Slashdot Mirror

"You know something's up when politicians bring up a bill out of nowhere, and then try to ram it through over Memorial Day weekend," writes Fortune. "That's what's happening in Illinois, where state lawmakers -- allegedly at the behest of Facebook and Google -- are poised to gut a law that limits the use of facial recognition technology." An anonymous reader writes: Earlier this month a judge refused to throw out a class action complaint against Facebook for using facial recognition software to identify people without their permission and then inviting their friends to "tag" them. Now that suit's lawyer says a so-called "Biometric Information Privacy Act" will actually swap in new definitions for "photograph" and "scan" that will apparently shield Facebook and Google from liability.
The Center for Democracy and Technology called the bill "an unnecessary loss of privacy." Google didn't respond to Fortune's request for a comment, and Facebook said only "We appreciate Senator Link's effort to clarify the scope of the law he authored."

Early Friday morning, SpaceX successfully landed its Falcon 9 rocket on a drone ship at sea for the second time. The company has recovered the post-launch vehicle a total of three times, two of which involved the rocket landing on a floating drone ship in the Atlantic Ocean. Before the launch, the landing was deemed unlikely as the rocket would be "subject to extreme velocities and re-entry heating" in its attempt to launch a Japanese communications satellite into a geostationary transfer orbit high above Earth. Elon Musk tweeted: "Rocket reentry is a lot faster and hotter than last time, so odds of making it are maybe even, but we should learn a lot either way." As a result of the successful mission, Musk followed up with, "May need to increase size of rocket storage hangar." The first successful launch was in December, when the rocket landed at a ground-based spaceport in Cape Canaveral, Florida. The second landing occurred in April on a floating drone ship in the Atlantic Ocean.

Rebecca Harrington, writing for Tech Insider: China has plans to orbit the moon, land people on it, and eventually settle a moon colony. But that's just part of the nation's vision for space exploration: China intends to get a spacecraft to Mars by 2020. "Our long-term goal is to explore, land, and settle [on the moon]," Wu Weiren, chief designer of China's moon and Mars missions, told the BBC. "We want a manned lunar landing to stay for longer periods and establish a research base." Weiren didn't specify when the country plans to accomplish these goals, but he did say they will "check out" the far side of the moon before attempting to land astronauts there. This mission already has concrete plans. He also said China wants to reach Mars by 2020, and implied that the country has finally settled on a mission to send a rover to the Red Planet. "We will orbit Mars, land and deploy a rover -- all in one mission," Weiren told the BBC.

An anonymous reader shares an Ars Technica article: The Federal Communications Commission today unveiled new broadband labels modeled after the nutrition labels commonly seen on food products. Home Internet service providers and mobile carriers are being urged to use the labels to give consumers details such as prices (including hidden fees tacked onto the base price), data caps, overage charges, speed, latency, packet loss, and so on. ISPs aren't required to use these labels. But they are required to make more specific disclosures as part of transparency requirements in the FCC's net neutrality order, which reclassified Internet providers as common carriers under Title II of the Communications Act. The FCC recommends that ISPs use these labels to comply with the disclosure rules and says use of the labels will act as a "safe harbor" for demonstrating compliance. However, ISPs can come up with their own format if they still make all the required disclosures in "an accurate, understandable, and easy-to-find manner," the FCC said today.

Bruce66423 writes: In its latest filing, the FBI implies that, if the burden on Apple programmers of their alternative approach is too great, then Apple should release the whole source code to the FBI to allow them to do the work, quoting the precedent of the Lavabit confrontation. Clearly it is time for Apple to move offshore!? To recall, Lavabit abruptly shut down in 2013 when the FBI attempted to get the company to hand over the encryption keys for its secure email service. While the current situation seems to put Apple in the same ballpark as Lavabit, what gives the Cupertino-giant company an advantage is the immense support it is receiving from other Silicon Valley companies and personnel. Many believe that the FBI doesn't really need Apple's help in unlocking the iPhone. Reports claim that the iPhone in question already has a "backdoor" which could allow the government-backed institution to access the data on the smartphone. Other widely reported theories include cracking the iPhone and manipulating the innards to trick the system into spilling out all the information. One proposed method, which requires the phone's NAND flash chip to be taken out, may not work, though. Daniel Kahn Gillmor, a technology fellow with the ACLU's Speech, Privacy and Technology Project, pointed out the risks in playing with flash memory. He said that an error in removing the memory could make the data unreadable forever.

Mickeycaskill writes: Fujitsu and the Tokyo Institute of Technology have achieved a wireless transmission of 56Gbps over a 10cm distance using millimeter-wave (mmWave) frequencies located between 30-300GHz. While cellular capacity is improved in some areas through the addition of new mobile masts and small cells, the fibre networks used to link these sites to the wider network is either absent or not feasible to deploy in urban locations or on difficult terrain. This makes the wireless capacity of mobile masts even more important. To achieve the speed, researchers developed custom chips and interface technology to boost capacity of wireless signals without significant data loss.

