The NSA encouraged weakening of number randomizers and randomization algorithms which weaken encryption. They don't report vulnerabilities in software.
We brought a world of less secure computer networks and electronic banking and commerce upon ourselves.
Hell we even gave hackers a damn fine model on how to attack.
From the article:"The Stuxnet worm, for instance, was supposed to quietly delete itself after doing its harm, but it was unintentionally released âoeinto the wild, where it is no doubt being tweaked, reverse-engineered, and readied for fresh exploits by others."
"(a) Copyright protection subsists, in accordance with this title, in original works of authorship fixed in any tangible medium of expression, now known or later developed, from which they can be perceived, reproduced, or otherwise communicated, either directly or with the aid of a machine or device. "
As I noted in an earlier post, specific code [called "an original work of authorship"] can be have protection under the statute, but not the processes executed. "(b) In no case does copyright protection for an original work of authorship extend to any idea, procedure, process, system, method of operation, concept, principle, or discovery, regardless of the form in which it is described, explained, illustrated, or embodied in such work."
Patents extend to things, processes, systems and the like.
So, as a lawyer, I think either could apply. And the last piece of software I wrote was a batch file no one would pay for.
Not in the same fashion: U.S. Code Title 17 Chapter 1 102 "(b) In no case does copyright protection for an original work of authorship extend to any idea, procedure, process, system, method of operation, concept, principle, or discovery, regardless of the form in which it is described, explained, illustrated, or embodied in such work."
"The U.S. Supreme Court rebuffed an electronic-commerce patent owner’s effort to revive a $2.5 million verdict against Internet retailer Newegg Inc., in a case with implications for dozens of other companies. The justices refused to hear closely held Soverain Software LLC’s appeal of a lower court ruling that its technology was too obvious to qualify for patent protection."
The lawyers affecting real law. Sensible outcome. Yeah, America!
Guy I know is a builder. Has a closet on the top floor of his house that opens into a crawlway [lighted with LED lamps] leading to each room on the top floor. There are 2 large pieces of PVC pipe with wiring running in and out. One is to the 1st floor room below and the other is to the 2d story room beneath. There is a set of 2 larger PVC pipes that lead to the basement and electrical switching and panels. He has a strand of fish tape [http://www.harborfreight.com/50-ft-fish-tape-38156.html] in each to facilitate pulling wires.
He said it doubled the cost of wiring the house, but it has future proofed any wiring or room access needs.
He is a guy with a lot of money and WAY too much time on his hands, but I thought it was cool. He shows it off at cocktail parties. 7,000 sq. ft. house, sold it for 4 times the cost to build it 6 years earlier.
I have 2 strands of Cat-5e into every room [I use one for 2 telephone lines], a strand of coax and 4 "2-gang" electrical sockets in each room, one on each wall. Try to put the RJ-45, RJ-15 and coax away from the wall with the window or heater. Most likely not where you will put the TV or computer.
Tell the electrician you want each strand to be an "end run" with no splices. Have them all terminate in a room ["the nerve center"] that is not the boiler room nor contains electrical panels, but preferably where your telephone, fiber and cable come into the house. My good friend was the electrician and cut me a real deal.
Label each of the strands coming into the nerve center and your patch panel and then use a gigabit switch and/or wireless throughout.
Cost me a fortune 15 years ago. Still works great. With wireless phones, cell phones and wi/fi, none of it was so vital.
Someone wrote with the idea for conduit between rooms in the walls for future wiring. I like it. Aircraft carriers are built that way.
One non-automation note: radiant floor heat. Best investment in the house I ever made.
This is the equivalent of certain other counties in State courts where class actions were being filed, courts that were VERY friendly to the plaintiff's bar.
CAFA [the Class Action Fairness Act of 2005, 28 U.S.C. ss 1332(d), 1453, and 1711–1715] stopped hometown litigation. It brought any action under FRCP 23 [Federal Rule of Civil Procedure (deals with class actions)] into federal court and brought a level playing field to the area of the law.
Since there is so much money involved in patents, having a separate court system [like the bankruptcy court] might make that area of the law more fair.
But where's the incentive for the creative mind to write the software, bring it to market, support it, etc.? It looks like pretty hard work that isn't certain to pay off.
I understand free as in speech and free as in beer, but there is no free as in groceries. Even coders need to pay rent.
If you want to make the life of the patent shorter or non-renewable, with the goal to not stifle innovation on top of older patents, maybe. But everyone should have a shot at the brass ring.
Under various state laws, companies that hold personal private information have a responsibility to notify people when that information is no longer in their control.
Some are statutory periods of time, like 60 days. Others are more nebulous. ("As soon as possible reasonably practicable.")
The longer they wait to report, the more liable to make themselves under the laws.
You may well be correct and I should not have conjectured. Truly, I have never run Hadoop or any relational data set of any size. Maybe it's something that wouldn't make a dent in bandwidth or come up on some sys admin's radar.
It is indeed more the question that the data wasn't properly secured that allowed for the loss.
