... for from the ash rose a great bird. The bird gazed down upon the unbelievers and cast fire and thunder upon them.
I know that the original scriptures have long been lost and were written in an archaic language that no one today can read, but secret sources tell me that something was left out. Originally, it read like this.
... for from the ash rose a great bird. The bird turned into a bear. The bear turned into a sheep. The sheep turned into a cat. The cat turned into a bat. The bat turned into a monkey. The monkey turned into a donkey. The donkey turned into a kitchen sink. The kitchen sink turned into a lizard. The lizard turned into a frog. The frog turned into a horse. The horse turned into a great warrior from the east. The great warrior from the east turned into a nameless void. The nameless void turned into a many-named something. The many-named something turned into a bird that was not named phoenix. The bird that was not named phoenix then gazed down upon the unbelievers and cast fire and thunder upon them.
Yes, a mag stripe would work as well, but i think the problem with that would be durability.
Passports are usually valid for ten years (might depend on country, so YMMV) and can be used even after they are expired (depending on the country you wanna enter). ATM cards and other mag stripe things usually have a much shorter life.
Replacing a defective passport would be more costly and involve more standing-in-line-and-stuff than replacing an ATM card.
If the durability of the mag stripe (or other non-wireless technology) was (i actually have no idea wether it is) high enough, the non-wireless would definitely be preferable.
If anyone with a machine reader can read the decryption key, what's the point of encrypting anything?
To prevent reading without physical access to the passport. The key is printed on some page of the passport and is read via OCR. So you have to open the passport to get the key to decrypt the RFID data.
The point of encryption is overcoming the "can read without consent" problem.
It is left to the passport owner whom he allows physical access to his passport, and whoever has that physical access can also get all the data from the RFID.
To paraphrase my argument:
RFID offers a few advantages over non-RFID passports (machine readable biometric data,...) and has the disadvantage of being readable without needing direct physical access to the passport itself.
Encrypted RFID has the same advantages and overcomes the disadvantage by having its key accessible only to those with direct physical access.
If you wanna read a non-RFID passport, you have to take it from the owner and open it. This usually involves the owner willingly giving it to you.
If you wanna read a RFID passport, you have to get close to the owner (think next few places in a queue here) and use an active (power transmitting) reading device, or you use a passive device that doesn't have to remotely power the RFID chip and eavesdrop on a conversation between a legit passport reading station and the passport. This allows you to stay further away (think across the room).
The security degradation that the conversion from non-RFID to RFID implies is that you now don't need consent from the passport owner to read it, and actually the owner won't even notice you reading it.
Thus, you don't need to distribute the decryption key for encrypted RFID at all. You just print it (in a machine readable way) into the passport. Like for example Germany intends to do, after they successfully managed to get optional encryption into the standard (against US pressure).
This was explained in one of the last issues of german c't magazine.
I completely agree with what you said about "Enter the Matrix".
Now if only if they made the game to not make you choke yourself with the keyboard cable while playing. Lucky me, i've got a Logitech Wireless Keyboard!
Well, RFC 3454 mentions this kind of attack briefly:
The Unicode and ISO/IEC 10646 repertoires have many characters that
look similar. In many cases, users of security protocols might do
visual matching, such as when comparing the names of trusted third
parties. Because it is impossible to map similar-looking characters
without a great deal of context such as knowing the fonts used,
stringprep does nothing to map similar-looking characters together
nor to prohibit some characters because they look like others. User
applications can help disambiguate some similar-looking characters by
showing the user when a string changes between scripts.
So no, that doesn't resolve it, but it recommends a (general) way to deal with it.
Obviously, Mozilla should have followed that recommendation instead of ignoring it.
Oh yeah, and my boss actually tolerates some slacking, that seems to help, too.
Now I feel stupid for replying to myself, but I might add, more often than not I manage to be undistracted and in full hacking mode when my boss comes around wanting to know what I'm working on right now, throwing in a few completely unrelated ideas and wanting those talked over right now, needs having whatever i was doing explained right now and then asks me what I'm gonna do next[1].
Yeah right. Finally got over feeling guilty for procrastinating, actually started getting stuff done and five minutes into that I know I'm gonna spend at least half an hour trying to figure out what the hell i actually was doing when she interrupted me.
[1] I think i could handle explaining "current" stuff pretty good, and those completely unrelated ideas sometimes turn out to be actually related to the topic at hand. But jumping from focused thinking to the "big picture" (what are we gonna do the next few days/weeks) throws me right off track.
Multiple Desktops. I have eight of them on my linux setup (used to be gnome, now it's xfce), and there's some tools for windows too that give you multiple desktops.
Having two screens x 8 desktops is a serious amount of real estate. I use a few of those desktops for work (1-4, usually) and some for slacking. Looking busy is just a Alt-1 away for me.
Oh yeah, and my boss actually tolerates some slacking, that seems to help, too.
Slashdot Mirror
I know that the original scriptures have long been lost and were written in an archaic language that no one today can read, but secret sources tell me that something was left out. Originally, it read like this.