It is claimed that by pairing the technology developed with a high-output amplifier, the same effect can be achieved outdoors and could be commercialised for mobile operators by 2020.

Etherwalk writes: President Obama plans to announce a four billion dollar computer science initiative for K-12 schools, where fewer than 15 percent of American high schools offer Advanced Placement (i.e. college 101) Computer Science courses. This is still very much open to negotiation with Congress, because it is part of a budget request from the President. So write your Congressman if you support it. The $4 billion would be doled out over a period of three years to any state that applies for the funds and has a well-designed plan to expand access to computer science courses, especially for girls and minorities.

Lucas123 writes: A start-up financial services company called Someone With Group has just completed a pilot of a crowdfunding service that allows hospitals to set up campaigns to help patients pay their medical expenses. The website, which is HIPAA compliant in terms of privacy and security, allows patients facing medical debts to inform family, friends and even strangers of their need for funds versus flowers or cards. The crowdfunding service also addresses a systemic debt issue in the healthcare industry. Each year, the U.S. healthcare industry writes off $40 billion in bad debt from unpaid medical bills. "Then you consider that $6 billion is spent on cards and flowers for patients every year. Why can't we redirect that money and put it into a debit instrument restricted to medical spending only?" said Jagemann-Bane, CEO of Someone With Group. One hospital group, Pinnacle Health Systems in Harrisburg, Penn., routinely writes off $40 million to $50 million a year in unpaid medical bills from patients. The hospital set up a crowdfunding site via Someone With Group and so far has seen a couple dozen patients use it. ... After a one-year pilot of the crowdfunding service, patients who've used it on average have raised $2,315.

An anonymous reader writes: A panel of experts at the BBC discuss the possibility of re-purposing the Sahara Desert. Instead of having over 9 million square kilometers of barren sand, we could start a massive project to gradually fill it with solar panels. The remarks are illuminating: "The technology is good. It's matured a lot in the last few years in terms of thermal storage. And the Sahara desert is so big that if there is cloudy weather, it's localized, and with thermal storage, it can provide absolutely reliable power." The difficulties turn out to be mostly political: "The biggest potential pitfall is that it's politically complicated. You're not going to develop solar energy in the Sahara unless you have a very strong state involvement, both on the side of the consumers and the project developers." And one of the panelists points out that Africa must have a large share of the benefits: "Things have changed. Africans are self-confident now, they want to participate in their development, and they want to have part of their resources, they are not just there to always give to the rest of the world and remain poor."

An anonymous reader writes: Can Twitter Spot Terrorists and Put Them In Jail? Hany Farid, the chairman of the Computer Science department at Dartmouth University, thinks so. He told the New York Times that there's "no fundamental technology or engineering limitation" to spotting terrorists on the Intertubes. In other words, he's figured out how to tell the difference between bragging terrorists and kids who are just joking about being "da bomb." Can artificial intelligence make these distinctions? Or will it generate a ton of false positives? Or is Prof. Farid just trolling for more grant money to make Dartmouth the premier department for spying on social media?

An anonymous reader writes: Ivan Ristic is well-known in the information security world, and his name has become almost a synonym for SSL Labs, a project he started in early 2009. Before that, he was mostly known for his work with OWASP and the development of the wildly popular open source web application firewall ModSecurity. While SSL Labs was something Ristic worked on in his spare time, over time it became his main focus. In fact, over the years, the project incorporated a great number of checks that are impossible to perform manually. It's a game changer because, to assess your TLS configuration, you don't need to be an expert. Read the story about the project's evolution on Help Net Security.

schwit1 writes: An opinion piece at Vox argues that "car dealers are awful," and the efforts to protect them against direct sales from Tesla and other manufacturers are misguided. "Buying a car involves going from dealer to dealer, each of whom has his own inventory. One guy only has blue paint. The other guy doesn't have the blue paint, and also only has dark gray seats. And each has his own fake sticker prices and complicated cash-back offers. It's no wonder 83 percent consumers say they would rather skip the haggling, and a third of people say doing taxes is less annoying than working with a car dealer.

But it's not just the hassle. State bans on direct sales turn out to cost consumers an enormous amount of cash. It's an enormous problem, and it warrants a federal solution. Cars are the most expensive consumer product that the typical consumer buys. And while it may seem obvious that cars are expensive due to the material and labor required to build them, the logistics of distributing cars is actually a very expensive part of the process. Research by Eric Marti, Garth Saloner, and Michael Spence has concluded that as much as 30 percent of the cost of a car is the cost of distribution.