Web site overdue for an update? Guilty. On my to do list for years [and probably years from now].
Krebs On Security [http://krebsonsecurity.com/2013/12/sources-target-investigating-data-breach/] says Target was informed of the breach by Visa and Master Card. Target wouldn't have caught it as soon as they did unless they were told.
Negligent? Er, uh, yup.
But banks and credit card companies don't sue vendors, their customers. If they did, they would lose customers. Thus, they eat the losses.
It's the person who just got $900 from their debit card spent fraudulently online that spends hours upon hours plugging the holes and righting the wrongs.
In the period of time between Black Friday and Dec. 17, when Target says this all went down, if they were open 12 hours a day, that's one card every 3 seconds.
Oh, wait. that was when they claimed it was 40 million names.
No way this was real time. Target must have been data mining.
I'm a plaintiff's attorney and I filed before Christmas. Lots of other firms out there with lots of other cases.
Target should have had at least had one sys admin to see that kind of data bump crossing their network while the breach occurred. They advertise for techs that can use Hadoop. They have to understand something about data and bandwidth with 100 million names in a database.
With that amount of data crossing the servers, shouldn't someone seen something?
There's more. Write me if you want info about mine or other cases. target at paulwhalen dot com
[nothing within this post shall be considered a legal opinion, solicitation or attorney advertising]
Slashdot Mirror
The NSA encouraged weakening of number randomizers and randomization algorithms which weaken encryption. They don't report vulnerabilities in software.
We brought a world of less secure computer networks and electronic banking and commerce upon ourselves.
Hell we even gave hackers a damn fine model on how to attack.
From the article:"The Stuxnet worm, for instance, was supposed to quietly delete itself after doing its harm, but it was unintentionally released âoeinto the wild, where it is no doubt being tweaked, reverse-engineered, and readied for fresh exploits by others."
Dennis. It's your father. Your mother got a call from a lady named Lea Samson, about your penis? We're all kinda concerned.
Our offer to pay for the corrective surgery still stands: accidents during circumcision are reversible.
Wow. Tough room.
Thanks for the clarification, but I think for my point, the legal differences are immaterial.
The germane sections of the US code [ http://www.law.cornell.edu/uscode/text/17/102 ] in general state:
"(a) Copyright protection subsists, in accordance with this title, in original works of authorship fixed in any tangible medium of expression, now known or later developed, from which they can be perceived, reproduced, or otherwise communicated, either directly or with the aid of a machine or device. "
As I noted in an earlier post, specific code [called "an original work of authorship"] can be have protection under the statute, but not the processes executed.
"(b) In no case does copyright protection for an original work of authorship extend to any idea, procedure, process, system, method of operation, concept, principle, or discovery, regardless of the form in which it is described, explained, illustrated, or embodied in such work."
Patents extend to things, processes, systems and the like.
So, as a lawyer, I think either could apply. And the last piece of software I wrote was a batch file no one would pay for.
Not in the same fashion:
U.S. Code Title 17 Chapter 1 102 "(b) In no case does copyright protection for an original work of authorship extend to any idea, procedure, process, system, method of operation, concept, principle, or discovery, regardless of the form in which it is described, explained, illustrated, or embodied in such work."
http://www.law.cornell.edu/uscode/text/17/102
So, where Congress extended copyright in 1980 to computer programs, that is different than the underlying method or process.
The Supreme Court held in this case that a payment system was too basic to merit patent protection and declined to hear the appeal.
Then you'll be happy with the SCt. here. In this instance, they stated that you can't patent something so basic and obvious.
http://www.bloomberg.com/news/2014-01-13/internet-patent-owner-loses-high-court-bid-to-revive-suit.html
"The U.S. Supreme Court rebuffed an electronic-commerce patent owner’s effort to revive a $2.5 million verdict against Internet retailer Newegg Inc., in a case with implications for dozens of other companies.
The justices refused to hear closely held Soverain Software LLC’s appeal of a lower court ruling that its technology was too obvious to qualify for patent protection."
The lawyers affecting real law. Sensible outcome. Yeah, America!
Guy I know is a builder. Has a closet on the top floor of his house that opens into a crawlway [lighted with LED lamps] leading to each room on the top floor. There are 2 large pieces of PVC pipe with wiring running in and out. One is to the 1st floor room below and the other is to the 2d story room beneath. There is a set of 2 larger PVC pipes that lead to the basement and electrical switching and panels. He has a strand of fish tape [http://www.harborfreight.com/50-ft-fish-tape-38156.html] in each to facilitate pulling wires.
He said it doubled the cost of wiring the house, but it has future proofed any wiring or room access needs.
He is a guy with a lot of money and WAY too much time on his hands, but I thought it was cool. He shows it off at cocktail parties. 7,000 sq. ft. house, sold it for 4 times the cost to build it 6 years earlier.
