Domain: slashdot.org
Stories and comments across the archive that link to slashdot.org.
Stories · 37,380
-
The Dark Side of Amazon's New Pilots
I've been really, really excited about digital video distribution lately: first Netflix greenlights jms's return to science fiction TV, and then Amazon announces their new pilots. Perhaps the decade long dearth of any good television is nearing its end! So, with that in mind, I finished up editing Slashdot for the day and sat down to watch some of these new pilots. Only to discover that Amazon has taken away my ability to watch entirely in the name of Digital Restrictions Management.For ages now, Amazon Instant Video has worked with Android devices supporting Flash and, more importantly to many people (and me) it seems, through an unofficial XBMC plugin. It seemed like Amazon was happily using RTMPE to prevent casual stream interception, at least for content funded by others. But with the release of their new pilots, they enabled "Flash Access," Adobe's DRM that (for now) is actually effective.
This effectively kills access for everyone using GNU/Linux, even with the (officially unsupported) Adobe Flash plugin! The Adobe plugin relies on HAL for some DRM magic, but HAL is unmaintained, deprecated, and was removed from most major distros ages ago. You can't even install it by hand thanks to udev removing a few features HAL relied upon. Naturally, the Adobe Flash plugin is equally unmaintained so there is little hope even for people willing to install a piece of unmaintained software with a history of remotely exploitable security holes, instability, and poor performance.
But it seems the loss of access from XBMC is more widely felt: RMS cultists and pragmatic Windows users alike now suffer equally. And the folks who aren't GNU/Hippies with an anti-cloud-chip-on-their-shoulder might even be suffering more: they've lost access to shows and movies that they purchased.
There are a dozen pages on the XBMC forum of people pretty pissed, hundreds of angry posts on their Facebook wall, lengthy threads on Amazon's official forums. But so far the response from Amazon has simply been: it was never supposed to work, and we've fixed it.
In the absence of a clear response from Amazon, wild speculations as to why they decided to institute DRM abound: it's not intentional, piracy is a problem for them after all, Jeff Bezos personally wants to eat every XBMC user's cat, or it has something to do with those pilots.
I'd wager it had something to do with the pilots, or was somewhat unintentional (maybe they only meant to restrict HD content).
An XBMC forum member claims to have chatted with a support representative and gotten a suggestive answer:
Amazon Support: Okay, for Android devices we unfortunately don't support them except for the Kindle Fires so it was really lucky your phone was able to play our instant videos before. As to why they aren't working now, we just recently updated our Flash video playback support which is more than likely why it won't play now. I'm really sorry for any inconvenience this will cause you!
Me: I see. Was the flash video playback updated because of the new Amazon Original Pilots that was released recently?
Amazon Support:I'm honestly not sure if it was due to the pilots that came out, though the timing with the pilots and the update can't be coincidental :-)Assuming it's not just a technical glitch (it happened once before, and Amazon turned the harder-to-break DRM off) and related to the pilots, why only now have they enabled proper DRM? Surely if content they fund is worth restricting then all content is worth restricting? After all, the party line has always been that DRM is imposed by those evil card carrying MPAA members, and not by enlightened tech companies who are just doing what has to be done to free us from the tyranny of broadcast television.
Is it that the content they already provide is widely available through piracy that they haven't cared before? Perhaps; stream ripping from Amazon/Netflix/Hulu and transforming it into a shareable form is not something a normal person would do if only because the video is streamed in mostly real-time. But there are entire groups dedicated to capturing television and uploading it, so someone out there would probably do it.
The problem is that they are going to break the DRM and pirate everything anyway. In fact. they already have (possibly nsfw, because piracy). The same goes for Netflix; their onerous DRM did nothing to stop piracy of House of Cards (finding it is left as an exercise for the reader, but Knuth would rate it 00), and yet they just posted incredible financial results and strong subscriber growth (in utter contrast to this time last year).
The cat's out of the bag: a good chunk of the world population own Infinite Copying Machines and those machines are networked. You cannot stop a determined individual from making a freely copyable version of anything digital unless you ban all output devices (certainly would make Haskell programming nicer) and burn every camera and piece of audio equipment ever built.
It seems that the same toxic thinking about distribution control that pervades the traditional networks has infected the online distributors. It's clear that torrent trackers offer something the traditional channels do not: (mostly) effortless access to content how and when you want it. But these are things that Netflix, Amazon, et al could offer as well... that they do offer. However, instead of liberalizing distribution as time goes on, the New Distributors have fallen into the same clearly failed mentality about restricting distribution that led to the entire media industry becoming a former shell of itself in a mere five years!
This mentality will only lead to failure. Pursuit of it is insanity: we are witnessing the end stages of an industry-wide collapse because of it! And it seems these new distributors have quickly forgotten that it was only the desperation of their predecessors that they were even able to license what they have now.
So, Amazon, why do you insist upon flogging people who are yelling "Shut up and take my money!"?
-
The Dark Side of Amazon's New Pilots
I've been really, really excited about digital video distribution lately: first Netflix greenlights jms's return to science fiction TV, and then Amazon announces their new pilots. Perhaps the decade long dearth of any good television is nearing its end! So, with that in mind, I finished up editing Slashdot for the day and sat down to watch some of these new pilots. Only to discover that Amazon has taken away my ability to watch entirely in the name of Digital Restrictions Management.For ages now, Amazon Instant Video has worked with Android devices supporting Flash and, more importantly to many people (and me) it seems, through an unofficial XBMC plugin. It seemed like Amazon was happily using RTMPE to prevent casual stream interception, at least for content funded by others. But with the release of their new pilots, they enabled "Flash Access," Adobe's DRM that (for now) is actually effective.
This effectively kills access for everyone using GNU/Linux, even with the (officially unsupported) Adobe Flash plugin! The Adobe plugin relies on HAL for some DRM magic, but HAL is unmaintained, deprecated, and was removed from most major distros ages ago. You can't even install it by hand thanks to udev removing a few features HAL relied upon. Naturally, the Adobe Flash plugin is equally unmaintained so there is little hope even for people willing to install a piece of unmaintained software with a history of remotely exploitable security holes, instability, and poor performance.
But it seems the loss of access from XBMC is more widely felt: RMS cultists and pragmatic Windows users alike now suffer equally. And the folks who aren't GNU/Hippies with an anti-cloud-chip-on-their-shoulder might even be suffering more: they've lost access to shows and movies that they purchased.
There are a dozen pages on the XBMC forum of people pretty pissed, hundreds of angry posts on their Facebook wall, lengthy threads on Amazon's official forums. But so far the response from Amazon has simply been: it was never supposed to work, and we've fixed it.
In the absence of a clear response from Amazon, wild speculations as to why they decided to institute DRM abound: it's not intentional, piracy is a problem for them after all, Jeff Bezos personally wants to eat every XBMC user's cat, or it has something to do with those pilots.
I'd wager it had something to do with the pilots, or was somewhat unintentional (maybe they only meant to restrict HD content).
