Facebook, Apple, and Google beg to differ. All three have facial recognition that can identify you reliably than most random human beings could. And that's to say nothing of governments.
Do you know where all the cameras in the stores are these days? Did you catch the pinhole cameras at the registers? Or above the doorways in the motion sensors? And what about Meraki or other retail systems tracking your wifi, cellular, NFC, and bluetooth emitters and correlating that with facial data?
There is no more privacy. And I don't even know where to begin to fight back.
No rush at all! And I'm envious... I've not been to Cuba yet, either. I think I'll have to add that to my list for holiday travel for this year. Well, if you need a security architect in your business ventures, let me know.:-)
If I don't manually close the Camera app [running in the background] on the iPhone, the phone's battery life decreases by nearly 1/3. And if Safari is running in the background with more than a few javascript-heavy pages open, the battery indicator behaves more like a countdown timer.
Never trust an app to manage itself. Manually shut down anything you don't want running.
I can tell with 99.9999999999% accuracy where ANY photo was taken, without even looking at the pixels:
Earth.
What the article fails to mention is any reasonable measure of geographical range. It's one thing to say, 'this photo was taken in China'. It's quite another to say, 'this photo of cat food was taken in Bob Smith's kitchen at 22 Kings Mews, London, SW1'.
The real news here is the claim that the software/network can pinpoint as well as a human can. And I'd like to see that tested.
Reaper is now my go-to for audio recording, editing, and mixing. Works on Linux, Mac, and Windows, and costs less than a new video game. It supports an enormous number of VST and Dx plugins (the latter sadly only on Windows), and works instantly with nearly every DAW or audio interface I've thrown at it (provided there are drivers for your OS). I've recorded, edited, and mixed two commercial albums on it (small-scale, but still selling 1000+ copies each). I'm not a mastering engineer, so I can't speak to its capabilities there, but for everything else... it took me an age to give up on my old PARIS rig, but Reaper even supports my old PARIS audio files...
Agreed. And the user interface/experience has degraded considerably in recent years. VLC 0.91 was excellent before they switched to the terrible new UI.
"Download a generic fleshlight app, and it will demand every permission under the sun just to do its job."
I wasn't aware there was an official fleshlight app, much less a generic one. And I would think there are a lot of permissions necessary to get that intimate with hardware...
In all seriousness, however, I agree. There is a power grab by content creators that simply didn't exist 15 years ago. I'm seeing flash and silverlight being used even on government websites to restrict content access and maintain control even of public data.
More tools need to be available to power users (at the very least) to deconstruct these techniques and allow unfettered access to the information that was once freely accessible.
Sadly, I must completely agree with you that most people - even those who should know better - don't care. Often I wish I could be one of them.
Yes, they did respond quickly and positively, but that speaks more to their market awareness than their original intent. And I think the outrage was vociferous as a knee-jerk reaction from those (like us) who do care, are tired of having our rights trampled, and know that crying foul loudly and sharply is often the only way to effect change... which it apparently did in this case.
I was actually trying to be informative, not condescending. I'm sorry it came across that way.
Nowhere did I say TLS wasn't capable of authentication. I said it doesn't require authentication. And it doesn't.
I was responding to the parent post's assertion that "Https is exactly about authentication". This statement is false. For HTTPS, authentication is a non-central benefit, not a core requirement, or even necessarily in-scope. TLS doesn't provide adequate authentication service on its own in a lot of circumstances. For instance, consider that in 802.1x, TLS must be paired with EAP (The Extensible Authentication Protocol) for authentication.
Encryption has nothing to do with authentication; the two are fully capable of existing mutually exclusively. Encryption provides two benefits: 1) integrity and 2) confidentiality. Authentication, while at times nice to have, is not essential to either one. There are loads of use cases where the necessity of confidentiality and/or integrity of the data is completely divorced from the identity of the encryptor and decryptor. So it is far from "perfectly useless".
And as a matter of fact, all modern browsers support client authentication with certificates. It's not the state of browser technology that is lacking, but rather the state of providing certificates to end users in a secure and usable manner.
Try explaining that to someone who uses that shadow profile that you claim is "not you" to make decisions - auto insurance, life insurance, job interview, etc. about you. Which anyone can legally do.
But really, why should you be required to defend yourself against something you did not choose to participate in in the first place? And what about decisions based on that profile that are made about you that never make it to your ears? You could be discriminated against through a process that does not involve you, does not accurately reflect who you are, and over which you have no control. I don't know about you, but I don't see how that could not be concerning.
"Anyhow, when has it become unreasonable for a company to [be prickish]?"
FTFY.
In all seriousness, the trend in recent years has been for companies [*ahem* Apple, Sony, Keurig, etc./*ahem*] to lock down their hardware simply because they can.
It is inherently a trade-restricting maneouver, whatever the company's reasoning, public or private. And given the trajectory of such decisions recently, it's not unreasonable for consumers to expect that any company limiting their hardware artificially are doing so simply to pad their bottom line.
I think you're conflating HTTPS and CA infrastructure. (It's an understandable mistake.)
