No not really. How do you pick the randomness? If it's uniformly distributed then I can still extract averages over larger sequences of traffic. You don't have to have an EXACT match on size. For instance, imagine you are trying to catch someone that is exfiltrating a large amount of sensitive data. I don't care what you pad, if I can see both ends of the network I will notice one person transferring a huge amount of data that corresponds with data I see going into the "wikileaks" site (or whatever) on the other. The only way you could defeat this type of attack is if you rate limit all users to the same rate, and force them to transmit data even when they are idle (sometimes called the leaky bucket approach). And that would clog things up pretty quickly.
For trust you need an open protocol specification that can be evaluated in itself.
Then you can write your own implementation that you know is safe or you can use an open source alternative that may or may not be compromised or you can use a binary that may or may not be compromised.
The protocol itself needs to be resilient against man in the middle attacks so that you aren't exposed just because a few other users are using version that are actively trying to figure out where the packets come from.
Literally all of those things are true of Tor, so I don't know wtf your point is here.
Okay so people won't trust the Tor organization, with longstanding community heroes on the board like Bruce Schneier and Matt Blaze, but they will trust a random fork of Tor that is made by anonymous nobodies with a questionable agenda. Very smart.
Yes TOR does not try to protect against those "traffic confirmation" attacks, not could it if it wanted to. If an attacker can observe everything going into the network and everything coming out of it, then the game is over because of simple information theoretic limits. Unless clients are willing to pad all their traffic to some fixed rate. This is not at all practical though, since you would have to have all clients match the bandwidth of the weakest client, making the network unusable.
What a bunch of baseless FUD. The new board was picked precisely because they are beyond reproach. If you think Bruce Schneier and Matt Blaze are government stooges then you might as well just give up trying because no researcher can be trusted.
f we reduce government spending and reduce the tax rates (which government employees hate), then we would also be making an impact on poverty, as well as empowering the people.
How does that work exactly? Because we have had a lot of tax cuts over the last two decades (mostly under Bush) and the poverty rate has only increased.
Also important to note that mosquitoes live entirely off of plant nectar, like lots of other insects. They only need blood to create eggs. There is no reason that another "blood sucking" insect would need to fill their niche because it doesn't provide (or consume) anything from the ecosystem, it is just an ancillary trait that they have.
If only there was some kind of service, perhaps a web site, that could search through the vast amount of information on the internet to answer questions like this... oh well I guess we will never know.
Except that equal in 2016 is not equal. Black people were enslaved and oppressed for hundreds of years, up until very recently. You don't get to go, "okay everything is fair now, no discrimination against white people" when you have centuries of head start.
That's just factually incorrect, they are partnered with video service providers like YouTube. They are not treating all providers the same. They are also limiting to 480p which is definitely noticeable on phones.
Because 99% of people don't know what a VPN is. T-Mobile is happy throttling 99% of their customers and just writing off the 1% that can get around it.
The problem isn't that improving password checkers is hard
It actually is kind of hard. There is no way to "calculate entropy" when you don't know how the password was generated in the first place. I could be using completely random ASCII generator and there is some chance that I will get the password "password", which regardless is not a good password. There were some papers at USENIX this year about password strength meters where they use machine learning to judge the strength of a password but, no, it is not exactly easy.
This is a good article on the topic. It talks about STEM overall but has some parts about computer science. http://www.soc.ucsb.edu/facult...
A case in point is computer
science in Malaysia and the U.S. While American
computer scientists are depicted as male hackers and geeks,
computer science in Malaysia is deemed well-suited for women
because it’s seen as theoretical (not physical) and it takes place
almost exclusively in offices (thought to be woman-friendly
spaces). In interviews with sociologist Vivian Lagesen, female
computer science students in Malaysia reported taking up computing
because they like computers and because they and their
parents think the field has good job prospects. The students also
referenced government efforts to promote economic development
by training workers, both male and female, for the
expanding information technology field. About half of
Malaysian computer science degrees go to women.
How do you know what the engineering interest level of hispanics is in New Mexico? Did you find any sources for that? The only thing I can find states that at New Mexico State University they have about the same number of hispanic students seeking PhDs as white students, which is definitely not the case is other parts of the country. So maybe New Mexico does prove the point but I don't know.