An XBMC forum member claims to have chatted with a support representative and gotten a suggestive answer:
Amazon Support: Okay, for Android devices we unfortunately don't support them except for the Kindle Fires so it was really lucky your phone was able to play our instant videos before. As to why they aren't working now, we just recently updated our Flash video playback support which is more than likely why it won't play now. I'm really sorry for any inconvenience this will cause you!
Me: I see. Was the flash video playback updated because of the new Amazon Original Pilots that was released recently?
Amazon Support:I'm honestly not sure if it was due to the pilots that came out, though the timing with the pilots and the update can't be coincidental :-)Assuming it's not just a technical glitch (it happened once before, and Amazon turned the harder-to-break DRM off) and related to the pilots, why only now have they enabled proper DRM? Surely if content they fund is worth restricting then all content is worth restricting? After all, the party line has always been that DRM is imposed by those evil card carrying MPAA members, and not by enlightened tech companies who are just doing what has to be done to free us from the tyranny of broadcast television.
Is it that the content they already provide is widely available through piracy that they haven't cared before? Perhaps; stream ripping from Amazon/Netflix/Hulu and transforming it into a shareable form is not something a normal person would do if only because the video is streamed in mostly real-time. But there are entire groups dedicated to capturing television and uploading it, so someone out there would probably do it.
The problem is that they are going to break the DRM and pirate everything anyway. In fact. they already have (possibly nsfw, because piracy). The same goes for Netflix; their onerous DRM did nothing to stop piracy of House of Cards (finding it is left as an exercise for the reader, but Knuth would rate it 00), and yet they just posted incredible financial results and strong subscriber growth (in utter contrast to this time last year).
The cat's out of the bag: a good chunk of the world population own Infinite Copying Machines and those machines are networked. You cannot stop a determined individual from making a freely copyable version of anything digital unless you ban all output devices (certainly would make Haskell programming nicer) and burn every camera and piece of audio equipment ever built.
It seems that the same toxic thinking about distribution control that pervades the traditional networks has infected the online distributors. It's clear that torrent trackers offer something the traditional channels do not: (mostly) effortless access to content how and when you want it. But these are things that Netflix, Amazon, et al could offer as well... that they do offer. However, instead of liberalizing distribution as time goes on, the New Distributors have fallen into the same clearly failed mentality about restricting distribution that led to the entire media industry becoming a former shell of itself in a mere five years!
This mentality will only lead to failure. Pursuit of it is insanity: we are witnessing the end stages of an industry-wide collapse because of it! And it seems these new distributors have quickly forgotten that it was only the desperation of their predecessors that they were even able to license what they have now.
So, Amazon, why do you insist upon flogging people who are yelling "Shut up and take my money!"?
-
Ask Slashdot: Science Books For Middle School Enrichment?
new submitter heybiff writes "It is the time of year where students are scrambling for extra credit assignments to boost grades. As a middle school science teacher, I want to accommodate them, while still keeping science involved; and book reports are a popular activity in my school. Unfortunately, I have only been able to come up with a short list of science related books that a 11-14 year old would or could read in their free time: Ender's Game, Hitchhiker's Guide. What books would you recommend as a good read for an extra credit book report, that would still involve a strong science twist or inspire a student's interest in science? The book must be in print, science related, fiction or non-fiction, and not be overtly objectionable or outright banned. I look forward to the submissions." "Outright banned" actually seems a rich vein on which to draw; note that not even Ender's Game is safe. -
Amazon Debuts Mixed Bag of Original Comedy Pilots
itwbennett writes "Amazon sent out a press release over the weekend announcing that the pilots for their original shows 'held 8 spots on the list of 10 most streamed Amazon VOD episodes.' So blogger and entertainment junkie Peter Smith decided to spend a couple of hours seeing if they were worth watching. He managed to sit through 4 of the 8 comedy shows and found a mixed bag — one a clear miss, two meh, and one he'd like to see turned into a series. Have you watched any of the pilots? What did you think?" The quality of these the pilots is not the only way they're a mixed bag: for many Linux users, they're simply not watchable. Watch soon for unknown_lamer's screed on the fat lot of good(will) Amazon is generating by making it harder to legally get these shows. -
Crowdsourcing Failed In Boston Bombing Aftermath
Nerval's Lobster writes "With emotions high in the hours and days following the Boston Marathon bombing, hundreds of people took to Reddit's user-generated forums to pick over images from the crime scene. Could a crowd of sharp-eyed citizens uncover evidence of the perpetrators? No, but they could definitely focus attention on the wrong people. 'Though started with noble intentions, some of the activity on reddit fueled online witch hunts and dangerous speculation which spiraled into very negative consequences for innocent parties,' read an April 22 posting on Reddit's official blog. 'The reddit staff and the millions of people on reddit around the world deeply regret that this happened.'" -
Motorola Loses ITC Case Against Apple for Proximity Sensor Patents
New submitter Rideak writes with this excerpt from CNet about an ITC ruling against Motorola in their case against Apple for violating a few of their proximity sensor patents: "The U.S. International Trade Commission today ended Motorola's case against Apple, which accused the iPhone and Mac maker of patent infringement. In a ruling (PDF), the ITC said that Apple was not violating Motorola's U.S. patent covering proximity sensors, which the commission called 'obvious.' It was the last of six patents Motorola aimed at Apple as part of an October 2010 complaint." -
Some Windows XP Users Can't Afford To Upgrade
colinneagle writes "During a recent trip to an eye doctor, I noticed that she was still using Windows XP. After I suggested that she might need to upgrade soon, she said she couldn't because she couldn't afford the $10,000 fee involved with the specialty medical software that has been upgraded for Windows 7. Software written for medical professionals is not like mass market software. They have a limited market and can't make back their money in volume because there isn't the volume for an eye doctor's database product like there is for Office or Quicken. With many expecting Microsoft's upcoming end-of-support for XP to cause a security nightmare of unsupported Windows devices in the wild, it seems a good time to ask how many users may fall into the category of wanting an upgrade, but being priced out by expensive but necessary third-party software. More importantly, can anything be done about it?" -
Samsung Researching How To Let You Control Your Phone With Your Brain
