@muphin, as @manu0601 stated below, you would need to compromise all identity providers in order for all SSO-member websites to be affected.
The security strategy I suggested (Federated SSO) would allow the compromised identity provider (e.g. Drupal.org) to have its federation membership trust revoked (either voluntarily or involuntarily) plus allow unaffected identity providers to take proactive measures to all related accounts (e.g. Example.com sending a warning [or simply resetting their access rights] to its users who had previously trusted Drupal.org).
Unfortunately, instead of embracing and investing into a federated SSO arrangement, most companies try to roll their own [derivative] security schemes which lack industry membership and then fail... most commonly after a major security breach whereby millions of users' identities AND credentials are compromised -- as opposed to simply their site-specific SSO token and whatever information a particular member site collected.
If only a federated single sign-on strategy were leveraged with individual provider revocation strategies in place, at least these thousands of affected individual wouldn't have to reset their passwords on yet another d'oh-prone website.
The current generation of kids (graduating since early-2000's onward) grew up in a consumerist economy: be the "one" and you'll be rich! Accomplish this by pursuing a degree in a field of study perceived as financially viable regardless of the greater economy's need for such "specialty."
Too many kids graduate without being prepared for adulthood -- much less the responsibilities expected of them that goes in-hand with a commanding financial package. These kids dutifully do their homework but never truly appreciate the significance of the assignments. This is the real truth: apply your homework assignment to some new-fangled idea that is more significant than yourself then quit school to pursue it to its fullest.
College drop-outs financially succeed not only because they take risks, but also because they actually appreciated what was taught to them by applying it in the real world. Some drop-outs were not computer geniuses... rather, they are the unsung heroes who go to work day-in/day-out with recognition for being young, ambitious, attentive to detail, and reliable workers (either as programmers, analysts, or support staff).
Moral of the story: do something worthwhile in college instead of waiting for Godot after shaking some person's hand with a rolled up piece of paper.
Truth be told, not every desk monkey is sufficiently qualified to NOT break any computer file they touch -- including those who rename files hoping the target application would simply open it (not realizing the file NAME is not the same as the file's actual FORMAT).
Alas, the snippet makes point about spreadsheet formulae which is the bane of any bean counter's computer existence.
By "Free copies" you must mean a broader discount rate for their Office 365 suite, right? Because if the documents are web-based, and imported/exported as OpenDocument, then the AUS gov't wouldn't have to bother with desktop installs to anything except MS Project.
And for Dell's part, they also realized that cooking the books wouldn't help their overall financial position without pulling a CA-style fraud.
After all, their OpenStack unit would have to buy equipment (presumably Dell servers), but that's just shuttling dollars from one P&L to another. They would surely need more customers footing that bill before rolling their own -- which, mark my words, is what they'll do once their P&L statements allow them.
Until that time, they'll just let the partners handle the infrastructure, have them pay for hardware, and keep the margins in the bank.
With a software-based ICS simulation, plus the software-based infrastructure within which such simulations must reside, this becomes a GREAT time to invest into virtualization players across the board: hardware, software, security, etc.
For infrastructure security, this is absolutely great news! The tallest barrier to entry for non-professional security researchers is access to both facilities and simulated energy consumption devices... I wonder if these guys will make this available as a VM appliance...
The keyword in the WIRED article besides "simulation" was "3-D." I get the sense they're looking to do some videogame-like visual simulations representing the physical, chemical, and electrical interactions within the brain -- and when you hit a metaphorical brick wall, simply simulate a trajectory around it.
In the end, the best these guys can do is visually represent interactions from nerve ending to nerve ending; so "functioning" on a mobility level but not "functioning" as would a mind with concepts of thought, emotions, and vocabulary selection.
If they [I]are[/I] seeking to build an AI from soup to nuts, then Markram is only exhibiting hyperbolic ambition with [I]hope[/I] of making the 1-billion-euro grant not go entirely to waste (as though commercial financial incentives aren't enough for CPU/GPU/RAM designers to truly push the envelope of making supercomputer-like capabilities bundled into our pockets).
I have my own theories on how to computationally simulate the human brain, but Markram will fail to such an absurd extent that human rights won't even be a consideration -- most notably, he's approaching the brain simulations "wrong." And the secret sauce that we label as consciousness is merely the characterization of causal reactions upon which the majority of humanity doesn't have the faintest clue what causes them -- and we readily discount other things as not having a conscious merely because other things don't exhibit the same type of reactions to known causes that humans do.
From a technological perspective, we have had the computer power and capabilities for at least the past decade. It's just that most (99.99999%) of people do, indeed, lack the ambition AND know-how to venture into the realm of brain simulation. Yet, just because Markram and his financial backers think that he does, that does not mean that he would succeed. [Brain simulation AI will certainly return to being an 'hot research topic' in another 1-2 years... then we'll all learn something about the mind.]
When it comes to humans understanding the brain, it's always a race against time. By the time ambitious researchers feel comfortable enough with what they need to know to express how things work, they've typically reached retirement or their death bed. Sad but true...
Don't get me wrong, this is good news -- a tech company ACTUALLY delivering on their SDK promises... but I fear it'll be characterized as yet ANOTHER payment mechanism within the Android ecosystem subject to regional limitations... and, thus, greater fragmentation in the Android world.
Slashdot Mirror
Since Linux Mint is based on Ubuntu, why should Canonical care whether you use their distro or the Mint distro?
Oh you and your common sense. History is meant to be forgotten, not compared against!
That remark should have been made as a private message; a public reply qualifies as public disclosure.
Like @Maxwell demon suggested, why stop at launching full-blown products in beta? Simply release their security patches in beta form as well!