Believe it or not but the country is made up of more places than Albuquerque. In fact, MOST of the country is not Albuquerque. 99.9% of people live elsewhere in the US, and might have different experiences from people that live in Albuquerque. Surprising I know.
I think you are confused about the meaning of the word most. Also about what year it is and how to do math. To your actual point though, there are very few Jewish people left in Germany. If they made up a substantial portion of the population, and were statistically underrepresented in important job sectors, you can bet there would be similar affirmative action programs like in the US.
I think the question of women in technology and minorities in technology are two different things. For women, it is a result of longstanding cultural bias that women are not meant for IT jobs, which causes lower interest because people will pick the path of least resistance. That is very difficult to even get an understanding of let alone solve since it is wrapped up in unconscious feelings, expressions in popular media, etc.
For minorities it is much simpler. As a black student in the US, you are much less likely to have a computer or access to a computer growing up. Since CS is one of the only majors in college where the average student has substantial experience in the subject before they even start, and that experience is not available to many minority students, it is incredibly difficult to catch up and, again, they will pick a path of less resistance by choosing a different major.
But that can't be true, because that would be admitting that there are innate differences between the sexes and that's just not PC to talk about.
This is easily disproven by looking at countries like China, Iran and others where women make up close to 50% of computer science graduates. Whatever the problem is, it is not "innate".
That's a bit of a different situation considering that most European countries did not have government sanctioned segregation and racism as recent as 50 years ago, and slavery just over 100. The effects of those policies don't just disappear after you say they are done. "So sorry we did that to you but now we're square? We will judge everyone equally! Oh don't mind that white people have generations of accumulated advantage, that will sort itself out I am sure."
It is less about racism in hiring than it is about structural racism that leads to lower opportunity for black and hispanic students earlier in the pipeline. If you are a black or hispanic child, you are much less likely to have a computer growing up than a white child. By the time you get to college you will be miles behind other students that have been tinkering with computers for their whole lives. Computer Science is one of the only subjects in college where the average student has substantial experience before they even start the major. It makes for a somewhat hostile environment for underprivileged students, so they go with a path of less resistance like one of the subjects you listed.
Slashdot Mirror
No not really. How do you pick the randomness? If it's uniformly distributed then I can still extract averages over larger sequences of traffic. You don't have to have an EXACT match on size. For instance, imagine you are trying to catch someone that is exfiltrating a large amount of sensitive data. I don't care what you pad, if I can see both ends of the network I will notice one person transferring a huge amount of data that corresponds with data I see going into the "wikileaks" site (or whatever) on the other. The only way you could defeat this type of attack is if you rate limit all users to the same rate, and force them to transmit data even when they are idle (sometimes called the leaky bucket approach). And that would clog things up pretty quickly.
I didn't mean to trust Tor because of them, I meant their presence was not a reason to NOT trust Tor, as some people are claiming.
For trust you need an open protocol specification that can be evaluated in itself. Then you can write your own implementation that you know is safe or you can use an open source alternative that may or may not be compromised or you can use a binary that may or may not be compromised. The protocol itself needs to be resilient against man in the middle attacks so that you aren't exposed just because a few other users are using version that are actively trying to figure out where the packets come from.
Literally all of those things are true of Tor, so I don't know wtf your point is here.
Okay so people won't trust the Tor organization, with longstanding community heroes on the board like Bruce Schneier and Matt Blaze, but they will trust a random fork of Tor that is made by anonymous nobodies with a questionable agenda. Very smart.
Yes TOR does not try to protect against those "traffic confirmation" attacks, not could it if it wanted to. If an attacker can observe everything going into the network and everything coming out of it, then the game is over because of simple information theoretic limits. Unless clients are willing to pad all their traffic to some fixed rate. This is not at all practical though, since you would have to have all clients match the bandwidth of the weakest client, making the network unusable.
What a bunch of baseless FUD. The new board was picked precisely because they are beyond reproach. If you think Bruce Schneier and Matt Blaze are government stooges then you might as well just give up trying because no researcher can be trusted.
It is two round trips: client hello, server hello, client exchange, server finished.
Only if you ignore all the evidence that says that people actually use cash to improve their lives and not spend it substantially on drugs or alcohol.
f we reduce government spending and reduce the tax rates (which government employees hate), then we would also be making an impact on poverty, as well as empowering the people.
How does that work exactly? Because we have had a lot of tax cuts over the last two decades (mostly under Bush) and the poverty rate has only increased.
