Being an Open Source Citizen

I was invited to deliver a keynote at FOSS4G 2013 in Nottingham last month, and in a twist it turned out to be a closing slot rather than an opening one. So rather than a call to action, I did something more moralistic, a “sermon” of sorts for everyone going home after a great conference. And then the recording turned out to be no good. So I did it again a couple weeks later at the Boundless company meeting in Denver.

BC Government Email: Defective by Design

Update: Bob Mackin has unearthed a wonderful exchange with an Ontario politico getting grilled on how she managed her email (she deleted thousands a emails pertaining to public policy decision). My favourite quote from the politico: “When I delete emails, I do not have the ability to go back. Perhaps it’s a lesson learned that the government can take back, in terms of maybe it shouldn’t be political staff who search their emails; maybe it should be an individual in the civil service who has access to inboxes and sent-mail folders and deleted archives – whatever it is – to conduct the search.”

When the BC Freedom of Information Commissioner Elizabeth Denham released her report on the Liberal “ethnic outreach scandal” this week, the usual scene ensued: journalists grabbed copies, riffed through the pages, found little politically damning, pronounced the report a wet squib, and promptly moved on to other matters (hey, it’s the middle of summer).

I think they missed a very important (non-political) story: the Province’s management of email clearly sucks.

How does it suck? Let me count the ways.

It sucks Historically

It seems like government e-mail has sucked for as long as government e-mail has existed (although I retain a certain fond nostalgia for the VAX/VMS green screen e-mail of my early days in the Ministry of Forests).

One of my favourite e-mail-based scandals dates back to 2009, when (as part of the “BC Rail scandal”) a judge ordered the government to cough up MLA e-mails from the period 2001-2005. As it turned out, the archival e-mail was long gone. E-mail boxes were regularly purged, and even the disaster recovery back-up tapes had been over-written.

Retaining archival e-mails is hardly a novel idea. Long before the BC Rail trail ever got started, the 2001 Microsoft anti-trust trial featured e-mails penned by Bill Gates in the mid-nineties half a decade before. (Microsoft is, incidentally, the company that makes the Exchange e-mail software used by the BC government.)

If secretive corporations can archive their mail, and yet cough it up under subpoena, why can’t the BC government? One hand of government considers e-mail a document of record, and another considers it so much transient tissue paper, to be discarded on a regular basis. This bi-polar view of e-mail remains to this day.

It sucks Functionally

A central criticism levelled against the BC government during the ethnic outreach scandal was that government staffers knowingly used private email to skirt FOI requests (a technique once used by one-time Governor Sarah Palin), and the Denham report confirms this:

In response to a question from government investigators as to why Mr. Bonney, his former Communications Director, was routinely using personal email for his correspondence, Minister Yap responded that it was to avoid freedom of information legislation.

However, the report notes that staff were also using private emails just because their government service sucked:

Ms. Lo stated that she sent emails between her government and personal email accounts because she needed to ensure she would have access to them while traveling with the Minister or when otherwise working away from the office.

Ms. Lo stated that she used her government smartphone to check her government email, but it was common for her smartphone battery to run out when she was away from the office.

Mr. Bonney stated that he sent emails between his government and personal email accounts so that he could easily access this information regardless of his location.

And one of only five recommendations in the Denham report is this one:

Government should provide its employees with sufficient technological resources to ensure that they do not have a reason to use personal email accounts in the performance of their government duties.

The government staff I know agree with Denham: it would be nice if government e-mail didn’t suck.

It doesn’t have to suck

When I started up my infrastructure in 2008, I swore to never run my own e-mail server again, so I signed up for Google Apps. At the time, Google was pushing “enterprise email archive” service called “Postini”, which you could add to your account if you were that kind of enterprise. I wasn’t, but I wondered what “Postini” was.

All “Postini” does is sit in your institutional email delivery pipe. It take copies of all mails sent and received, and provides an administrative search-and-retrieval interface making it easy for authorized users to pull up any email to or from any person from any time. Why would any company want this capability? Because they are legislatively required to have it, by the US Sarbanes-Oxley law that applies to public companies.