There's nothing in the HTTPS protocol that requires authentication. Most HTTPS instances do provide some degree of passive authentication, in that at least one side (generally the server) has a certificate signed by a verified root authority.
This does not, however, prevent someone from creating a self-signed (or even, technically, an un-signed) certificate and using that as their SSL enabler. In that case, there is absolutely NO authentication happening - all the certificate does is provide a public/private keypair for use to create an asymmetric crypto tunnel. There is no assertion whatsoever of an identity.
So I'll repeat what's been said - there is no authentication whatsoever inherent in the HTTPS protocol.
There's no reason not to input a step allowing the driver to cancel the alert before making the call. If the driver doesn't respond in a period of time (say 15-20 seconds), the notification gets sent. But if the driver has the presence of mind and body to override, they should be allowed to do so.
Apple have made the lightning microcontroller proprietary and directly licensed only from themselves (as anyone who has seen the "this accessory is not supported" error when trying to charge their idevice can tell you). They have now purchased a headphones manufacturer, so the next logical step is to force users to purchase either their own hardware, or hardware which earns them a licensing fee.
This is about device lock-in; an attempt to create monopolistic conditions legally (if only barely so). I saw this coming as soon as they purchased Beats - I was actually surprised the 6 series hadn't already eliminated the 3.5mm interface.
Personally, I hope the attempt fails miserably. There was a time I loved Apple... but no longer. They have taken Microsoft's entire 2003 playbook and made it even worse for the consumer.
I think this highlights the basic problem: roads (including hazard warning design and all markers and visual elements) are designed with human consumers in mind. An AI is, by its nature, playing a losing game by trying to translate non-native (i.e., human) elements into machine language and adaptation.
What will happen as autonomous vehicles become more ubiquitous is inclusion of machine-consumable elements into road design. Wireless lane markers, inter-vehicle (mesh) information sharing, and other technologies will be incorporated, making the 'I' in 'AI' a lot more unnecessary in that sense.
Leveraging assets to invest in a business is not exactly a new idea. But it will certainly be interesting to see which way the long tail points when the ripples even out.
Slashdot Mirror
Facebook, Apple, and Google beg to differ. All three have facial recognition that can identify you reliably than most random human beings could. And that's to say nothing of governments.
Do you know where all the cameras in the stores are these days? Did you catch the pinhole cameras at the registers? Or above the doorways in the motion sensors? And what about Meraki or other retail systems tracking your wifi, cellular, NFC, and bluetooth emitters and correlating that with facial data?
There is no more privacy. And I don't even know where to begin to fight back.
No rush at all! And I'm envious... I've not been to Cuba yet, either. I think I'll have to add that to my list for holiday travel for this year. Well, if you need a security architect in your business ventures, let me know. :-)
Sent you another email from a different address... hopefully that one will get through. :-)
I've emailed you. Let me know if you haven't received it. :-)
Very much this.
If I don't manually close the Camera app [running in the background] on the iPhone, the phone's battery life decreases by nearly 1/3. And if Safari is running in the background with more than a few javascript-heavy pages open, the battery indicator behaves more like a countdown timer.
Never trust an app to manage itself. Manually shut down anything you don't want running.
I'll give you 800 for the lot, no questions asked. :-)
Em... right, then. You are correct, I did not RTFA.
I meant to write "post", not "article".
But that does not excuse my laziness or misspeaking. My apologies.
I can tell with 99.9999999999% accuracy where ANY photo was taken, without even looking at the pixels:
Earth.
What the article fails to mention is any reasonable measure of geographical range. It's one thing to say, 'this photo was taken in China'. It's quite another to say, 'this photo of cat food was taken in Bob Smith's kitchen at 22 Kings Mews, London, SW1'.
The real news here is the claim that the software/network can pinpoint as well as a human can. And I'd like to see that tested.
Reaper is now my go-to for audio recording, editing, and mixing. Works on Linux, Mac, and Windows, and costs less than a new video game. It supports an enormous number of VST and Dx plugins (the latter sadly only on Windows), and works instantly with nearly every DAW or audio interface I've thrown at it (provided there are drivers for your OS). I've recorded, edited, and mixed two commercial albums on it (small-scale, but still selling 1000+ copies each). I'm not a mastering engineer, so I can't speak to its capabilities there, but for everything else... it took me an age to give up on my old PARIS rig, but Reaper even supports my old PARIS audio files...
Agreed. And the user interface/experience has degraded considerably in recent years. VLC 0.91 was excellent before they switched to the terrible new UI.
It's "its".
Fucking autocorrect always assumes it's "it's". But when it's "its", its "it's" isn't it, is it?! Its "it's" is autoINcorrect.
Tits.
But then they'll claim they couldn't reach me, and bulldoze my house!
"Download a generic fleshlight app, and it will demand every permission under the sun just to do its job."
I wasn't aware there was an official fleshlight app, much less a generic one. And I would think there are a lot of permissions necessary to get that intimate with hardware...
In all seriousness, however, I agree. There is a power grab by content creators that simply didn't exist 15 years ago. I'm seeing flash and silverlight being used even on government websites to restrict content access and maintain control even of public data.