Somewhere in Soviet Russia a texan minister is missing a propaganda village?
Your sig scares me.
You do know that this thread is about the hosts file?
In other news, i actually was joking.
What will they do if DNS stops working? Who will laugh then? Bwahhahhahhahahahhahahahhahahhah!
Yes, a mag stripe would work as well, but i think the problem with that would be durability.
Passports are usually valid for ten years (might depend on country, so YMMV) and can be used even after they are expired (depending on the country you wanna enter). ATM cards and other mag stripe things usually have a much shorter life.
Replacing a defective passport would be more costly and involve more standing-in-line-and-stuff than replacing an ATM card.
If the durability of the mag stripe (or other non-wireless technology) was (i actually have no idea wether it is) high enough, the non-wireless would definitely be preferable.
If anyone with a machine reader can read the decryption key, what's the point of encrypting anything?
...) and has the disadvantage of being readable without needing direct physical access to the passport itself.
To prevent reading without physical access to the passport. The key is printed on some page of the passport and is read via OCR. So you have to open the passport to get the key to decrypt the RFID data.
The point of encryption is overcoming the "can read without consent" problem.
It is left to the passport owner whom he allows physical access to his passport, and whoever has that physical access can also get all the data from the RFID.
To paraphrase my argument:
RFID offers a few advantages over non-RFID passports (machine readable biometric data,
Encrypted RFID has the same advantages and overcomes the disadvantage by having its key accessible only to those with direct physical access.
You are wrong here.
If you wanna read a non-RFID passport, you have to take it from the owner and open it. This usually involves the owner willingly giving it to you.
If you wanna read a RFID passport, you have to get close to the owner (think next few places in a queue here) and use an active (power transmitting) reading device, or you use a passive device that doesn't have to remotely power the RFID chip and eavesdrop on a conversation between a legit passport reading station and the passport. This allows you to stay further away (think across the room).
The security degradation that the conversion from non-RFID to RFID implies is that you now don't need consent from the passport owner to read it, and actually the owner won't even notice you reading it.
Thus, you don't need to distribute the decryption key for encrypted RFID at all. You just print it (in a machine readable way) into the passport. Like for example Germany intends to do, after they successfully managed to get optional encryption into the standard (against US pressure).
This was explained in one of the last issues of german c't magazine.
Take a look at Switzerland, seems to work pretty well there, as far as i can tell (not from switzerland though).
Why not vote for issues instead of people?
You probalby mean T(T(T(T(T(T(T(T...
oh shi[...], we'll ge[...] s[...]ack overflows in na[...]ural language now, [...]hanks [...]o Deu[...]sche [...]elekom!
I assume you mean T(TM)rademarked.
I completely agree with what you said about "Enter the Matrix".
Now if only if they made the game to not make you choke yourself with the keyboard cable while playing. Lucky me, i've got a Logitech Wireless Keyboard!
They better find it! I mean, it must be somewhere. Plutonium doesn't just suddenly disappear or turn into Uranium or something.
So no, that doesn't resolve it, but it recommends a (general) way to deal with it.
Obviously, Mozilla should have followed that recommendation instead of ignoring it.
And careful reading helps you distinguish between CYRILLIC SMALL LETTER A and LATIN SMALL LETTER A how exactly?
Yeah, and their CEO made me kill all those combine soldiers in half life 2, too!
Now I feel stupid for replying to myself, but I might add, more often than not I manage to be undistracted and in full hacking mode when my boss comes around wanting to know what I'm working on right now, throwing in a few completely unrelated ideas and wanting those talked over right now, needs having whatever i was doing explained right now and then asks me what I'm gonna do next[1].
Yeah right. Finally got over feeling guilty for procrastinating, actually started getting stuff done and five minutes into that I know I'm gonna spend at least half an hour trying to figure out what the hell i actually was doing when she interrupted me.
[1] I think i could handle explaining "current" stuff pretty good, and those completely unrelated ideas sometimes turn out to be actually related to the topic at hand. But jumping from focused thinking to the "big picture" (what are we gonna do the next few days/weeks) throws me right off track.
Multiple Desktops. I have eight of them on my linux setup (used to be gnome, now it's xfce), and there's some tools for windows too that give you multiple desktops.
Having two screens x 8 desktops is a serious amount of real estate. I use a few of those desktops for work (1-4, usually) and some for slacking. Looking busy is just a Alt-1 away for me.
Oh yeah, and my boss actually tolerates some slacking, that seems to help, too.
Nothing can do anything about this. Not with the current state of Windows, Windows Programs and Windows Users.
Then he isn't from sov. rus., because in sov. rus., Spanish would be his
Nobody claimed you did. You "pushed with Military Might" Iran into falling "into its current dark age".
Oh my. Sorry, should have read TFA in a bit more detail. Only saw that horrible abomination "Deep linking" and started ranting.
"Deep linking" is what makes the web the web.