That depends on what the purpose of this application is. There are purposes for which you may prefer an application failing instead of accepting another certificate. If the application promised end-to-end safety, with a very specific *certified* configuration ending on the target (i imagine Software updates for the development of embedded systems in cars), then failure by default is the right behaviour until sombody signs of a sheet of paper that he/she/the company takes responsibility to the end customer (e.g. the development department) for anything transmitted in the wrong way.
>The U.S. and Japan managed to get over the whole World War II thing,
As somebody who lived in japan for four years: That is an illusion. Japan did not get over "the whole World War II thing", and neither did the US.
> so why can't people manage to get past the Microsoft antitrust thing, which was initiated in 1998 for actions in 1994?
Because the antitrust thing is just the legally visible top of the iceberg?
Honestly, Microsoft would very much like to be like Apple or Google. They just dont manage it. And at the points where they still have the monopoly, i dont see a company acting because they are deeply convinced of the need to change business practices but somebody who just changes them far enough to be able to keep management decisions on their side.
There are even obligations of companies to keep records of communitcations of their employees. Helps to prevent corruption a little bit, or at least make it more clear when examining it.
Yeah i always observe this in the subway. Me with my phone set to GPRS/GSM/EDGE (good coverage) downloading an kindle ebook (1MB) and reading it *obviously* learn less than the girl with the 4G access consuming 3 Justin Bieber videos on her 4G phone in the time i take to read 3 pages (equivalent to 30kB).
I mean how could i overlook that youtube and gamified versions of everything are the new way to learn things? I mean, if quantum theory or writing good comilers do not translate to a 5 minute video which looks like its produced by strapping the camera to a young cat, drugging her with ectacy and letting her hunt behind wool balls, what's these things anyway worth for?
allows recursion on a system controlling a critical system?
Most things which are needed for such a function can be written as a straight-line program and iteration. I would e ven go so far to say that if you need more complex functions, then spend the 25cent per car for a dedicated microcontroller for the low-level function.
Yeah. I knew the post was somewhat too long to read and digest it, so here is the short version:
-One time-pad: connection safety to your mail provider. What the requirements of the mail provider and you may be for getting the key (send by post, courier, or only hand over personnally) may be is up to the security vs price considerations of you and your provider.
-End to end with officially *signed* (not generated) keys: protection against being sniffed at the provider.
The gouvernment which screwed end-to-end encryption by mandating a centralized "de-mail" concept to communicate with the administration shuts up.
Make a decentralized key signing (e.g. in the city hall) initiative, for a reasonable fee, and show your citizens hot to import these certificates in theirs browsers and mail programs.
Make sure the key generators use a decent random number generation, and for really important messages use one-time pads, or something which comes close.
All of my phones have enough storage for a real one-time pad for my important mail which i send in years. If mail providers would give me this opportunity (one-time pad for connection safety) and a decent PKI signing initiative would guarantee that the recipient can read the mail, then i would be happy.
One time pad connection safety would mean you can use this anywhere and choose a provider to your liking.
Yes, thats also what i thought. If they use it the precautions should be not against turning it on but turning it off at a convenient point in time. If they really stream everything without interruption to the police car which records it, and the cops cant even turn the system off then they like to, then its fine with me.
Leave science decide it self what is worth reproducing.
Make the cumulative impact factor of the citations (corrected with a delay depending on how fundamental the study was - very fundamental studies take longer to collect citations) of previous studies a mandatory criteria for distributing big scientific money to funding institutions for a specific field. If something can not be reproduced, then it will not collect citations and will be gone soon. Given the specific wording of the dear Senator I am not sure that this turn out how he expects it.
I always thought that the "x" bit under unix was a kind of whitelisting mechanism (in combination with the "noexec" mount option).... or the security contexts under Windows or Apparmor or SELinux
But now, there is a new startup which wants to promote a product...