More tools need to be available to power users (at the very least) to deconstruct these techniques and allow unfettered access to the information that was once freely accessible.
Sadly, I must completely agree with you that most people - even those who should know better - don't care. Often I wish I could be one of them.
Yes, they did respond quickly and positively, but that speaks more to their market awareness than their original intent. And I think the outrage was vociferous as a knee-jerk reaction from those (like us) who do care, are tired of having our rights trampled, and know that crying foul loudly and sharply is often the only way to effect change... which it apparently did in this case.
I was actually trying to be informative, not condescending. I'm sorry it came across that way.
Nowhere did I say TLS wasn't capable of authentication. I said it doesn't require authentication. And it doesn't.
I was responding to the parent post's assertion that "Https is exactly about authentication". This statement is false. For HTTPS, authentication is a non-central benefit, not a core requirement, or even necessarily in-scope. TLS doesn't provide adequate authentication service on its own in a lot of circumstances. For instance, consider that in 802.1x, TLS must be paired with EAP (The Extensible Authentication Protocol) for authentication.
Encryption has nothing to do with authentication; the two are fully capable of existing mutually exclusively. Encryption provides two benefits: 1) integrity and 2) confidentiality. Authentication, while at times nice to have, is not essential to either one. There are loads of use cases where the necessity of confidentiality and/or integrity of the data is completely divorced from the identity of the encryptor and decryptor. So it is far from "perfectly useless".
And as a matter of fact, all modern browsers support client authentication with certificates. It's not the state of browser technology that is lacking, but rather the state of providing certificates to end users in a secure and usable manner.
Try explaining that to someone who uses that shadow profile that you claim is "not you" to make decisions - auto insurance, life insurance, job interview, etc. about you. Which anyone can legally do.
But really, why should you be required to defend yourself against something you did not choose to participate in in the first place? And what about decisions based on that profile that are made about you that never make it to your ears? You could be discriminated against through a process that does not involve you, does not accurately reflect who you are, and over which you have no control. I don't know about you, but I don't see how that could not be concerning.
"Anyhow, when has it become unreasonable for a company to [be prickish]?"
FTFY.
In all seriousness, the trend in recent years has been for companies [*ahem* Apple, Sony, Keurig, etc. /*ahem*] to lock down their hardware simply because they can.
It is inherently a trade-restricting maneouver, whatever the company's reasoning, public or private. And given the trajectory of such decisions recently, it's not unreasonable for consumers to expect that any company limiting their hardware artificially are doing so simply to pad their bottom line.
I think you're conflating HTTPS and CA infrastructure. (It's an understandable mistake.)
There's nothing in the HTTPS protocol that requires authentication. Most HTTPS instances do provide some degree of passive authentication, in that at least one side (generally the server) has a certificate signed by a verified root authority.
This does not, however, prevent someone from creating a self-signed (or even, technically, an un-signed) certificate and using that as their SSL enabler. In that case, there is absolutely NO authentication happening - all the certificate does is provide a public/private keypair for use to create an asymmetric crypto tunnel. There is no assertion whatsoever of an identity.
So I'll repeat what's been said - there is no authentication whatsoever inherent in the HTTPS protocol.
There's no reason not to input a step allowing the driver to cancel the alert before making the call. If the driver doesn't respond in a period of time (say 15-20 seconds), the notification gets sent. But if the driver has the presence of mind and body to override, they should be allowed to do so.
Am I the only one concerned by the name for this??
I can just imagine it now... "Here you are, sir, just have a lie down in the CRISPR, and your life will never be the same."
o_O
You're looking in the wrong place. The Hershey's(R) bar is in the "wax" section.
This is precisely correct.
Apple have made the lightning microcontroller proprietary and directly licensed only from themselves (as anyone who has seen the "this accessory is not supported" error when trying to charge their idevice can tell you). They have now purchased a headphones manufacturer, so the next logical step is to force users to purchase either their own hardware, or hardware which earns them a licensing fee.
This is about device lock-in; an attempt to create monopolistic conditions legally (if only barely so). I saw this coming as soon as they purchased Beats - I was actually surprised the 6 series hadn't already eliminated the 3.5mm interface.
Personally, I hope the attempt fails miserably. There was a time I loved Apple... but no longer. They have taken Microsoft's entire 2003 playbook and made it even worse for the consumer.
[citation needed(1)]
[citation needed(2)]
[citation needed(3)]
[citation needed(4)]
[citation needed]^77
I think this highlights the basic problem: roads (including hazard warning design and all markers and visual elements) are designed with human consumers in mind. An AI is, by its nature, playing a losing game by trying to translate non-native (i.e., human) elements into machine language and adaptation.
What will happen as autonomous vehicles become more ubiquitous is inclusion of machine-consumable elements into road design. Wireless lane markers, inter-vehicle (mesh) information sharing, and other technologies will be incorporated, making the 'I' in 'AI' a lot more unnecessary in that sense.
Leveraging assets to invest in a business is not exactly a new idea. But it will certainly be interesting to see which way the long tail points when the ripples even out.