Understanding how matrices represent systems of linear equations is pretty darned useful to have internalized early on. I wouldn't call it regurgitation and memorization.
I took the full meal deal after I left college, since it crops up in my work all the time.
> At least linear algebra is like a 300-level course.
Why? When I was at school, the basics of linear algebra (matrices, eschelon forms, gaussian elimination, A=LU, etc, but not the higher dimensional stuff) was taught on and off from around age 13. You were supposed to know it when you got to college. I remember not being presented with Eigen-whatsits until college.
It might be a 300 course in the US today, but it doesn't have to be. It's not that complex, just a bit conceptually different to what kids get from algebra.
It was a long time ago in a university far far away, but for all the 'hard' courses, I brought myself several textbooks for each course. Reading the subject from multiple viewpoints and multiple ways of explaining was effective at getting the ideas in my head. Of course if the textbooks were the price they are in the US today, I don't think I'd be able to afford that approach. I still have a pile of math and DSP books in front of me from that time. Lecturer quality varies, but you still have to learn the stuff.
Well, the discussion was between central CAs and self-signing.
What do you see the choices as?
Fair enough.
My basic principle is the domain of interest of the CA signer should be synchronous with the domain of interest of the signee. Like a company CA, or a govt CA or a household CA. The situation where root CAs, trusted by OSs and browsers are just floating out there on the internet, separate from the certs they sign is a source of the problems. PKI fails because of the way CAs work and it doesn't fail safe. It's broken now but your browser doesn't bring up a warning saying "At least on the CAs is compromised!".
My day job, amongst other things, involves working to solve these certification problems. I have a much more complete proposal but it's being worked for submission right now. It would involve everything signing it's own cert (automagically) and separate attestation certs. So I guess I'm proposing it, but not in the way discussed here.
>> a political union that works to prevent a repeat of the march to war that led to world wars 1 and 2
No, I think that was NATO. I thought the EU was about a common currency and set of laws that would allow it to function as a united bloc against powers like the US and China.
EEC (1951) -> Schengen Agreement (1985) -> EU (1993 - Maastricht Treaty) --> EMU (Economic and Monetary Union - spread over the 1990s) .
It's about all of the above. Preventing internal wars, defining Europe as a Western power, economic improvement through freedom of goods, currency and labour.
If you put a closed border around the solar system and consider the entropy within, it will increase whether or not you have a child. The sun is winning the "who's increasing entropy most" battle.
They have better things they should be focusing on, like keeping the migrant hordes away from the borders.
Snowden is a fugitive from US justice, he must answer for the crimes he committed against the US government. This is none of the EU's business, this resolution is just a masturbatory exercise.
Snowden needs to be brought back to the US and punished.
It seems that he worked around that problem. Maybe the NSA should have behaved instead.
The EU is a fine example of why keeping the migrant hoards away from the borders is counterproductive. The sky did not fall in. The restaurants got better because they could get more native talent for their cuisine type.
>The European Parliament is a next to useless organization.
The primary goal of the European Parliament is to create a political union that works to prevent a repeat of the march to war that led to world wars 1 and 2. It has worked well for a long time.
>Because you can't know if it's really self-signed Yes you can. You can check the signature and see that it was created using the public key associated with the private key in the cert.
I assume you mean you can't know if the cert was issued by the entity it claims to be issued by. This is true of all certs when you have CAs issuing certs to anybody. This is why X.509 PKI is brittle. It only takes one bad CA to break everything and we have several bad CAs. We can add Symantec/Verisign to the list.
That would have been nice wouldn't it? I had to get the details from an email and then it may have ended up on the INCITES web site (the US delegation web site).
No, GP was correct. Written English is certainly a different set of registers from spoken English, but the original sentence is grammatical in neither. The original placement of "well" does not satisfy the correctness conditions of English syntax. It's not idiomatic. It's wrong.
So if you had worked on the development of a secret governemtn cryptographic attack against the ECDLP, and you were now being asked to implement an ECDH exchange in consumer software that was subject to that attack, what would you do?
Would you go right ahead and implement it knowing it was unsafe, or would you warn people of the danger? I don't think you would do the latter.
People go to jail, people die when crypto fails them. Not everyone, but certainly some.
It also has an impact on what you can be trusted with. I would not employ you in any capacity that was a position of trust over customer security. You say it was guidance systems, but if you were seeking the key management job, it would raise questions about what your motivations are.
It's not a pejorative thing. It's just how trust works. It isn't transitive and it goes both ways.
Slashdot Mirror
Understanding how matrices represent systems of linear equations is pretty darned useful to have internalized early on. I wouldn't call it regurgitation and memorization.
I took the full meal deal after I left college, since it crops up in my work all the time.
That's not far off. Destroying X.509 and TLS is also on my agenda, so it's probably going to keep me busy until retirement.
Yes. It does. That's the hard problem. There are solutions, but none of them involve CAs and PKI in the way browsers and email use them today.
> At least linear algebra is like a 300-level course.
Why? When I was at school, the basics of linear algebra (matrices, eschelon forms, gaussian elimination, A=LU, etc, but not the higher dimensional stuff) was taught on and off from around age 13. You were supposed to know it when you got to college. I remember not being presented with Eigen-whatsits until college.
It might be a 300 course in the US today, but it doesn't have to be. It's not that complex, just a bit conceptually different to what kids get from algebra.