So in 2008 a robust enterprise email archive capability existed, available for a few dollars per account. It seemed very relevant to the BC Rail e-mail scandal that occurred a few months later. After the scandal had run its course, I suspected that enterprise email archiving would be a top government IT priority.

Was it? (Hah!) I recently ran a little test.

But it still does suck

Dave Nikolejsin

Since I have an abiding interest in the genesis and continued thrashings about of the BC Integrated Case Management system, I decided to see what kind of e-mail record the Chief Information Officer, Dave Nikolejsin, generated during the critical period in which the prime contractor was selected, 2009.

So I FOI’ed his e-mail for 2009. All of it.

If BC had an enterprise e-mail archive, they would simply run a query on the archive (“After:2009-01-01 AND Before:2010-01-01 AND (To:Dave.Nikolejsin OR From:Dave.Nikolejsin)”) and send me back the result 2 minutes later.

Surprise! They don’t have an enterprise e-mail archive. Instead, I got this email.

I am contacting you in regards your above noted FOI request, which you submitted on June 10, 2013 for: “All e-mail From: or To: Date range is January 1, 2009 to December 31, 2009”.

It is possible that emails sent to/from Mr. Nikolejsin have since been appropriately filed, as these communications may relate to particular issues or topics of note. I anticipate that a significant search would be required to determine this, which could result in a fee.

Is there a particular subject/topic of interest, or perhaps a particular sender/receiver you wish to focus on? I believe that by concentrating your request in this manner, we can decrease the likelihood of a fee being generated. Please let me know if you are open to discuss, or have any questions.

The gist of the message is that e-mail is archived by being printed and filed (old skool!), therefore searching all the files for individual e-mails would be onerous (fair enough). I decided to ask again for a electronic archival search:

I was hoping this would be a simple computer query against a corporate mail archive, not a manual process. Is that not the case?

No, it’s not the case.

Mr. Nikolejsin may have email responsive to your specified time line in his Outlook mailbox, which would indeed be searchable electronically. If you would like to focus your request to his mailbox alone, (i.e. excluding records that may have been filed elsewhere), we can certainly accommodate, but I wanted to ensure you were aware of the potential search required to satisfy your request. Please let me know how you would like to proceed.

So instead of a single searchable archive with a single uniform retention policy, the government retains whatever happens to be in the individual Exchange mailboxes of their 20K employees, with retention individually managed by those employees.

Given the option, I decided I was still curious: what is in the BC CIO’s Outlook mailbox for the year 2009? This is a busy, important, technically plugged in guy, what does he do with the valuable personal and institutional memory embodied in his e-mail archive?

Answer: He deletes it.

There are four e-mails in the CIOs mail history for 2009. Two of them are bits of login info sent to him by tech support. One is a policy document on Wifi security he sent out to ministry CIOs. One is a notification of a reorganization he sent out. That’s it.

By way of comparison, my mail box for 2009 contains at least 2000 e-mails just FROM me. How many are in your box? (Gmail search string: “after:2009-01-01 before:2010-01-01”)

It sucks at the Highest Levels

This week’s FOI report is not not the first that touches on staff use of e-mail. The Commissioner also did an inquiry into the strange case of the “Ken Boessenkool scandal” (it really is amazing this government got re-elected) in which the interview and dismissal of the Premier’s Chief of Staff somehow generated no written records at all. The Premier’s office explained the conundrum to the Commissioner this way:

The general practice within the Office of the Premier is to communicate verbally in person. Email communications usually consist of requests to make telephone calls or meet in person. Generally, staff members in the Office of the Premier do not make substantive communication relating to business matters via email. Most of the emails are transitory in nature and are deleted once a permanent record, such as a calendar entry, is created.

That’s right, the highest executive office in the Province runs entirely “verbally in person”. No substantive matters in e-mail. In 2013.

E-mail is an incredibly valuable tool for communication, and I use e-mail tools like Gmail daily to organize and search my voluminous historical archive of communications. Access to my saved e-mail history makes me a smarter and more capable professional. Threaded histories of e-mail conversations and decisions, technical disputes and resolutions, even files (“where’s that thing I sent to Joe…”) are easily accessed via my e-mail history.