Nerval's Lobster writes "Samsung is testing a way to control your mobile device with your brainwaves. If that project succeeds, it would truly be a case of science fiction brought to real life. According to MIT Technology Review, Samsung's Emerging Technology Lab is collaborating with Roozbeh Jafari, assistant professor of electrical engineering at the University of Texas, Dallas, on the early-stage research. That research involves placing a cap 'studded with EEG-monitoring electrodes' atop the head of a convenient subject, who then concentrates on an onscreen icon blinking at a particular rate. Concentrate hard enough, and the subject can launch and interact with applications. However, Samsung also indicated that mind-controlled mobile devices are quite a ways off, if they ever appear in a market-ready form at all. 'Several years ago, a small keypad was the only input modality to control the phone, but nowadays the user can use voice, touch, gesture, and eye movement to control and interact with mobile devices,' Insoo Kim, Samsung's lead researcher, told the Review. 'Adding more input modalities will provide us with more convenient and richer ways of interacting with mobile devices.' In any case, it's a crazy concept, the sort of thing Philip K. Dick might have written up as a short story; but it's one evidently grounded in reality." -
USB SuperSpeed Power Spec To Leap From 10W To 100W
Lucas123 writes "While news stories have focused on the upcoming jump from 5Gbps to 10Gbps for USB SuperSpeed, less talked about has been the fact that it will also increase charging capabilities from 10W to 100W, meaning you'll be able to charge your laptop, monitor, even a television using a USB cord. Along with USB, the Thunderbolt peripheral interconnect will also be doubling it throughput thanks to a new controller chip, in its case from 10Gbps to 20Gbps. As with USB SuperSpeed, Thunderbolt's bandwidth increase is considered an evolutionary step, but the power transfer increase is being considered revolutionary, according to Jeff Ravencraft, president of the USB Implementers Forum (USB-IF). 'This is going to change the way computers, peripheral devices and even HDTVs will not only consume but deliver power,' Ravencraft said. 'You can have an HDTV with a USB hub built into it where not only can you exchange data and audio/video, but you can charge all your devices from it.'" -
Futurama Cancelled (Again)
eldavojohn writes "Bad news everybody. According to Entertainment Weekly, Futurama has been cancelled (again). The renewal of Futurama back onto television was met with great fanfare but sadly it appears that Futurama's luck has run out for a second time. The second half of season 7 will air from June 19th to September 4th and that will be it." -
Germany Fines Google Over Street View - But Says €145k Is Too Small
judgecorp writes "Germany's privacy regulator has fined Google €145,000 over its Street View cars' harvesting of private data — but the official has complained that the size of the fine is too small, because of limits to the fines regulators can impose. German data protection commissioner Johannes Caspar said the fine was too low, for 'one of the largest known data breachers ever,' saying, 'as long as privacy violations can be punished only at discount prices, enforcement of data protection law in the digital world with its high abuse potential is hardly possible.' In 2010 it emerged that Google's Street View cars captured personal data from Wi-Fi networks as well as taking pictures — since then regulators have imposed a series of fines — the largest being $7 million reportedly paid to settle a U.S. government probe." -
Walking Distance from Wired: Kevin Kelly Surveys the Tech Scene
Wired magazine has been around now for 20 years. Kevin Kelly decided to commemorate the magazine's immersion in tech culture, and in particular the thriving entrepreneurial scene located in Wired's own neighborhood of SoMa in San Francisco, with a photo essay documenting and celebrating some of the startups that are active in that neighborhood now (like Scribd, Reddit, and BitTorrent) noting that some of the companies are led by people who were just three when the magazine was founded. -
Facebook Revealed As Behind $1.5B "Catapult" Data Center In Iowa
Earlier this month, an article raised the question of who owns the giant data center being built in Altoona, Iowa. Today, the Des Moines Register has an answer, gleaned from "legislative sources." The giant facility, estimated to cost $1.5 billion when construction is complete, is to house a data center for Facebook. The article lists various attributes the site has to make it attractive for all that data, including access to transportation, extensive network infrastructure, and relatively low risk from natural disasters. -
Privately Built Antares Test Flight Successfully Launched From Virginia
After high winds (up to 140mph) delayed yesterday's scheduled launch (itself a re-do because of a cabling problem), Orbital Science's Antares rocket has made it to space. This launch was a test run, but Antares is intended to launch supplies to the ISS. Space.com reports: "The third try was the charm for the private Antares rocket, which launched into space from a new pad at NASA's Wallops Flight Facility, its twin engines roaring to life at 5 p.m. EDT (2100 GMT) to carry a mock cargo ship out over the Atlantic Ocean and into orbit. The successful liftoff came after two delays caused by a minor mechanical glitch and bad weather." Congratulations to all involved. -
Privately Built Antares Test Flight Successfully Launched From Virginia
After high winds (up to 140mph) delayed yesterday's scheduled launch (itself a re-do because of a cabling problem), Orbital Science's Antares rocket has made it to space. This launch was a test run, but Antares is intended to launch supplies to the ISS. Space.com reports: "The third try was the charm for the private Antares rocket, which launched into space from a new pad at NASA's Wallops Flight Facility, its twin engines roaring to life at 5 p.m. EDT (2100 GMT) to carry a mock cargo ship out over the Atlantic Ocean and into orbit. The successful liftoff came after two delays caused by a minor mechanical glitch and bad weather." Congratulations to all involved. -
Senate To Vote On Internet Sales Tax (For Real This Time)
New submitter JoeyRox writes "On 3/22 the Senate approved a non-binding proposal to allow states to tax online sales to residents outside their state. That vote was a trial balloon to gauge the support for the Marketplace Fairness Act. This week Senate Majority Leader Harry Reid filed a cloture to allow the law to be voted on for real this time. The vote may occur as soon as tomorrow. eBay is attempting to rally Americans against the bill via a massive email campaign." -
Bruce Schneier On the Marathon Bomber Manhunt
Should Boston have been put in a state of lockdown on Friday as police chased down Dzhokhar Tsarnaev? Pragmatic Bruce Schneier writes on his blog: "I generally give the police a lot of tactical leeway in times like this. The very armed and very dangerous suspects warranted extraordinary treatment. They were perfectly capable of killing again, taking hostages, planting more bombs -- and we didn't know the extent of the plot or the group. That's why I didn't object to the massive police dragnet, the city-wide lock down, and so on." Schneier links to some passionate counterarguments, though. It doesn't escape the originator of a recurring movie plot terrorism contest that the Boston events of yesterday were just "the sort of thing that pretty much only happens in the movies." -
Ars Reviewer is Happily Bored With Dell's Linux Ultrabook
Ars Technica reviewer Lee Hutchinson says that Dell's Ubuntu-loaded 13" Ultrabook (the product of "Project Sputnik") is "functional," "polished," and (for a Linux laptop) remarkably unremarkable. "It just works," he says. Hutchinson points out that this is a sadly low bar, but nonetheless gives Dell great credit for surpassing it. He finds the Ultrabook's keyboard to be spongy, but has praise for most elements of the hardware itself, right down to (not everyone's favorite) the glossy screen. -
Blackstone Drops Dell Bid, Cites Declining PC Market