It was a long time ago in a university far far away, but for all the 'hard' courses, I brought myself several textbooks for each course. Reading the subject from multiple viewpoints and multiple ways of explaining was effective at getting the ideas in my head. Of course if the textbooks were the price they are in the US today, I don't think I'd be able to afford that approach. I still have a pile of math and DSP books in front of me from that time. Lecturer quality varies, but you still have to learn the stuff.
To the linear algebra problem in TFS, I highly recommend the MIT Open Courseware Linear Algebra lectures by Gilbert Strang. He's a good teacher.
Well, the discussion was between central CAs and self-signing.
What do you see the choices as?
Fair enough.
My basic principle is the domain of interest of the CA signer should be synchronous with the domain of interest of the signee. Like a company CA, or a govt CA or a household CA. The situation where root CAs, trusted by OSs and browsers are just floating out there on the internet, separate from the certs they sign is a source of the problems. PKI fails because of the way CAs work and it doesn't fail safe. It's broken now but your browser doesn't bring up a warning saying "At least on the CAs is compromised!".
My day job, amongst other things, involves working to solve these certification problems. I have a much more complete proposal but it's being worked for submission right now. It would involve everything signing it's own cert (automagically) and separate attestation certs. So I guess I'm proposing it, but not in the way discussed here.
And when everyone self signs, we'll have many millions of bad CAs.
And who is proposing that at a solution to anything? It's the first I've heard of it.
You sound insecure.
To be fair, even Symantec SSL certificates are more secure than just blindly trusting self signed certs.
Who's blindly trusting them? I trust my own self signed cert that I use for my own purposes.
On the other hand, my browsers however trust on my behalf, a large number of root certs that I've never heard of. That's where the blind trust is.
>> a political union that works to prevent a repeat of the march to war that led to world wars 1 and 2
No, I think that was NATO. I thought the EU was about a common currency and set of laws that would allow it to function as a united bloc against powers like the US and China.
EEC (1951) -> Schengen Agreement (1985) -> EU (1993 - Maastricht Treaty) --> EMU (Economic and Monetary Union - spread over the 1990s) .
It's about all of the above. Preventing internal wars, defining Europe as a Western power, economic improvement through freedom of goods, currency and labour.
If you put a closed border around the solar system and consider the entropy within, it will increase whether or not you have a child. The sun is winning the "who's increasing entropy most" battle.
They have better things they should be focusing on, like keeping the migrant hordes away from the borders.
Snowden is a fugitive from US justice, he must answer for the crimes he committed against the US government. This is none of the EU's business, this resolution is just a masturbatory exercise.
Snowden needs to be brought back to the US and punished.
It seems that he worked around that problem. Maybe the NSA should have behaved instead.
The EU is a fine example of why keeping the migrant hoards away from the borders is counterproductive. The sky did not fall in. The restaurants got better because they could get more native talent for their cuisine type.
>The European Parliament is a next to useless organization.
The primary goal of the European Parliament is to create a political union that works to prevent a repeat of the march to war that led to world wars 1 and 2. It has worked well for a long time.
>Because you can't know if it's really self-signed
Yes you can. You can check the signature and see that it was created using the public key associated with the private key in the cert.
I assume you mean you can't know if the cert was issued by the entity it claims to be issued by. This is true of all certs when you have CAs issuing certs to anybody. This is why X.509 PKI is brittle. It only takes one bad CA to break everything and we have several bad CAs. We can add Symantec/Verisign to the list.
With a current sensor in the road triggering the camera.
Yeah, I can't imagine how they will "secure" this system from people "stealing" their magnetic waves.
With a camera, the same way they collect revenue from drivers exceeding the speed limit.
Here's the invitation from the people who hosted.. http://59.177.182.156/sc27/ind...
That would have been nice wouldn't it? I had to get the details from an email and then it may have ended up on the INCITES web site (the US delegation web site).
ISO JTC1/SC27 is meeting right now in Jaipur India. I'm one of the US delegates, but screw ups leading to no visa meant I didn't go.
I imagine they might be having some discussions in the corridors about this.
Set up a design center in India and hire good engineers and you will benefit from the skills the country has to offer. We did.
The creators of Unix already knew that TAB was the superior indentation character
If only ASCII had thought to add the TAB2, TAB4 and TAB8 characters. Problem solved.
If my hashes changed in directories I had not touched, I'd call IT ands raise merry hell. You would be found and punished.
No, GP was correct. Written English is certainly a different set of registers from spoken English, but the original sentence is grammatical in neither. The original placement of "well" does not satisfy the correctness conditions of English syntax. It's not idiomatic. It's wrong.
I didn't well understand that.
So if you had worked on the development of a secret governemtn cryptographic attack against the ECDLP, and you were now being asked to implement an ECDH exchange in consumer software that was subject to that attack, what would you do?
Would you go right ahead and implement it knowing it was unsafe, or would you warn people of the danger? I don't think you would do the latter.
People go to jail, people die when crypto fails them. Not everyone, but certainly some.
It also has an impact on what you can be trusted with. I would not employ you in any capacity that was a position of trust over customer security. You say it was guidance systems, but if you were seeking the key management job, it would raise questions about what your motivations are.
It's not a pejorative thing. It's just how trust works. It isn't transitive and it goes both ways.