Also important to note that mosquitoes live entirely off of plant nectar, like lots of other insects. They only need blood to create eggs. There is no reason that another "blood sucking" insect would need to fill their niche because it doesn't provide (or consume) anything from the ecosystem, it is just an ancillary trait that they have.
If only there was some kind of service, perhaps a web site, that could search through the vast amount of information on the internet to answer questions like this... oh well I guess we will never know.
Except that equal in 2016 is not equal. Black people were enslaved and oppressed for hundreds of years, up until very recently. You don't get to go, "okay everything is fair now, no discrimination against white people" when you have centuries of head start.
That's just factually incorrect, they are partnered with video service providers like YouTube. They are not treating all providers the same. They are also limiting to 480p which is definitely noticeable on phones.
Because 99% of people don't know what a VPN is. T-Mobile is happy throttling 99% of their customers and just writing off the 1% that can get around it.
The problem isn't that improving password checkers is hard
It actually is kind of hard. There is no way to "calculate entropy" when you don't know how the password was generated in the first place. I could be using completely random ASCII generator and there is some chance that I will get the password "password", which regardless is not a good password. There were some papers at USENIX this year about password strength meters where they use machine learning to judge the strength of a password but, no, it is not exactly easy.
Yes but that was hundreds of years earlier. We had slavery much longer in the US than other western countries. That is the whole point of my comment.
A case in point is computer science in Malaysia and the U.S. While American computer scientists are depicted as male hackers and geeks, computer science in Malaysia is deemed well-suited for women because it’s seen as theoretical (not physical) and it takes place almost exclusively in offices (thought to be woman-friendly spaces). In interviews with sociologist Vivian Lagesen, female computer science students in Malaysia reported taking up computing because they like computers and because they and their parents think the field has good job prospects. The students also referenced government efforts to promote economic development by training workers, both male and female, for the expanding information technology field. About half of Malaysian computer science degrees go to women.
How do you know what the engineering interest level of hispanics is in New Mexico? Did you find any sources for that? The only thing I can find states that at New Mexico State University they have about the same number of hispanic students seeking PhDs as white students, which is definitely not the case is other parts of the country. So maybe New Mexico does prove the point but I don't know.
Thanks for the info!
Believe it or not but the country is made up of more places than Albuquerque. In fact, MOST of the country is not Albuquerque. 99.9% of people live elsewhere in the US, and might have different experiences from people that live in Albuquerque. Surprising I know.
I think you are confused about the meaning of the word most. Also about what year it is and how to do math. To your actual point though, there are very few Jewish people left in Germany. If they made up a substantial portion of the population, and were statistically underrepresented in important job sectors, you can bet there would be similar affirmative action programs like in the US.
I think the question of women in technology and minorities in technology are two different things. For women, it is a result of longstanding cultural bias that women are not meant for IT jobs, which causes lower interest because people will pick the path of least resistance. That is very difficult to even get an understanding of let alone solve since it is wrapped up in unconscious feelings, expressions in popular media, etc.
For minorities it is much simpler. As a black student in the US, you are much less likely to have a computer or access to a computer growing up. Since CS is one of the only majors in college where the average student has substantial experience in the subject before they even start, and that experience is not available to many minority students, it is incredibly difficult to catch up and, again, they will pick a path of less resistance by choosing a different major.
But that can't be true, because that would be admitting that there are innate differences between the sexes and that's just not PC to talk about.
This is easily disproven by looking at countries like China, Iran and others where women make up close to 50% of computer science graduates. Whatever the problem is, it is not "innate".
That's a bit of a different situation considering that most European countries did not have government sanctioned segregation and racism as recent as 50 years ago, and slavery just over 100. The effects of those policies don't just disappear after you say they are done. "So sorry we did that to you but now we're square? We will judge everyone equally! Oh don't mind that white people have generations of accumulated advantage, that will sort itself out I am sure."
It is less about racism in hiring than it is about structural racism that leads to lower opportunity for black and hispanic students earlier in the pipeline. If you are a black or hispanic child, you are much less likely to have a computer growing up than a white child. By the time you get to college you will be miles behind other students that have been tinkering with computers for their whole lives. Computer Science is one of the only subjects in college where the average student has substantial experience before they even start the major. It makes for a somewhat hostile environment for underprivileged students, so they go with a path of less resistance like one of the subjects you listed.