We write text based code where it is suitable. Automated code generation from graphical system models or data flow models is in heavy use. Simulink/Simulink coder (translating your system model to c) and Labview (which compiles to LLVM internally since about 5-6years) are selling well.
In the domain of their applicaiton (generating safe/stable code from an easy to understand system model) these products are excellent.
I used them both, *but* (and this come from somebody who drew a webserver in Labview): Outside this domain, these tools suck. As soon as you need multiple interitance/easy code maintainance, you are screwed. There is no facility in these graphical system models like an abstract system model, or subclassing etc, for the very simple reason that these are difficult to represent graphically. I have seen dozens ov labview programs which could be written with a single component changed, based on the same parent class. I have sen people manually redrawing and changing simulink system model for very little change (which affected different subsystems). So maintaining any big/complex/flexible project sucks and requires hundres of pages of diagrams.
And that is the reason why we still use text bases languages.
License iOS to the competitors, and let them do their own app markets. Other hardware and iOS with a less-cencored market than the app store could brinf mroe money to apple (with less risk and investment) than trying to compete in the Hardware business.
If i would start to dream of my work, the i would change the job. I love coding/solving simulation problems. I am pretty good at it, and i dont give up once i decided to solve a problem. Because i like to do the best i can. But i would be fucking scared of a company which ask me to be "enthousiatic" about my code.
I have a profile on a business social network. I am a physicist (PHD) , and have worked a long time in science.
Everybody looking at my profile for longer than 20 seconds can figure that out.
I have a solid electronics/condensed matter/analog measurement background.
Everybody looking at my profile for longer than 40 seconds can figure that out.
But as it happens, i am a curious guy with diverse programming skills, which I have been using *from time to time*, but i know enough to talk to IT experts who really know what they are doing
Everybody looking at my profile for longer than 1 minute can figure that out.
So what i typically get/got is: -we need a junior PHP programmer (yeah, sure - come on, admit you just searched for "PHP" and ignored the other skills, which you never heard about) -do you like a job as *expert* for [Skill X, which was listed explicitely as "little experience"] (Oh, you like to sell anybody to you customer. At least you read my profile, but, thanks, no) -in the interview (after beeing asked by the headhunter to apply): why do you apply here? (Yeah, because the company you hired to look for me "found" me - obviously they did not infrom you at all about the previous conversation.)
And what i see in the company i work for: -I get a profile from our internal headhunters, whithout any infromation how that got onto my table. -I should evaluate people for things of which i have no idea at all, but "it sounded similar" (to the HR intern) -50% of hour HR seem to be interns. The HR has probably the highest rotation rate in the company; even the management has a felt half-life time of a year (sure, thats going to work out)
Exactly my opinion. The final article *as it was published* in the Journal can be theirs, if they wish. The preprint version sent to publisher has seen no work from them.
Slashdot Mirror
That depends on what the purpose of this application is. There are purposes for which you may prefer an application failing instead of accepting another certificate. If the application promised end-to-end safety, with a very specific *certified* configuration ending on the target (i imagine Software updates for the development of embedded systems in cars), then failure by default is the right behaviour until sombody signs of a sheet of paper that he/she/the company takes responsibility to the end customer (e.g. the development department) for anything transmitted in the wrong way.
>The U.S. and Japan managed to get over the whole World War II thing,
As somebody who lived in japan for four years: That is an illusion. Japan did not get over "the whole World War II thing", and neither did the US.
> so why can't people manage to get past the Microsoft antitrust thing, which was initiated in 1998 for actions in 1994?
Because the antitrust thing is just the legally visible top of the iceberg?
Honestly, Microsoft would very much like to be like Apple or Google. They just dont manage it. And at the points where they still have the monopoly, i dont see a company acting because they are deeply convinced of the need to change business practices but somebody who just changes them far enough to be able to keep management decisions on their side.
But they offer free grass, so lets just stay here for a while.