An anonymous reader writes "The Blackstone Group has notified Dell's board that it has ended its bid for the company after performing 'due diligence' on Dell's books. The private equity firm gave two reasons for its withdrawal in a letter to the special committee of the board reviewing privatization offers: the 'unprecedented 14 percent market decline in PC volume in the first quarter of 2013' and 'the rapidly eroding financial profile of Dell.' IBM's recently announced intention of withdrawing from the x86 server market may have also spooked investors. Blackstone was one of two outside bidders that emerged after founder Michael Dell and Silver Lake Partners announced a deal to take the company private for $24.4 billion. The remaining bidders did not comment on Blackstone's withdrawal; however, the Bloomberg piece notes that Dell's original deal with Silver Lake Partners contains language preventing the latter from backing out." -
Blackstone Drops Dell Bid, Cites Declining PC Market
An anonymous reader writes "The Blackstone Group has notified Dell's board that it has ended its bid for the company after performing 'due diligence' on Dell's books. The private equity firm gave two reasons for its withdrawal in a letter to the special committee of the board reviewing privatization offers: the 'unprecedented 14 percent market decline in PC volume in the first quarter of 2013' and 'the rapidly eroding financial profile of Dell.' IBM's recently announced intention of withdrawing from the x86 server market may have also spooked investors. Blackstone was one of two outside bidders that emerged after founder Michael Dell and Silver Lake Partners announced a deal to take the company private for $24.4 billion. The remaining bidders did not comment on Blackstone's withdrawal; however, the Bloomberg piece notes that Dell's original deal with Silver Lake Partners contains language preventing the latter from backing out." -
The FAA Will Let Boeing's 787 Dreamliner Fly Again
derekmead writes "Having completed intense review of the aircraft's flight systems and functionality, component reliability, two weeks ago Boeing completed testing on the last item on its list, the plane's battery housing. The FAA on Friday approved the new system. That means the 787, which Boeing has continued to build while new battery solutions were developed, will now be able to resume regular flights as soon as workers are able to carry out an overhaul of the planes that need the upgrade. 'FAA approval clears the way for us and the airlines to begin the process of returning the 787 to flight with continued confidence in the safety and reliability of this game-changing new airplane,' Jim McNerney, CEO of Boeing, said in a news release announcing the approval." -
Android Users Get Scammed With In-App Antivirus Ads
An anonymous reader writes "A new malware scheme has been discovered that pushes fake antivirus software to Android users via in-app advertising. Once installed, the trojan informs the victims they need to pay up to remove threats on their device. The malware in question, detected as "Android.Fakealert.4.origin" by Russian security firm Doctor Web, has been around since at least October 2012 according to the company. While Android malware that masks itself as an antivirus for Google's platform is nothing new, and neither are ads in Android apps pushing malware, but putting the two together can certainly be effective. This is naturally a practice that Windows users are all too familiar with." -
Windows: Not Doomed Yet
Nerval's Lobster writes "Earlier this week, ZDNet columnist Steven Vaughan-Nichols wrote an article, 'Windows: It's over,' that sparked a lot of passionate online debate. His thesis was simple: Microsoft's dominance of the computing market is coming to an end, accelerated by the incipient failure of Windows 8. Make no mistake about it: there's no way to fudge the numbers in a way that suggests Windows 8 is proving a blockbuster. But maybe it's not doomsday for Windows or Microsoft. After all, the company still has a lot of really smart developers and engineers, a whole ton of cash, and the ability to let its projects play out over years. So here's the question, Slashdotters: Is Windows really doomed? And, if not, what can be done to turn things around? (No originality points awarded for a 'Fire Steve Ballmer' response.)" -
Windows: Not Doomed Yet
Nerval's Lobster writes "Earlier this week, ZDNet columnist Steven Vaughan-Nichols wrote an article, 'Windows: It's over,' that sparked a lot of passionate online debate. His thesis was simple: Microsoft's dominance of the computing market is coming to an end, accelerated by the incipient failure of Windows 8. Make no mistake about it: there's no way to fudge the numbers in a way that suggests Windows 8 is proving a blockbuster. But maybe it's not doomsday for Windows or Microsoft. After all, the company still has a lot of really smart developers and engineers, a whole ton of cash, and the ability to let its projects play out over years. So here's the question, Slashdotters: Is Windows really doomed? And, if not, what can be done to turn things around? (No originality points awarded for a 'Fire Steve Ballmer' response.)" -
Drug Site Silk Road Says It Will Survive Bitcoin's Volatility
Sparrowvsrevolution writes "Bitcoin's recent spike and then collapse in value has convinced many that it's too unstable to use as a practical currency. But not the founder of Silk Road, the black market drug site that exclusively accepts Bitcoin in exchange for heroin, cocaine and practically every other drug imaginable. Silk Road's creator, who calls himself the Dread Pirate Roberts, broke his usual media silence to issue a short statement that Silk Road will survive Bitcoin's bubble and bust. The market's prices are generally pegged to the dollar, with prices in Bitcoin fluctuating to account for movements in the exchange rate. And Roberts explained that vendors on the site have the option to also hedge the Bitcoins that buyers place in escrow for their products, so that they can't lose money due to Bitcoin's volatility while the drugs are in the mail. As a result, only about 1,000 of the site's more than 11,000 product listings were taken down during the recent crash." -
Google Reinstates Federated Jabber/XMPP Instant Messaging
jrepin writes "A few weeks ago the FSF reported that Google had started blocking invites sent from non-Google Jabber servers. This was done as a crude anti-spam measure. Google have since rolled out proper anti-spam filtering for its Jabber service, and has removed the invite block. This was announced a few days ago in a public mailing list post. This means that users of all Jabber servers will once again be able to fully communicate with Google users." -
One Boston Marathon Bomb Suspect Dead, Other At Large After Shootout With Police
theodp writes "During the night, The Tech broke news that gunshots were reported at MIT near 32 Vassar Street (the Ray and Maria Stata Center for Computer, Information, and Intelligence Sciences), and one officer was shot and taken to Mass General Hospital. MIT's Emergency Information page also reports that injuries have been reported. Sadly, CNN is now reporting that the university police officer has died. Look for updates on Twitter." The two suspects identified earlier as being behind the Boston Marathon bombings are believed to be responsible for this. They were found by police. One suspect, 26-year-old Tamerlan Tsarnaev, was killed in a shootout. The other suspect, 19-year-old Dzhokhar Tsarnaev, is still being pursued. The Associated Press reports that the two are believed to be from the Russian region near Chechnya. During the firefight, the suspects threw explosive devices at police. Public transit in Boston has been shut down, and hundreds of thousands of people have been asked to not leave their homes. Here are live feed for local TV news and emergency services audio. Police have been warned that the remaining suspect may have a suicide vest.