In contrast, our high-level government staff (even down to the CIO?) are deliberately excising this information trail on a daily and hourly basis, and even though doing it makes them less effective and capable, they feel that they have to do it because every email in their archive is treated by the FOI act like a final product, like a “document”.

(Un)intended Consequences

One of the unintentionally funny passages in the latest Denham report is this one:

Government should have been taking steps to ensure that it was preserving correspondence relating to the Outreach Plan on its own servers both in the name of good governance as well as for the responsible preservation of documents that could be the subject of future access to information requests

In a world in which staff purge their email regularly to avoid FOI requests, keeping emails “in the government” is actually counter-productive to future investigations. Staff will just delete their e-mails at the end of the day as part of their daily email purge, and no records will exist at all.

At this point, government email for policy and political work is institutionally broken. It can barely be used as e-mail (as most of us understand it) anymore.

I have a completely un-founded suspicion that the parlous state of e-mail archive management in BC is somehow related to the FOI consequences of having a properly implemented archive. What would the political reaction be to an IT project proposal for a high quality persistent e-mail archive? Would there be enthusiasm? Would any IT manager even be so foolhardy as to propose a better archive system to their political masters?

The BC government e-mail system has become defective by design, because fixing the technological underpinnings of government e-mail would only magnify how institutionally broken the system is.

E-mail is only the thin edge of the wedge. The cost of creating a “record” (audio, video, text) using modern technology is now so low as to be basically zero. Does that mean that everything government does should now be on the record? Or do we now need to be clearer about what “records” are?

The future is not far away…

What about when government has an IP phone system? Why aren’t all phone conversations a public record? Every government phone call can be easily recorded, voice scanned into text and made searchable, using today’s technology. Check out Google Voice.

What about when government staff are all wearing Google Glass (or something similar), personal or otherwise? We can already FOI hand-written notes from yellow legal pads as “official records” of otherwise private meetings. Government business transacted on private e-mail is still subject to FOI. So why not also have FOI access to first-person recordings of all meetings, shot by the principals using their augmented reality glasses?

The FOI act needs to be re-thought in the light of modern record keeping technology.

Right now the BC government is managing its FOI exposure by just not properly recording their activities. As a result, incompetence in record keeping is currently a virtue, not a vice. This is not a healthy situation. It would be preferable if government could start properly recording their history, within the context of a revised FOI act that respects the difference between interim and final documentation and decisions.

BCeSIS: A Modest Proposal

No, not “eat all the children” although that would be one way to solve the BCeSIS problem.

Rather, embrace the free market and the spirit of competition to reduce the risk of project failure.

The trouble with spending the entire student information system budget on a single system and vendor is that it is an unhedged bet. If it pans out, you win; if it doesn’t you lose 100% of your investment.

In reviewing the state of BCeSIS and recommending future options, the Gartner report had this to say about pursuing an open source option:

There is little evidence of a common, well-developed strategy to develop an Open Source solution in the K-12 software domain and it is anticipated that the development life cycle from defining requirements through deployment would be more than 5 years once a strategy was completed, thus introducing a high degree of risk to the BC education sector. Although some attempts have been initiated to develop K-12 Open Source SIS solutions, there does not appear to be any formal, structured funding mechanism and approach to designing and developing a solution which would meet the future needs of the BC education sector, nor to scale to the extent required to provide a single, province-wide student database.

Leaving aside the circularity of recommending against funding open source development because open source development lacks funding, the seeds of a great idea are actually lying in this paragraph.

  • The OpenStudent project actually got started two years ago, and seem to be more or less on Gartner’s five-year estimated schedule (my opinion of Gartner notches upwards fractionally), with three years to go on feature-complete delivery.
  • The OpenStudent project could benefit from incremental funding from the Ministry, a “formal, structured funding mechanism”, if you will.