There are even obligations of companies to keep records of communitcations of their employees. Helps to prevent corruption a little bit, or at least make it more clear when examining it.
Yeah, thats funny.
Criticising the gouverment in the internet or sharing some documents is *not* enough to be fast tracked to organ donation in China.
China may not be perfect in terms of human rights but it for sure gets better and better in average.
And that would be unlike the freedom from secret government surveilance we are used to in the free world.
Yeah i always observe this in the subway. Me with my phone set to GPRS/GSM/EDGE (good coverage) downloading an kindle ebook (1MB) and reading it *obviously* learn less than the girl with the 4G access consuming 3 Justin Bieber videos on her 4G phone in the time i take to read 3 pages (equivalent to 30kB).
I mean how could i overlook that youtube and gamified versions of everything are the new way to learn things? I mean, if quantum theory or writing good comilers do not translate to a 5 minute video which looks like its produced by strapping the camera to a young cat, drugging her with ectacy and letting her hunt behind wool balls, what's these things anyway worth for?
allows recursion on a system controlling a critical system?
Most things which are needed for such a function can be written as a straight-line program and iteration. I would e ven go so far to say that if you need more complex functions, then spend the 25cent per car for a dedicated microcontroller for the low-level function.
Yeah. I knew the post was somewhat too long to read and digest it, so here is the short version:
-One time-pad: connection safety to your mail provider. What the requirements of the mail provider and you may be for getting the key (send by post, courier, or only hand over personnally) may be is up to the security vs price considerations of you and your provider.
-End to end with officially *signed* (not generated) keys:
protection against being sniffed at the provider.
The gouvernment which screwed end-to-end encryption by mandating a centralized "de-mail" concept to communicate with the administration shuts up.
Make a decentralized key signing (e.g. in the city hall) initiative, for a reasonable fee, and show your citizens hot to import these certificates in theirs browsers and mail programs.
Make sure the key generators use a decent random number generation, and for really important messages use one-time pads, or something which comes close.
All of my phones have enough storage for a real one-time pad for my important mail which i send in years. If mail providers would give me this opportunity (one-time pad for connection safety) and a decent PKI signing initiative would guarantee that the recipient can read the mail, then i would be happy.
One time pad connection safety would mean you can use this anywhere and choose a provider to your liking.
Yes, thats also what i thought. If they use it the precautions should be not against turning it on but turning it off at a convenient point in time. If they really stream everything without interruption to the police car which records it, and the cops cant even turn the system off then they like to, then its fine with me.
Leave science decide it self what is worth reproducing.
Make the cumulative impact factor of the citations (corrected with a delay depending on how fundamental the study was - very fundamental studies take longer to collect citations) of previous studies a mandatory criteria for distributing big scientific money to funding institutions for a specific field. If something can not be reproduced, then it will not collect citations and will be gone soon. Given the specific wording of the dear Senator I am not sure that this turn out how he expects it.
O, i wish i had mod points....
I always thought that the "x" bit under unix was a kind of whitelisting mechanism (in combination with the "noexec" mount option).... or the security contexts under Windows or Apparmor or SELinux
But now, there is a new startup which wants to promote a product...
We write text based code where it is suitable. Automated code generation from graphical system models or data flow models is in heavy use. Simulink/Simulink coder (translating your system model to c) and Labview (which compiles to LLVM internally since about 5-6years) are selling well.
In the domain of their applicaiton (generating safe/stable code from an easy to understand system model) these products are excellent.
I used them both, *but* (and this come from somebody who drew a webserver in Labview): Outside this domain, these tools suck. As soon as you need multiple interitance/easy code maintainance, you are screwed. There is no facility in these graphical system models like an abstract system model, or subclassing etc, for the very simple reason that these are difficult to represent graphically. I have seen dozens ov labview programs which could be written with a single component changed, based on the same parent class. I have sen people manually redrawing and changing simulink system model for very little change (which affected different subsystems). So maintaining any big/complex/flexible project sucks and requires hundres of pages of diagrams.