Reader Okian Warrior points out a related story worthy of notice: "The 4chan crowd, poring over images of the Boston marathon, identified two dark-skinned and bag-carrying suspects (among others). This was then picked up by The New York Post, who ran the image on Thursday's front page with the headline 'Feds seek these two pictured at Boston Marathon.' And now, a completely innocent teen now finds himself scared to leave his home." -
Facebook Letting Everyone See How Much Data-Center Power It Consumes
Nerval's Lobster writes "Facebook has added real-time dashboards for measuring the efficiency of its data centers' internal power and water use. Two dashboards monitor the company's Prineville, Ore. (here) and Forest City, N.C. data centers (here), measuring both the Power Usage Effectiveness (PUE) and Water Usage Effectiveness of those facilities, in addition to the ambient temperature and humidity. So far, visitors to the Prineville and Forest City dashboards only see a limited snapshot of the Facebook data: the display only covers 24 hours, and is delayed by 2.5 hours on both sites. Facebook also hasn't disclosed how many servers the data represents, which could conceivably be used by competitors to get a sense of the social network's total computing power. The company said that once its data center in Luleå, Sweden, comes online, Facebook will begin adding data from that location, as well. Although Facebook said it provided the information out of a sense of openness, the data—showing PUEs of about 1.09 for both facilities as of press time—is a bit of a boast, as well; as recently as 2011, Uptime Institute said that the average data center's PUE was approximately 1.8. So far, Facebook hasn't said whether it will provide access to the dashboards via an API, so third parties can get a better sense of how Facebook is managing power and water use over time, and through various seasons of the year." -
A Critique of the Boston Bombing News Coverage (Video)
David Coursey has spent a lot of his life as a journalist, specializing in IT coverage for most of it. He's written for ZDNet and eWeek, Forbes, and other well-known publications, and has had his stories linked from Slashdot more than a few times over the years. What he is not as well known for is his expertise as an EMT, a field he has been in as both a volunteer and professional since the rocks in California (where he lives) were still soft enough that the Flintstones used them as pillows. He and I were chatting on Facebook yesterday, and I realized that David's views on media coverage of the recent Boston Marathon bombings might be worth sharing. Do you think what he's saying is valid? Do you agree or disagree with him? Or some of each? -
Interviews: Ask Freeman Dyson What You Will
Famous for his work in math, astronomy, nuclear engineering, and theoretical physics, Freeman Dyson has left his mark on almost every scientific discipline. He's won countless awards, and written numerous books on a wide range of topics both scientific and philosophical. One of his biggest contributions to science was the unification of the three versions of quantum electrodynamics invented by Feynman, Schwinger and Tomonaga. 10 years after moving to the U.S. he started working on the Orion Project, which sought to create a spacecraft with a nuclear propulsion system. STNG exposed the idea of a Dyson sphere to the masses, and his hypothetical plan for making a comet habitable with the help of genetically-engineered plants is a personal favorite. Mr. Dyson has graciously agreed give us a bit of his time in order to answer your questions. As usual, ask as many as you'd like, but please, one question per post. -
Twitter Launches the World's Umpteenth Online Music Site
Nerval's Lobster writes "Twitter is plunging into the online music game. Twitter Music (or "Twitter #music," in the company's own rendering) uses Twitter activity such as Tweets and engagement "to detect and surface the most popular tracks and emerging artists," according to an April 18 posting on Twitter's official blog. Songs on the app derive from three sources: iTunes, Spotify, or Rdio. And yes, Twitter is big, but its victory is by no means assured: other IT giants have entered the same market only to watch highly-publicized projects wither away, doomed by some combination of audience apathy and implementation issues. Take Apple's Ping, for example: launched in September 2010 as part of an iTunes update, the ambitious social-networking and music-recommendation engine immediately ran into a number of problems, including a lack of Facebook integration (despite Steve Jobs' assurances to the contrary) and widespread reports of spam and fake accounts. Can Twitter's effort stand out, or will it just be lost in all the noise?" -
HP To Package Leap Motion Sensor Into — Not Just With — Some Devices
cylonlover writes "It hasn't even been released yet but the Leap Motion could already be considered something of a success – at least with PC manufacturers. Following in the footsteps of Asus, who announced in January that it would bundle the 3D motion controller with some of its PCs, the world's biggest PC manufacturer has joined the gesture control party. But HP has gone one step further, promising to build the Leap Motion technology into some future HP devices." (See this video for scenes of users scrabbling with their hands in empty air, and get ready for more of it.) -
Antares Rocket Launch Scrubbed
An anonymous reader writes "This evening's planned launch of the Orbital Sciences Antares rocket had to be canceled just 12 minutes before liftoff, due to the unexpected separation of the booster's umbilical cable while the vehicle was on the launch pad. This is the first attempt to fly the Antares rocket, which is a commercial craft and direct competitor to the SpaceX Dragon 9. Beyond being the first flight of a brand new commercial rocket, this mission is also notable for carrying three of NASA's PhoneSats; small satellites powered by Android running on Nexus smartphones. With each PhoneSat costing just $3,500, they're designed to test the limits of extremely low cost spacecraft, similar to the European STRaND-1 mission. Since this is simply an orbital test, and the Antares will not be attempting to dock with the International Space Station, the launch window is highly flexible. It's anticipated Orbital Sciences will make another attempt at launching the Antares within 48 hours." -
Microsoft Hops On Two-Factor Authentication Bandwagon
itwbennett writes "Following similar initiatives by Apple, Google and Facebook, Microsoft is enabling two-factor authentication for its Microsoft Account service, the log-on service for many of its online and desktop products. Users will find instructions on how to add a second form of authentication on the Microsoft Account settings page. The chief form of secondary authentication will be a short code sent to the user's mobile phone, the number of which Microsoft will keep on file, each time the user logs on." -
Microsoft Hops On Two-Factor Authentication Bandwagon
itwbennett writes "Following similar initiatives by Apple, Google and Facebook, Microsoft is enabling two-factor authentication for its Microsoft Account service, the log-on service for many of its online and desktop products. Users will find instructions on how to add a second form of authentication on the Microsoft Account settings page. The chief form of secondary authentication will be a short code sent to the user's mobile phone, the number of which Microsoft will keep on file, each time the user logs on." -
Microsoft Hops On Two-Factor Authentication Bandwagon
itwbennett writes "Following similar initiatives by Apple, Google and Facebook, Microsoft is enabling two-factor authentication for its Microsoft Account service, the log-on service for many of its online and desktop products. Users will find instructions on how to add a second form of authentication on the Microsoft Account settings page. The chief form of secondary authentication will be a short code sent to the user's mobile phone, the number of which Microsoft will keep on file, each time the user logs on." -
Google Fiber To Come To Provo, Utah
An anonymous reader writes "Google announced today that they intend on purchasing the existing iProvo fiber network to make Provo the third U.S. city to have Google Fiber. If approved by the city council, implementation would begin later in 2013. 'As a part of the acquisition, we would commit to upgrade the network to gigabit technology and finish network construction so that every home along the existing iProvo network would have the opportunity to connect to Google Fiber.'" Also at SlashCloud -
Vint Cerf: SDN Is a Model For a Better Internet
Nerval's Lobster writes "Vint Cerf, one of the 'founders of the Internet,' told an audience April 16 that if he could do it all over again, he would construct the Internet in the mold of Software-Defined Networking (SDN). Cerf, who co-designed the TCP/IP protocol suite with Bob Kahn, said that he admired how SDN separates the data plane from the control plane, which allows the network to be controlled via software from an external server. One of the hazards of conjoining the two, he added, was the attack risk. 'I wish we had done [the separation] in the Internet design, but we didn't,' Cerf told the audience for his keynote address at the Open Networking Summit in Santa Clara, Calif. 'In a very interesting way you have an opportunity to reinvent this whole notion of networking.'" -