Herewith, the modest proposal:

Rather than committing 100% to the Aspen/Fujitsu approach, commit 95% to it, and commit the other 5% to OpenStudent. If OpenStudent fails, only a relatively small investment will be lost. If Aspen/Fujitsu fails, the Ministry has a potential fall-back plan in place and ready to go with no additional capital required. In either event, the existence of active competitors will encourage each project to provide the best possible user experience and provide a baseline of comparison for improvement (“oh, OpenStudent is faster? we can beat that”, “oh, Aspen has this feature? we can add that”)

What do you say, Ministry of Education. You’ve got the brass balls to bet $100M on a single product and vendor. Do you have the balls to bet a couple million on the possibility your $100M bet might not pay off?

BCeSIS: Doing the Same Thing Over and Over and Expecting Different Results

So, the BC government is entering negotiations to replace the “COTS student information system” that they implemented/purchased five years ago at a cost of about $100M.

With another COTS system. Yay.

To be managed and run by the same vendor running the current COTS system. Yay.

I think that MLA Rob Fleming had a valid point when he asked the Minister of Education during Question Period (I assume with some edge in his voice):

Given this government’s wasteful track record on IT projects, how can the minister assure British Columbians that his government won’t be wasting $100 million more of their tax dollars before he signs a new 12-year deal?

But there’s a reason it’s called “Question Period” and not “Answer Period”. So the Minister chose not to detail a management regime which will guard taxpayers against another failed implementation, nor a multi-vendor strategy to hedge bets against the failure of one vendor, nor a collaboration with another province to share in implementation and customization costs, nor any assurance at all that the next round will come off any different from the previous..

Curiously, the tactic the Minister chose was to defend the current iteration of BCeSIS!

It’s “one of the most robust student information systems in the country”, “there were challenges with the new technology” but “we have learned from that”, and finally:

I’ll also remind the member that the ministry engaged an independent report. That report from Gartner, who did the report, said that we have a good, stable student information system that’s meeting the needs of the school districts in the province.

Oh, um, no. The Gartner report is pretty clear, right in the executive summary:

The alternative assessment concluded that BCeSIS, as currently deployed, is **not meeting the business, technical or operational needs of BC and is not a viable future alternative **

At a cost of $100M, that’s a “colossal failure” in my or any other thinking person’s books.

I fear that the Ministry of Education IT bureaucracy is entering into a death race with the BC openStudent project, which is a consortium of school districts building a student information system using collaborative “open source” principles. OpenStudent is promising usable technology at a much lower per student cost than the provincial system.

If openStudent can get an acceptable working system in place in their partner districts before the Ministry has their new system up and running, some senior IT poobahs will be very embarrassed, and we can’t have that. So we’re going to get a death race.

My advice to OpenStudent: stop using “comic sans” in your business case documents. And watch out because your first public delivery will be used to beat you over the head with. “Missing all these features that the COTS product has!” “I found a bug!” “It erased my laptop” “Comic sans!”

There no bunfight like an IT bureaucracy bunfight.

BC IT Outsourcing 2012/13

It’s hard to believe a whole year has gone by! And yet, it has. July is here, the BC 2012/2013 Public Accounts have come out, so it’s time to update my tracking of IT outsourcing spending with another year’s data points!

Last year the government’s “private sector partners” notched up 8% year-over-year growth to extract $393,603,233 from the treasury, setting another all-time record! While growth has slowed from last year’s 21% pace, IT spending growth is still above both the rate of inflation and the overall growth rate of the budget. Suck on that, children and sick people!

In the individual category, HP Advanced Solutions continues to rule the roost, posting 19% growth to notch a league-leading $130M in billings. At this point, nobody else is even close. Former champ IBM continues to shed billings, and now lags even Maximus with only $59M in billings.

My favourite systems integrator, Deloitte & Touch, has plateaued at $36M in billings, but with potential new builds in natural resources to add to the social services sector, they could surprise on the upside next season: get your bets in early.

Update: I figured out what last years mysterious entry for “Oracle Microsystems” is. Somehow, Sun Microsystems won a big services contract to build components of the eHealth systems (a pharmacy system and an electronic health record). So, the totals and growth rate numbers have been updated. And here I thought Sun was a hardware company (perhaps somebody knew somebody). Once Oracle bought Sun, we have a name change to “Oracle Microsystems”, but still a healthy $20M annual services spend. And a new seam of IT boondogglery to investigate: eHealth must be the grand-daddy of them all.