transparancy, it is likely that a solution could be found.

WOTC - SMRT COO

I asked this question in the Wisdom of the Crowd:

Do you agree with SMRT's decision to retain the service of its COO Alvin Kek?

Here are the responses:
38 % - No. His service should be terminated.
35 % - No. He failed to set a good example to his subordinates by commiting a criminal offence. 
19 % - Yes. His drink driving offense is not related to his work performance. 
8 % - Yes. A demotion is an appropriate punishment.

See the pie chart at: 
http://www.wisdomofthecrowd.sg/chart.aspx?ID=758

WOTC - NS deferment for Ben Davis

I asked this question in the Wisdom of the Crowd:

How do you describe Mindef's decision to deny NS deferment for Ben Davis?

Here are the responses:
47 % - They are destroying the passion and career of young men.
27 % - They should be more flexible.
18 % - They are consistent in applying the policy on NS deferment 
9 % - Every male should serve NS diligently 

See the pie chart at: 
http://www.wisdomofthecrowd.sg/chart.aspx?ID=757

WOTC - PAP leaders

I asked this question in the Wisdom of the Crowd:

How do you describe the current PAP leaders

Here are the responses:
60 % - They look after their own interest.
33 % - They are incompetent.
6 % - They are competent 
2 % - They work hard to take care of the problems facing the people.

See the pie chart at: 
http://www.wisdomofthecrowd.sg/chart.aspx?ID=756

Tuesday, July 24, 2018

Exit and Way Out

Why do we have Exit signs and Way Out signs at the MRT stations?

This is my guess.

A long time ago, it was mandatory to have Exit signs to tell occupants of a premise on where is the Exit in case of a fire. (Actually, we have so few fires that this sign is hardly noticed).

When they introduce MRT stations, they need to tell the commuters where is the Way Out.

But the Way Out is usually the same as the Exit.

If our lawmakers or regulators were alert, they would have passed an amendment to the law that Way Out means Exit. So, there is no need to have Exit and Way Out in MRT stations.

But our Parliament was asleep, right?




Improve the signs

For many years, I have observed that the signs in Singapore are generally poor.

What are good signs? Here are some suggestions:

a) They should anticipate what the public needs to know.

When alighting from a train, they need to know which escalator to take for the Way Out and to change to other lines.

They need to know where to find the toilet and lift.

Along the road, they need to know the direction to the MRT station.

When leaving the gantry of the MRT station, they need to know the Exit No for common landmarks nearly.

b) They should provide most important information at the first level and more detailed information at the second level.

c) Direction signs should take precedence over commercial advertisements. (We have too many advertisements that obstruct the signs).

What are your views?

I have visited other cities and generally find their signs to be helpful. Somehow, the signs in Singapore do not appear to be helpful. This is a general observation. There are exceptions.






Monday, July 23, 2018

Change to National Service Policy

This is my suggestion for a change in our National Service policy:

a) Reduce the training period to 8 to 12 months.
b) All officers should be full time.
c) Reservist training should be called every two years and be for 3 days duration. The aim is to refresh on the use of weapons.
d) In the event of hostility, the reservists can be called up for intensive training.
e) An adequate allowance should be paid for the time of the conscripts and reservists.

I think that this is a more effective use of our military budget. We can still maintain a credible citizen army without paying too much and imposing too big a sacrifice on the citizens.

Tan Kin Lian

http://tklcloud.com/Conv/feedback2.aspx?id=144

Responding to crooks in the Internet

Some people are worried that their mobile numbers and email addresses have been stolen and can be used by crooks to scam them.

I adopt this approach. My email and mobile numbers are not secret. I do not care if it is stolen from a database that is hacked. I do not need the database owner to tell me.

Knowing that my mobile number or email is not a secret information, I exercise care in responding to emails and SMS. I ignore messages from people that I do not know, unless I have reason to believe that they are genuine, e.g. someone asking for my advice.

I also know that my credit card is not secret. I welcome the alerts that my bank send to me about transactions with my credit card. I also check my monthly statement.

I check that the total appears to be in order - and if not, I look at the details. It does not matter that someone steal a few tens of dollars from me, but if it is $1,000 or more, it is a different matter.






WOTC - Changi Jewel

I asked this question in the Wisdom of the Crowd:

Is it a good idea to build the Jewel at Changi Airport.