Higgs Data Could Spell Trouble For Leading Big Bang Theory
ananyo writes "Paul Steinhardt, an astrophysicist at Princeton University in New Jersey, and colleagues have posted a controversial paper on ArXiv arguing, based on the latest Higgs data and the cosmic microwave background map from the Planck mission, that the leading theory explaining the first moments of the Big Bang ('inflation') is fatally flawed. In short, Steinhardt says that the models that best fit the Planck data — known as 'plateau models' because their potential-energy profiles level off at relatively low energies — are far less likely to occur naturally than the models that Planck ruled out. Secondly, he says, the news for these plateau models gets dramatically worse when the results are analyzed in conjunction with the latest results about the Higgs field coming from CERN's Large Hadron Collider. Particle physicists working at the LHC have calculated that the Higgs field is likely to have started out in a high-energy, 'metastable' state rather than in a stable, low-energy configuration. Steinhardt likens the odds of the Higgs field initially being perched in the precarious metastable state as to those of dropping out of the sky over the Matterhorn and conveniently landing in a 'dimple near the top,' rather than crashing down to the mountain's base." -
Higgs Data Could Spell Trouble For Leading Big Bang Theory
ananyo writes "Paul Steinhardt, an astrophysicist at Princeton University in New Jersey, and colleagues have posted a controversial paper on ArXiv arguing, based on the latest Higgs data and the cosmic microwave background map from the Planck mission, that the leading theory explaining the first moments of the Big Bang ('inflation') is fatally flawed. In short, Steinhardt says that the models that best fit the Planck data — known as 'plateau models' because their potential-energy profiles level off at relatively low energies — are far less likely to occur naturally than the models that Planck ruled out. Secondly, he says, the news for these plateau models gets dramatically worse when the results are analyzed in conjunction with the latest results about the Higgs field coming from CERN's Large Hadron Collider. Particle physicists working at the LHC have calculated that the Higgs field is likely to have started out in a high-energy, 'metastable' state rather than in a stable, low-energy configuration. Steinhardt likens the odds of the Higgs field initially being perched in the precarious metastable state as to those of dropping out of the sky over the Matterhorn and conveniently landing in a 'dimple near the top,' rather than crashing down to the mountain's base." -
Foxconn Signs Massive Android Patent Agreement With Microsoft
Pikoro writes with news that Foxconn's parent company has entered into an agreement to pay Microsoft royalties for every Android device they manufacture, joining a rather long list of companies licensing patents for Android/Linux from Microsoft. From the BBC: "Microsoft has secured a patent deal with the world's biggest consumer electronics manufacturer to receive fees for devices powered by Google's Android and Chrome operating systems. Hon Hai — the parent company of Foxconn — said the deal would help prevent its clients being caught up in an ongoing intellectual property dispute. Microsoft says that Google's code makes use of innovations it owns. Google alleges its rival's claims are based on 'bogus patents.' 'The patents at issue cover a range of functionality embodied in Android devices that are essential to the user experience, including: natural ways of interacting with devices by tabbing through various screens to find the information they need; surfing the web more quickly, and interacting with documents and e-books.'" -
Dell Signs Agreement To Cap Icahn's Share Ownership
itwbennett writes "As previously reported on Slashdot, activist investor Carl Icahn made a proposal to buy Dell for $15 per share. Now, as part of the review process of potential offers to take Dell private, the company's board of directors has approved an agreement with Icahn that would cap the amount of shares owned by the activist investor. Under the agreement, Icahn and affiliated entities 'have agreed not to make purchases that would cause them to own more than 10 percent of Dell's shares,' Dell said in a statement. Also as part of the agreement, Icahn has agreed not to enter into agreements with other shareholders to jointly own more than 15 percent of Dell's shares." From the press release: "The Special Committee believes that granting the limited waiver to Mr. Icahn while capping his share ownership will maximize the chances of eliciting a superior proposal from Mr. Icahn while at the same time protecting shareholders against potential accumulation of an unduly influential voting interest." Looks like Michael Dell has some serious competition for Dell. -
Pirate Bay Co-Founder Indicted For Hacking, Fraud
An anonymous reader writes "Gottfrid Svartholm Warg, a.k.a. 'anakata,' co-founder of The Pirate Bay, has been indicted by a Swedish court on charges of computer hacking and fraud. The prosecuting attorney said, 'A large amount of data from companies and agencies was taken during the hack, including a large amount of personal data, such as personal identity numbers of people with protected identities.' According to Ars, 'The first count of hacking involves allegedly unlawfully using another person's username and password to search Infotorg, a well-known massive privately held commercial database of "private individuals, companies, properties and vehicles." The second count, as previously reported, involves an alleged hack dating back to 2010 of Logica, a Swedish IT firm that contracts with the Swedish tax authority. In March 2012, Logica was hit by an online attack that resulted in around 9,000 Swedes (Google Translate) having their personal identity numbers and names released to the public. ... The third count of hacking, allegedly taking place between July and August 2012, accuses Svartholm Warg of unauthorized access of major Nordic region bank Nordea's computers. The fraud charges accuse Svartholm Warg of allegedly transferring and attempting to transfer money from Nordea to other unauthorized bank accounts.'" -
Did Tech Websites Exploit the Boston Marathon Bombing?
Nerval's Lobster writes "These days, when something in the world goes very wrong, it seems as if everybody learns about it first on Twitter and Facebook. In the minutes after homemade bombs turned the finish line of the Boston Marathon into a crime scene, terms such as #BostonMarathon shot to the top of Twitter's Trends list; across the country, office workers first learned of the attack when someone posted a message on a Facebook page. Social networks have become this generation's radio, the default conduit for the freshest information. As first responders treated the wounded and the minutes ticked past, news organizations began vacuuming up Twitter and Facebook posts from around Boston and posting it on their Websites, along with 'regular' text updates. A Vine video-snippet of a bomb going off near the finish line, knocking a runner off his feet, ended up embedded into dozens of blog postings. When a disaster strikes, and many of those same news Websites post 'live updates' that incorporate tons of social-networking posts, they face accusations of exploiting the tragedy in the name of pageviews and revenue. That's not surprising—long before 'yellow journalism' became a term, people have charged news organizations with playing up humanity's worst for their own gain. In the immediate aftermath of the Boston bombings, online pundits lashed out against Mashable, The Verge, Wired, and other publications that had posted live updates, accusing them of stepping outside their usual coverage areas for cynical gain. In the following piece, a number of tech editors-in-chief, including The Verge's Joshua Topolsky and Mashable's Lance Ulanoff, talk about their approaches to covering the tragedy." -
OpenShot Close To Funding Final Stretch Goal: Video Editing Server
The Kickstarter project we mentioned late last month to bring open source video editor OpenShot to Mac and Windows as well as its native base of Linux has surpassed its initial funding goal, and now is just shy (just under a thousand dollars shy, at this writing) of reaching all of the items on a revamped list of stretch goals. The only goal on that list not yet funded is a tantalizing one. JonOomph writes "The lead developer has proposed a revolutionary new feature, which would allow users to offload CPU, memory, and disk cache to a local server (or multiple local servers), dramatically increasing the speed of previewing and rendering. The more servers added to the pool, the faster the video editing engine becomes (with the primary limitation being network bandwidth). If the final goal of $40k is reached in the remaining hours, this feature will be added to the next version of OpenShot." Like all Kickstarter projects, though, there's no actual guarantee that things will come to pass as hoped; ya pays yer money, and ya takes yer chances. Update: 04/16 16:53 GMT by T : Some hours remain, but they've crossed the $40,000 line. I hope the funding is adequate to support the outlined plans. -
