Really old news. The guy's paper is dated 2009. It might be possible that Google hasn't act on it yet, but it is the same thing from one year ago. Sensationalism mode detected!
Even though this is not the first time that ATM vendors prevented a security researcher to publicly disclose findings about flaws in their devices at a conference, this instance is really surprising, since Chiesa held this same presentation at a couple of security conferences already, and the slides he employed are also available online.
The thing is these slides are sanitized, the details of the ATM attack were removed.
Does anybody know where to find a non-sanitized version?
Although the TPM is definitely a strong platform, it suffers from the same old problems that genral Trusted Computing Bases (TCB) suffer.
One very big of those problems (that is yet an open issue) is the communication between the untrusted environment with the TPM. What prevents an attacker, for instance, from setting up a virtual machine (i.e. VMWARE style) that emulates the TPM or even performs a MITM attack?
Quoting Wikipedia:
The difference in numbers has also been explained by the fact that the Greek and Latin spellings of Neroâ(TM)s name transliterate differently into Hebrew (the language used to create the coded numerology[citation needed]). The Greek spelling, âoeNeron Caesar,â transliterates into Hebrew as âoenrwn qsr,â which equates numerically to 666 in Hebrew gematria. By contrast, the Latin title for Nero is spelled simply âoeNero Caesar,â which transliterates to âoenrw qsrâ and has a value of 616.[16] So I guess, not to be pedantic in any sense, that the divergence is just a standardization problem of an early type of stenography. Has the number of the beast in fact been fruit of a standard war?
One Pew Global Attitudes survey, indicating that 51% of Brazilians surveyed have an unfavorable view of the US, hardly points to "widespread disdain" for the United States in Brazil. In fact, most Brazilians find many aspects of the US very favorable, and worthy of admiration. Unfortunately, all of that tends to be lost next to the overwhelming disapproval of American foreign policy (an attitude shared by even greater percentages of Americans). Certainly, though, there is no widespread disdain for the US IT industry, which is admired and viewed correctly as world-class. Adding to what you said, I'd like to point out that the web page that's linked as evidence of this 'widespread disdain' doesn't even contain the word 'Brazil', not even once, let alone any direct reference to this this so called animosity Brazilian people have towards US Americans.
It was intended to be a wordplay, if you read it in english (and not in bash), you'll realize. Thanks for the tip anyway. []'s
Re:Nov 23, 1987 - 1st documented use
on
Spam Is 30 Years Old
·
· Score: 2, Interesting
Well, I beg to differ a little bit. Let's take a look at this signature:
"Paul Czarnecki -- Spam, spam, spam, Usenet, and spam"
I might be wrong, but it is my interpretation that this is a parody that states that most of the messages this poor guy used to get in his mail box were crap with some occasional usenet messages in between. That's not only a use of the term (as we do today) within a context, but also a clear evidence of the link between Hormel SPAM and Electronic SPAM (stated by most as the possible, but not yet proved, origin of the term).
Of course it always will be a matter of interpretation, but for me this sounds like a use of the term SPAM as we use it today and the author of the text clearly states the original meaning of the text as being the same we imply for Electronic SPAM. Since it is a matter of interpretation, why not providing the full story and let the public decide? I think this is a valid information that has encyclopedic and historical value.
Speaking of spam, there are all kinds of spam. There's what some humorless dweebs call comment spam, and then of course I must try to sell you some of this stuff.
Slashdot Mirror
You have to digg up yourself if you want sources, but apparently the chip is Actel ProASIC3.
What about that for "juvenile"!
Isn't CyanogenMod the name of the mod and not the auhtor's? It should be "Cyanogen has ported..."
Slashdotted already? Damn!
Try Google's cache http://webcache.googleusercontent.com/search?oe=UTF-8&hl=pt&q=cache:kZYcDFibjHcJ:https://grepular.com/Abusing_HTTP_Status_Codes_to_Expose_Private_Information
Slashdotted already? Damn!
Really old news. The guy's paper is dated 2009. It might be possible that Google hasn't act on it yet, but it is the same thing from one year ago. Sensationalism mode detected!
You saved me the embarrassment. Thanys too!
...hot water cools you!
Even though this is not the first time that ATM vendors prevented a security researcher to publicly disclose findings about flaws in their devices at a conference, this instance is really surprising, since Chiesa held this same presentation at a couple of security conferences already, and the slides he employed are also available online.
The thing is these slides are sanitized, the details of the ATM attack were removed.
Does anybody know where to find a non-sanitized version?
Dude, I hold a patent on "Mental structures to generate ideas". You're all screwed!
Although the TPM is definitely a strong platform, it suffers from the same old problems that genral Trusted Computing Bases (TCB) suffer. One very big of those problems (that is yet an open issue) is the communication between the untrusted environment with the TPM. What prevents an attacker, for instance, from setting up a virtual machine (i.e. VMWARE style) that emulates the TPM or even performs a MITM attack?
I'd rather die.
"Translators needed. English and Madarin. Pays well. No experience required."
* esteganography
on how many "developers developers developers" jokes are gonna pop up here? I say at least 10...
If they took down the project based on an unfair DMCA claim, just file a counter claim.
I wish I had mod points now! Mod the parent up!
I guess everybody is excused for not reading TFA this time... I'm glad slashdot.org is evolving with its readership! :D
You mean there is an easy way to code around those annoying Windows Vista privilege escalation dialog boxes??? Thanks god!!!
"Wii would like to partE!"
-prxp
It was intended to be a wordplay, if you read it in english (and not in bash), you'll realize. Thanks for the tip anyway. []'s
Well, I beg to differ a little bit. Let's take a look at this signature:
"Paul Czarnecki -- Spam, spam, spam, Usenet, and spam"
I might be wrong, but it is my interpretation that this is a parody that states that most of the messages this poor guy used to get in his mail box were crap with some occasional usenet messages in between. That's not only a use of the term (as we do today) within a context, but also a clear evidence of the link between Hormel SPAM and Electronic SPAM (stated by most as the possible, but not yet proved, origin of the term).
Of course it always will be a matter of interpretation, but for me this sounds like a use of the term SPAM as we use it today and the author of the text clearly states the original meaning of the text as being the same we imply for Electronic SPAM. Since it is a matter of interpretation, why not providing the full story and let the public decide? I think this is a valid information that has encyclopedic and historical value.
Then of course there's Spam, SPAM, and S.P.A.M..
CLICK HERE FOR FREE!! pr0n The "Free Porn" link doesn't work, can you please repost it?