Tulsa_Time writes with this excerpt of an account from the (unapologetically partisan) Americans for Tax Reform about a report released by the Government Accountability Office in which "application and enrollment controls on the federal exchange and two state exchanges (California and Kentucky)" were investigated by supplying false information; in each case, the investigators were able to obtain and activate health insurance through the exchanges. A slice: Ten fictitious applicants were created to test whether verification steps including validating an applicant's Social Security number, verifying citizenship, and verifying household income were completed properly. In order to test these controls, GAO's test applications provided fraudulent documentation: "For each of the 10 undercover applications where we obtained qualified health-plan coverage, the respective marketplace directed that our applicants submit supplementary documentation we provided counterfeit follow-up documentation, such as fictitious Social Security cards with impossible Social Security numbers, for all 10 undercover applications."

An anonymous reader writes: Canonical's Mark Shuttleworth revealed today that they're planning to make ZFS standard on Ubuntu. They are planning to include ZFS file-system as "standard in due course," but no details were revealed beyond that. However, ZFS On Linux contributor Richard Yao has said they do plan on including it in their kernel for 16.04 LTS and the GPL vs. CDDL license worries aren't actually a problem. Many Linux users have been wanting ZFS on Linux, but aside from the out of tree module there hasn't been any luck in including it in the mainline kernel or with tier-one Linux distributions due to license differences.

Lasrick writes: Peter Bradford explains what the EPA's new Clean Power Plan has in store for nuclear energy. He provides an excellent explanation of the details of the plan, and how the nuclear industry benefits (or doesn't). "The competitive position of all new low-carbon electricity sources will improve relative to fossil fuels. New reactors (including the five under construction) and expansions of existing plants will count toward state compliance with the plan's requirements as new sources of low-carbon energy. Existing reactors, however, must sink or swim on their own prospective economic performance—the final plan includes no special carbon-reduction credits to help them."

jmcbain writes: I am an software engineer for a client-server user account system handling both Web and smartphone clients. I have been searching for definitive and crystal-clear best practices for managing user account and password data using open-source software, but I have only cobbled together a complete picture from dozens of websites. I currently have a system that sends passwords over SSL and performs bcrypt hashing for storage and authentication checking at the server side. Is that good enough? The recent Ashley Madison breach and the exposure of MD5-hashed passwords (as opposed to bcrypt) has me worried again. Can someone please suggest a definitive, cookbook-style Web resource or book on how to use open-source software to handle user passwords for multiple client-server scenarios? I would like answers to questions such as: Where do I perform hashing (smartphone/web client or server)? What hash algorithm should I use? How do I store the hashes? How can clients recover forgotten passwords? etc.

An anonymous reader writes with a link to The Stack's report that researchers at security firm zScaler have spotted a clever new variety of Android-based ransomware, which takes advantage of phones' built-in cameras to add a personal touch; it activates the camera to take a snapshot of the user, which is then incorporated into its blackmail note. "The crudely-planned app features an extraordinarily demanding privacy/functionality swap at install, and proceeds to demand a $500 'FBI fine' via PayPal, rather than any of the cryptocurrencies which most ransomware authors currently favour."

mescobal writes: A new release of the Trinity Desktop Environment (TDE) is out. TDE is "a computer desktop environment for Unix-like operating systems with a primary goal of retaining the function and form of traditional desktop computers" which translates into a fully functional KDE 3 style Desktop. Something is missing in the new generation of desktop environments, since some people (perhaps more than "some") feel at home with Gnome 2 or KDE i3. They have repositories for Debian and Ubuntu-based distros. I'm now using it on Ubuntu 15.04, amazed about how well-planned things were in the previous generation of DE. We may have gained some things with Gnome 3 and Plasma 5, but we lost a lot of good features too. TDE brings them back.

An anonymous reader writes: A company called Tri Alpha has successfully kept a ball of superheated gas stable for a record time, 5 milliseconds, putting them closer to producing fusion power. "'They've succeeded finally in achieving a lifetime limited only by the power available to the system,' says particle physicist Burton Richter of Stanford University in Palo Alto, California, who sits on a board of advisers to Tri Alpha. If the company's scientists can scale the technique up to longer times and higher temperatures, they will reach a stage at which atomic nuclei in the gas collide forcefully enough to fuse together, releasing energy.

Importantly, the Tri Alpha machine may be able to operate with a different fuel than most other fusion reactors. This fuel-a mix of hydrogen and boron-is harder to react, but Tri Alpha researchers say it avoids many of the problems likely to confront conventional fusion power plants." The article does not say how much this success cost the privately-funded Tri Alpha, but it certainly wasn't in the billions of dollars.

sciencehabit writes: Scientists have described what they say is the first known fossil of a four-legged snake. The limbs of the 120-or-so-million-year-old, 20-centimeter-long creature are remarkably well preserved and end with five slender digits that appear to have been functional (abstract). Thought to have come from Brazil, the fossil would be one of the earliest snakes found, suggesting that the group evolved from terrestrial precursors in Gondwana, the southern remnant of the supercontinent Pangaea. But although the creature's overall body plan—and indeed, many of its individual anatomical features—is snakelike, some researchers aren't so sure that it is a part of the snake family tree.