Wayland 1.1 Released — Now With Raspberry Pi Support
An anonymous reader writes "Six months after the release of Wayland 1.0, versions 1.1 of Wayland and Weston have been released. Wayland/Weston 1.1 brings new back-end support for the Raspberry Pi, Pixman renderer, Microsoft Remote Desktop Protocol (RDP), and FBDEV frame-buffer device. Wayland/Weston 1.1 also introduces a modules SDK, supports the EGL buffer-age extension, touch-screen calibration support, and numerous optimizations and bug-fixes." -
Google Glass Specs Hit the Web
Nerval's Lobster writes "Google has issued the specifications for its spectacles. The search-engine giant's Google Glass, an augmented-reality headset that allows wearers to view information on a tiny screen embedded in one of the lenses, features a camera capable of snapping 5-megapixel photos and 720p video. That aforementioned screen, in the words of Google's just-released specs sheet, "is the equivalent of a 25-inch high definition screen from eight feet away." Google Glass is compatible with any Bluetooth-capable phone. Its MyGlass app, which enables SMS messaging and GPS, requires a companion device running Android 4.0.3 (the "Ice Cream Sandwich" build) or higher. Google claims the battery will provide a "full day of typical use," although the company warned in the specs sheet that certain functions—most notably video recording and Hangouts—could drain the battery faster. Despite those neat features, Google Glass also raises some thorny questions about surveillance culture, and whether people really want whole crowds recording every moment of our collective lives. But those are the sort of conundrums that will only become more clear when Google Glass is actually released sometime later this year." -
Google Glass Specs Hit the Web
Nerval's Lobster writes "Google has issued the specifications for its spectacles. The search-engine giant's Google Glass, an augmented-reality headset that allows wearers to view information on a tiny screen embedded in one of the lenses, features a camera capable of snapping 5-megapixel photos and 720p video. That aforementioned screen, in the words of Google's just-released specs sheet, "is the equivalent of a 25-inch high definition screen from eight feet away." Google Glass is compatible with any Bluetooth-capable phone. Its MyGlass app, which enables SMS messaging and GPS, requires a companion device running Android 4.0.3 (the "Ice Cream Sandwich" build) or higher. Google claims the battery will provide a "full day of typical use," although the company warned in the specs sheet that certain functions—most notably video recording and Hangouts—could drain the battery faster. Despite those neat features, Google Glass also raises some thorny questions about surveillance culture, and whether people really want whole crowds recording every moment of our collective lives. But those are the sort of conundrums that will only become more clear when Google Glass is actually released sometime later this year." -
Book Review: The Death of the Internet
benrothke writes "When I first heard about the book The Death of the Internet, it had all the trappings of a second-rate book; a histrionic title and the fact that it had nearly 50 contributors. I have seen far too many books that are pasted together by myriad disparate authors, creating a jerry-rigged book with an ISBN, but little value or substance. The only negative thing about the book is the over the top title, which I think detracts from the important message that is pervasive in it. Other than that, the book is a fascinating read. Editor Markus Jakobsson (Principal Scientist for Consumer Security at PayPal) was able to take the collected wisdom from a large cross-section of expert researchers and engineers, from different countries and nationalities, academic and corporate environments, and create an invaluable and unique reference." Read below for the rest of Ben's review. The Death of the Internet author Markus Jakobsson pages 392 publisher Wiley-IEEE Computer Society Press rating 9/10 reviewer benrothke ISBN 978-1118062418 summary Excellent reference on current Internet security threats The premise of the book is that the Internet is a cesspool of inefficient management and vulnerabilities that threaten to undermine its use.
In the preface, Jakobsson asks the obvious question: is the title a joke? He writes that ultimately, if the Internet can't be secured, and that the underlying amount of crime and fraud make the Internet useless and dangerous, then it indeed will lead to the tipping point where the result would be the death of the Internet. Where is that point? Nobody knows.
Chapter 1 observes that if a hostile country or organization wants to hurt us, they may find that the easiest way of doing so is by attacking the Internet, and our very dependence on the Internet invites attacks. We are more vulnerable to these attacks as our dependence on the Internet grows.
Chapter 3 provides an in-depth look at how criminals profit off the Internet and provides an intriguing overview of how click fraud works. While the click fraud rate at one point was as high as 30%, it is still in the range of 20%. The book notes that while the overall click fraud rate has been on the decline, there is the emergence of new schemes and those that focus on display ads. The click fraud schemes are so effective that the fraudsters are operating large scale automated attacks in a way that is difficult for the ad networks to distinguish between fraudulent and real clicks, thus producing high revenue for the fraudsters.
The chapter also provides an interesting look at the malware industry. It notes that malware development and distribution is highly organized and controlled by criminal groups that have formalized and implemented business models to automate cybercrime. The authors detail the interaction between the various components in a typical cybercrime business model, in which individual groups of criminals coordinate their efforts. The outcome is a product known as CaaS – crimeware as a service.
Many have often called the Internet the Wild West. Chapter 4 details the Internet infrastructure and cloud, in which the amorphous cloud images may help fuel the false perception that the Internet is a lawless and unaccountable entity that exists beyond policy. The book notes that what is breaking the Internet is not lack of policy, but lack of enforcement and accountability. Internet criminals appears to exists outside the policy structure when the reality is that they are embedded in it and their livelihood in fact depends on the Internet functioning regularly, quickly and efficiently.
While much of the book is focused on cybercrime and fraud, the book also points fingers at ICANN (Internet Corporation for Assigned Names and Numbers) for in some ways facilitating this Internet crime wave. ICANN is the organization that coordinates the Domain Name System (DNS), Internet Protocol (IP) addresses, space allocation, protocol identifier assignment, generic (gTLD) and country code (ccTLD) Top-Level Domain name system management, and root server system management functions. Their premise is that ICANN is more interested in generating revenue and profits than in security.
Due to systemic failures, cybercriminals often hide behind false WHOIS information held by Registrars who do not perform adequate due diligence or enforcement. This is primarily due to the fact that the more domain names that are sold create more revenue for the Registrars. Chapter 4 notes that this weak oversight by ICANN is also one of the biggest threats to the stability of the Internet. The chapter quotes a Godaddy executive who stated that proactive measures to make Internet registries more accurate would not be affordable or useful.
The book provides an analysis of social spam, which has become more pervasive with the emergence of Web 2.0. People are sharing vast amounts of personal data that opens them to these spam attacks. Since the defining characteristic of Web 2.0 is its social nature, it encourages people to share information, collaborate and form social links. These features of social media have the implication that they create a large network of connections between users and content that is controlled almost entirely by the users. This places great power in the hands of well-intentioned users to engage with others and express themselves. But it also provides an opportunity for spammers to exploit the social web for their own interests. As a result, social web applications have become tempting targets for spam and other forms of Internet pollution.
Another fascinating observation around Web 2.0 is that the authors were able to perform use analysis, in which they were able to identify pieces of information about the users which are not necessarily shared directly by their profiles. Items such as sleeping patterns, daily routines, physical locations, and much more are able to be extracted via metadata and other external analysis.