And that is the reason why we still use text bases languages.
License iOS to the competitors, and let them do their own app markets. Other hardware and iOS with a less-cencored market than the app store could brinf mroe money to apple (with less risk and investment) than trying to compete in the Hardware business.
Supporting https everywhere is *not* a sufficient single reason to be called "the most secure browser".
Monocausal interpretations of security are the worst enemy of security.
Basic idea of flux qubits:
PHYSICAL REVIEW B VOLUME 60, NUMBER 22 Superconducting persistent-current qubit
They have a section on decoherence. For detail look in the PHD thesis of casper van der wal.
Some theoretical more general (still Jospehson-based devices) background:
REVIEWS OF MODERN PHYSICS, VOLUME 73, APRIL 2001
Quantum-state engineering with Josephson-junction devices
And (even more general) on two level Systems:
Caldeira and Legget, Physical Review Letters January 26 1981
Everthing (and more) you need to know about "The dissipative two state system": Legget et. al: Reviews of modern physics 59, January 1987
The moment when dwae realized they dont have a quantum computer:
Thermally assisted adiabatic quantum computation
M. H. S. Amin,1, â-- Peter J. Love,1, 2, 3 and C. J. S. Truncik1
(condmat 0609322)
Sensible performance metric: Does employee x get the shit done?
Insensible performane metric: how often doe he stand up while getting the shit done.
I know people who would be excellent according to such a device, however nothing beyond powerpoint engineering ever leaves theis desks.
To a certain rudimentary level, i shoul be subject in the school.
Like everything which is subject in a school, it can not be more than an opportunity to learn it and get interested in it.
I am fine if the from the 95% which understand the world less than me 50% understand this fact.
If i would start to dream of my work, the i would change the job. I love coding/solving simulation problems. I am pretty good at it, and i dont give up once i decided to solve a problem. Because i like to do the best i can. But i would be fucking scared of a company which ask me to be "enthousiatic" about my code.
I have a profile on a business social network. I am a physicist (PHD) , and have worked a long time in science.
Everybody looking at my profile for longer than 20 seconds can figure that out.
I have a solid electronics/condensed matter/analog measurement background.
Everybody looking at my profile for longer than 40 seconds can figure that out.
But as it happens, i am a curious guy with diverse programming skills, which I have been using *from time to time*, but i know enough to talk to IT experts who really know what they are doing
Everybody looking at my profile for longer than 1 minute can figure that out.
So what i typically get/got is:
-we need a junior PHP programmer (yeah, sure - come on, admit you just searched for "PHP" and ignored the other skills, which you never heard about)
-do you like a job as *expert* for [Skill X, which was listed explicitely as "little experience"] (Oh, you like to sell anybody to you customer. At least you read my profile, but, thanks, no)
-in the interview (after beeing asked by the headhunter to apply): why do you apply here? (Yeah, because the company you hired to look for me "found" me - obviously they did not infrom you at all about the previous conversation.)
And what i see in the company i work for:
-I get a profile from our internal headhunters, whithout any infromation how that got onto my table.
-I should evaluate people for things of which i have no idea at all, but "it sounded similar" (to the HR intern)
-50% of hour HR seem to be interns. The HR has probably the highest rotation rate in the company; even the management has a felt half-life time of a year (sure, thats going to work out)
Ads (Imagine big LCDs on the side of cheeta) on the Battlefield?
Google for Terrorists (face recogniton from autonomous patrolling robots)?
Streetview for patrolling dangerous areas?
Home deliveries (Much better than flying drones)?
Streetview inside shops and stations?
hmm. Which is the reason why it can be only batteries in cars and not batteries alone.
Exactly my opinion. The final article *as it was published* in the Journal can be theirs, if they wish. The preprint version sent to publisher has seen no work from them.
Yeah but if we can put it in the Web 2.0 then its for sure something new.