I have 2 strands of Cat-5e into every room [I use one for 2 telephone lines], a strand of coax and 4 "2-gang" electrical sockets in each room, one on each wall. Try to put the RJ-45, RJ-15 and coax away from the wall with the window or heater. Most likely not where you will put the TV or computer.
Tell the electrician you want each strand to be an "end run" with no splices. Have them all terminate in a room ["the nerve center"] that is not the boiler room nor contains electrical panels, but preferably where your telephone, fiber and cable come into the house. My good friend was the electrician and cut me a real deal.
Label each of the strands coming into the nerve center and your patch panel and then use a gigabit switch and/or wireless throughout.
Cost me a fortune 15 years ago. Still works great. With wireless phones, cell phones and wi/fi, none of it was so vital.
Someone wrote with the idea for conduit between rooms in the walls for future wiring. I like it. Aircraft carriers are built that way.
One non-automation note: radiant floor heat. Best investment in the house I ever made.
I've fallen, and I can't get up! [ http://www.youtube.com/watch?v=bQlpDiXPZHQ ]
Boy, I'm old.
This is the equivalent of certain other counties in State courts where class actions were being filed, courts that were VERY friendly to the plaintiff's bar.
CAFA [the Class Action Fairness Act of 2005, 28 U.S.C. ss 1332(d), 1453, and 1711–1715] stopped hometown litigation. It brought any action under FRCP 23 [Federal Rule of Civil Procedure (deals with class actions)] into federal court and brought a level playing field to the area of the law.
Since there is so much money involved in patents, having a separate court system [like the bankruptcy court] might make that area of the law more fair.
But where's the incentive for the creative mind to write the software, bring it to market, support it, etc.? It looks like pretty hard work that isn't certain to pay off.
I understand free as in speech and free as in beer, but there is no free as in groceries. Even coders need to pay rent.
If you want to make the life of the patent shorter or non-renewable, with the goal to not stifle innovation on top of older patents, maybe. But everyone should have a shot at the brass ring.
70 million names, addresses, emails, and other personal information data sets we're also stolen.
I'm not sure, but I don't think black boxes at credit card terminals would have solved that problem.
I think Target was data mining, and their database got hacked.
Under various state laws, companies that hold personal private information have a responsibility to notify people when that information is no longer in their control.
Some are statutory periods of time, like 60 days. Others are more nebulous. ("As soon as possible reasonably practicable.")
The longer they wait to report, the more liable to make themselves under the laws.
Fresh fruit? That's some pretty fucking expensive bananas.
How much to put a piece of fruit into orbit?
I mean, I could wait a month to have an apple if I was an astronaut.
That's cause they shopped online. They NEVER deliver by the Christmas deadline when you shop online.
Is this why my lights are off? Got an email that said unless I forked over some serious Bitcoin, my X10 system would be hacked.
That and the coffee maker won't turn on, the lights are out and the TV ... damn, just a blown fuse.
Never mind.
That's pretty funny. I really have to read the subtitles under the subject lines on \.
High-sterical. Literal LOL.
You may well be correct and I should not have conjectured. Truly, I have never run Hadoop or any relational data set of any size. Maybe it's something that wouldn't make a dent in bandwidth or come up on some sys admin's radar.
It is indeed more the question that the data wasn't properly secured that allowed for the loss.
That's a lot of data, though....
Web site overdue for an update? Guilty. On my to do list for years [and probably years from now].
Krebs On Security [http://krebsonsecurity.com/2013/12/sources-target-investigating-data-breach/] says Target was informed of the breach by Visa and Master Card. Target wouldn't have caught it as soon as they did unless they were told.
Negligent? Er, uh, yup.
But banks and credit card companies don't sue vendors, their customers. If they did, they would lose customers. Thus, they eat the losses.
It's the person who just got $900 from their debit card spent fraudulently online that spends hours upon hours plugging the holes and righting the wrongs.
[See? Lousy HTML skills. Sorry.]
In the period of time between Black Friday and Dec. 17, when Target says this all went down, if they were open 12 hours a day, that's one card every 3 seconds.
Oh, wait. that was when they claimed it was 40 million names.
No way this was real time. Target must have been data mining.
I'm a plaintiff's attorney and I filed before Christmas. Lots of other firms out there with lots of other cases.
Target should have had at least had one sys admin to see that kind of data bump crossing their network while the breach occurred. They advertise for techs that can use Hadoop. They have to understand something about data and bandwidth with 100 million names in a database.
With that amount of data crossing the servers, shouldn't someone seen something?
There's more. Write me if you want info about mine or other cases. target at paulwhalen dot com
[nothing within this post shall be considered a legal opinion, solicitation or attorney advertising]
I call shotgun seat.
Modded down as off-topic. Yet +5 insightful to those complaining after me. Welcome to /., baby.
It's your own damn fault for loading the video after reading the summary. ... or did you not read the summary? That will teach you.
Point taken. Lesson learned. Not all material Slashdot editors like is worth a damn.
That slow a news day that we post this? 7 minutes of my life wasted watching this video that I will never get back.