@muphin, as @manu0601 stated below, you would need to compromise all identity providers in order for all SSO-member websites to be affected.
The security strategy I suggested (Federated SSO) would allow the compromised identity provider (e.g. Drupal.org) to have its federation membership trust revoked (either voluntarily or involuntarily) plus allow unaffected identity providers to take proactive measures to all related accounts (e.g. Example.com sending a warning [or simply resetting their access rights] to its users who had previously trusted Drupal.org).
Unfortunately, instead of embracing and investing into a federated SSO arrangement, most companies try to roll their own [derivative] security schemes which lack industry membership and then fail... most commonly after a major security breach whereby millions of users' identities AND credentials are compromised -- as opposed to simply their site-specific SSO token and whatever information a particular member site collected.
Thank you, manu0601. There are lots of folks who don't fully understand the technicalities behind a federated SSO solution.
If only a federated single sign-on strategy were leveraged with individual provider revocation strategies in place, at least these thousands of affected individual wouldn't have to reset their passwords on yet another d'oh-prone website.
The current generation of kids (graduating since early-2000's onward) grew up in a consumerist economy: be the "one" and you'll be rich! Accomplish this by pursuing a degree in a field of study perceived as financially viable regardless of the greater economy's need for such "specialty."
Too many kids graduate without being prepared for adulthood -- much less the responsibilities expected of them that goes in-hand with a commanding financial package. These kids dutifully do their homework but never truly appreciate the significance of the assignments. This is the real truth: apply your homework assignment to some new-fangled idea that is more significant than yourself then quit school to pursue it to its fullest.
College drop-outs financially succeed not only because they take risks, but also because they actually appreciated what was taught to them by applying it in the real world. Some drop-outs were not computer geniuses... rather, they are the unsung heroes who go to work day-in/day-out with recognition for being young, ambitious, attentive to detail, and reliable workers (either as programmers, analysts, or support staff).
Moral of the story: do something worthwhile in college instead of waiting for Godot after shaking some person's hand with a rolled up piece of paper.
Truth be told, not every desk monkey is sufficiently qualified to NOT break any computer file they touch -- including those who rename files hoping the target application would simply open it (not realizing the file NAME is not the same as the file's actual FORMAT).
Alas, the snippet makes point about spreadsheet formulae which is the bane of any bean counter's computer existence.
By "Free copies" you must mean a broader discount rate for their Office 365 suite, right? Because if the documents are web-based, and imported/exported as OpenDocument, then the AUS gov't wouldn't have to bother with desktop installs to anything except MS Project.
And for Dell's part, they also realized that cooking the books wouldn't help their overall financial position without pulling a CA-style fraud.
After all, their OpenStack unit would have to buy equipment (presumably Dell servers), but that's just shuttling dollars from one P&L to another. They would surely need more customers footing that bill before rolling their own -- which, mark my words, is what they'll do once their P&L statements allow them.
Until that time, they'll just let the partners handle the infrastructure, have them pay for hardware, and keep the margins in the bank.
With a software-based ICS simulation, plus the software-based infrastructure within which such simulations must reside, this becomes a GREAT time to invest into virtualization players across the board: hardware, software, security, etc.
For infrastructure security, this is absolutely great news! The tallest barrier to entry for non-professional security researchers is access to both facilities and simulated energy consumption devices... I wonder if these guys will make this available as a VM appliance...
The keyword in the WIRED article besides "simulation" was "3-D." I get the sense they're looking to do some videogame-like visual simulations representing the physical, chemical, and electrical interactions within the brain -- and when you hit a metaphorical brick wall, simply simulate a trajectory around it.
In the end, the best these guys can do is visually represent interactions from nerve ending to nerve ending; so "functioning" on a mobility level but not "functioning" as would a mind with concepts of thought, emotions, and vocabulary selection.
If they [I]are[/I] seeking to build an AI from soup to nuts, then Markram is only exhibiting hyperbolic ambition with [I]hope[/I] of making the 1-billion-euro grant not go entirely to waste (as though commercial financial incentives aren't enough for CPU/GPU/RAM designers to truly push the envelope of making supercomputer-like capabilities bundled into our pockets).
I have my own theories on how to computationally simulate the human brain, but Markram will fail to such an absurd extent that human rights won't even be a consideration -- most notably, he's approaching the brain simulations "wrong." And the secret sauce that we label as consciousness is merely the characterization of causal reactions upon which the majority of humanity doesn't have the faintest clue what causes them -- and we readily discount other things as not having a conscious merely because other things don't exhibit the same type of reactions to known causes that humans do. From a technological perspective, we have had the computer power and capabilities for at least the past decade. It's just that most (99.99999%) of people do, indeed, lack the ambition AND know-how to venture into the realm of brain simulation. Yet, just because Markram and his financial backers think that he does, that does not mean that he would succeed. [Brain simulation AI will certainly return to being an 'hot research topic' in another 1-2 years... then we'll all learn something about the mind.] When it comes to humans understanding the brain, it's always a race against time. By the time ambitious researchers feel comfortable enough with what they need to know to express how things work, they've typically reached retirement or their death bed. Sad but true...
Don't get me wrong, this is good news -- a tech company ACTUALLY delivering on their SDK promises... but I fear it'll be characterized as yet ANOTHER payment mechanism within the Android ecosystem subject to regional limitations... and, thus, greater fragmentation in the Android world.
every bit of data
Of course they are, it is the underlying business objective supporting all of those Big Data research projects.
Cuz it's not important enough -- it doesn't target the news agencies' rights to privacy (yet).
That's like crying to mommy instead of just figuring things out on ones own.