By the time one gets to chapter 5, they have read 200 pages detailing the problems with security and privacy around the Internet core. Exacerbating this is the role of the end user where the chapter notes that if people are offered the choice of convenience or security, then security will lose. The average Internet user is more lazy than security aware; not at all an encouraging observation.
Chapter 7 details one of the banes that have plagued information security; poor user interfaces. It details the four sins of security application user interfaces: popup assault, security by verbosity, walls of checkboxes and all or nothing switches. The book is worth purchasing just for this section.
The book ends with some thoughts for the future, but there is no magic wand or quick happy endings that Jakobsson and his band of ultra-smart contributors offer. Throughout the book, the contributors do though write how there are ways to secure the Internet, but those take thorough and comprehensive strategies and design. There are countermeasures for most of the threats and vulnerabilities detailed and the book provides an unparalleled view of the current state of Internet security.
Situational awarenessis defined as the perception of environmental elements with respect to time and/or space, the comprehension of their meaning, and the projection of their status after some variable has changed. For those looking for a book to gain situation awareness about the dangers of the Internet, one is hard pressed to find a better title than The Death of the Internet.
Reviewed by Ben Rothke.
You can purchase The Death of the Internet from amazon.com. Slashdot welcomes readers' book reviews -- to see your own review here, read the book review guidelines, then visit the submission page. -
Book Review: The Death of the Internet
benrothke writes "When I first heard about the book The Death of the Internet, it had all the trappings of a second-rate book; a histrionic title and the fact that it had nearly 50 contributors. I have seen far too many books that are pasted together by myriad disparate authors, creating a jerry-rigged book with an ISBN, but little value or substance. The only negative thing about the book is the over the top title, which I think detracts from the important message that is pervasive in it. Other than that, the book is a fascinating read. Editor Markus Jakobsson (Principal Scientist for Consumer Security at PayPal) was able to take the collected wisdom from a large cross-section of expert researchers and engineers, from different countries and nationalities, academic and corporate environments, and create an invaluable and unique reference." Read below for the rest of Ben's review. The Death of the Internet author Markus Jakobsson pages 392 publisher Wiley-IEEE Computer Society Press rating 9/10 reviewer benrothke ISBN 978-1118062418 summary Excellent reference on current Internet security threats The premise of the book is that the Internet is a cesspool of inefficient management and vulnerabilities that threaten to undermine its use.
In the preface, Jakobsson asks the obvious question: is the title a joke? He writes that ultimately, if the Internet can't be secured, and that the underlying amount of crime and fraud make the Internet useless and dangerous, then it indeed will lead to the tipping point where the result would be the death of the Internet. Where is that point? Nobody knows.
Chapter 1 observes that if a hostile country or organization wants to hurt us, they may find that the easiest way of doing so is by attacking the Internet, and our very dependence on the Internet invites attacks. We are more vulnerable to these attacks as our dependence on the Internet grows.
Chapter 3 provides an in-depth look at how criminals profit off the Internet and provides an intriguing overview of how click fraud works. While the click fraud rate at one point was as high as 30%, it is still in the range of 20%. The book notes that while the overall click fraud rate has been on the decline, there is the emergence of new schemes and those that focus on display ads. The click fraud schemes are so effective that the fraudsters are operating large scale automated attacks in a way that is difficult for the ad networks to distinguish between fraudulent and real clicks, thus producing high revenue for the fraudsters.
The chapter also provides an interesting look at the malware industry. It notes that malware development and distribution is highly organized and controlled by criminal groups that have formalized and implemented business models to automate cybercrime. The authors detail the interaction between the various components in a typical cybercrime business model, in which individual groups of criminals coordinate their efforts. The outcome is a product known as CaaS – crimeware as a service.
Many have often called the Internet the Wild West. Chapter 4 details the Internet infrastructure and cloud, in which the amorphous cloud images may help fuel the false perception that the Internet is a lawless and unaccountable entity that exists beyond policy. The book notes that what is breaking the Internet is not lack of policy, but lack of enforcement and accountability. Internet criminals appears to exists outside the policy structure when the reality is that they are embedded in it and their livelihood in fact depends on the Internet functioning regularly, quickly and efficiently.
While much of the book is focused on cybercrime and fraud, the book also points fingers at ICANN (Internet Corporation for Assigned Names and Numbers) for in some ways facilitating this Internet crime wave. ICANN is the organization that coordinates the Domain Name System (DNS), Internet Protocol (IP) addresses, space allocation, protocol identifier assignment, generic (gTLD) and country code (ccTLD) Top-Level Domain name system management, and root server system management functions. Their premise is that ICANN is more interested in generating revenue and profits than in security.
Due to systemic failures, cybercriminals often hide behind false WHOIS information held by Registrars who do not perform adequate due diligence or enforcement. This is primarily due to the fact that the more domain names that are sold create more revenue for the Registrars. Chapter 4 notes that this weak oversight by ICANN is also one of the biggest threats to the stability of the Internet. The chapter quotes a Godaddy executive who stated that proactive measures to make Internet registries more accurate would not be affordable or useful.
The book provides an analysis of social spam, which has become more pervasive with the emergence of Web 2.0. People are sharing vast amounts of personal data that opens them to these spam attacks. Since the defining characteristic of Web 2.0 is its social nature, it encourages people to share information, collaborate and form social links. These features of social media have the implication that they create a large network of connections between users and content that is controlled almost entirely by the users. This places great power in the hands of well-intentioned users to engage with others and express themselves. But it also provides an opportunity for spammers to exploit the social web for their own interests. As a result, social web applications have become tempting targets for spam and other forms of Internet pollution.
Another fascinating observation around Web 2.0 is that the authors were able to perform use analysis, in which they were able to identify pieces of information about the users which are not necessarily shared directly by their profiles. Items such as sleeping patterns, daily routines, physical locations, and much more are able to be extracted via metadata and other external analysis.
By the time one gets to chapter 5, they have read 200 pages detailing the problems with security and privacy around the Internet core. Exacerbating this is the role of the end user where the chapter notes that if people are offered the choice of convenience or security, then security will lose. The average Internet user is more lazy than security aware; not at all an encouraging observation.
Chapter 7 details one of the banes that have plagued information security; poor user interfaces. It details the four sins of security application user interfaces: popup assault, security by verbosity, walls of checkboxes and all or nothing switches. The book is worth purchasing just for this section.
The book ends with some thoughts for the future, but there is no magic wand or quick happy endings that Jakobsson and his band of ultra-smart contributors offer. Throughout the book, the contributors do though write how there are ways to secure the Internet, but those take thorough and comprehensive strategies and design. There are countermeasures for most of the threats and vulnerabilities detailed and the book provides an unparalleled view of the current state of Internet security.
Situational awarenessis defined as the perception of environmental elements with respect to time and/or space, the comprehension of their meaning, and the projection of their status after some variable has changed. For those looking for a book to gain situation awareness about the dangers of the Internet, one is hard pressed to find a better title than The Death of the Internet.
Reviewed by Ben Rothke.
You can purchase The Death of the Internet from amazon.com. Slashdot welcomes readers' book reviews -- to see your own review here, read the book review guidelines, then visit the submission page.