Here are the responses:
39 % - It will compete with and harm the business in Orchard Road and the city center.
28 % - It will tap into the business of transit passengers.
19 % - It is another interesting place for locals to visit
14 % - It will attract many people and be the target for terrorists.

Yes - 61%. No - 39%

See the pie chart at: 
http://www.wisdomofthecrowd.sg/chart.aspx?ID=755

WOTC - Listen to feedback

I asked this question in the Wisdom of the Crowd:

Is the government serious about listening to feedback from the people?

Here are the responses:
48 % - They ignore feedback which they do not like.
46 % - They only pretend to listen just for show.
4 % - They are doing their best to listen to the feedback.
2 % - They have an effective channel using grassroots leaders. 

See the pie chart at: 
http://www.wisdomofthecrowd.sg/chart.aspx?ID=754

WOTC - Feedback from the people

I asked this question in the Wisdom of the Crowd:

What is a good way for the government to hear feedback from the people?

Here are the responses:
56 % - By responding promptly to feedback given on online platforms. 
31 % - By engaging the people through the social media. 
10 % - By visiting the constituencies.
3 % - By talking to people through the telephone.

See the pie chart at: 
http://www.wisdomofthecrowd.sg/chart.aspx?ID=753

Sunday, July 22, 2018

WOTC - ePayment Platform

I asked this question in the Wisdom of the Crowd:

Which e-payment platform do you prefer

Here are the responses:
38 % - Tap with a stored value card, like EZ Link
38 % - Pay with a credit card
15 % - Pay with mobile phone using QR code
9 % - Pay with Debit or ATM pay 

See the pie chart at: 
http://www.wisdomofthecrowd.sg/chart.aspx?ID=752

WOTC - Revised High Speed Rail

I asked this question in the Wisdom of the Crowd:

Will Singapore agree with a revised High Speed Rail built at half of the original cost?

Here are the responses:
57 % - Yes. It is still a High Speed Rail.
20 % - No. It is a fundamental change to the contract.
14 % - Yes, it will allow the train to come to Jurong East.
9 % - No. The lower cost probably means a system of inferior quality.

See the pie chart at: 
http://www.wisdomofthecrowd.sg/chart.aspx?ID=751

WOTC - General election in Singapore


I asked this question in the Wisdom of the Crowd:
When will the general election be held in Singapore?

Here are the responses:
53 % - Second half of 2019
27 % - 2020 or 2021
15 % - First half of 2019
5 % - Second half of 2018

See the pie chart at:
http://www.wisdomofthecrowd.sg/chart.aspx?ID=750

Travel to Sentosa and return

I took public transport to Resort World Sentosa. First, I took bus 857 and alight at St Andrew Village to walk to Potong Pasir MRT station for the NE Line to Harborfront.

I went up 4 levels of escalators (a lift would have been better) to take the Sentosa Express monorail.

I had to pay $4 as entry fee to Sentosa, which includes the monorail ride.

I arrived an hour earlier than my dinner time. I walked around the Resort World and obtained a good feel of the place.

On previous occasions, I was driven to the car park and went up to the ballroom directly.

I found the travel by public transport to be better.

On my return, I took the monorail to Harborfront, took the Circle Line to Bishan, the North South Line to Yio Chu Kang and then bus 86 home. That journey took 1 hour and comprised 4 segments.






Terminal 3 in Jakarta

Previously, when I visited Jakarta, I used terminal 2. It was quite compact. I did not have to walk a long distance after leaving the plane to reach the Immigration counter and to leave the terminal.

Three months ago, the flight moved to Terminal 3. It was a large terminal. I had to walk a much longer distance on arriving into Jakarta and on leaving Jakarta.

I thought that Terminal 3 must be at least three times of Terminal 2.

I searched Google and was surprised that Terminal 3 was about 50% larger than Terminal 3.

Why do I have to walk such a long distance in Terminal 3.

I learned that Terminal 2 was organized into three sub-terminals, also called the concourse. I only need to use one concourse. This means that the walking distance could be, in theory, only one third.

I also read that Terminal 3 in Jakarta airport was designed to use terminal 3 in Singapore as the benchmark. It turned out to be a bad approach. The concourse approach is better for passengers.

Blog Archive