I agree on the fab side unless they have a few extra billion laying around, but they could go hire people with chip design experience and move that in house.
*snip* Many of these devices are on a LAN with no DNS (although plenty are on the 'net). Why? Again, because vendors insist that they be connected so they can VPN in and support them (often using LogMeIn, Webex etc).
They should be on a dedicated LAN with NO entry point for some idiot with a laptop. A vendor complains? Too bad, hand them a cat 5 on different network. Its your rules, not theirs.
Im sorry but when it comes to medical equipment there is NO excuse for being sloppy. Those involved should be blacklisted from the industry.
And yes, it can be done, and is. Sure its difficult, but it needs to be done.
Yes, i really said microcode. One really should understand how things works at their lowest level to be truly effective. Im not saying they have to be an expert and delve into how holes move across the gates on the die, but a general understanding of bit movement at the gate level is a good thing.
As people become less and less knowledgeable about the basics, we will end up with more and more bloated and unstable code.
How many people today even know what microcode is? Let alone used it to push bits around registers directly? Understanding at that level gives you an appreciation of what is going on that is lost when you see the computer as a black box you toss prepackaged widgets at.
Because most average users cant handle opening up explorer and knowing what to execute to get their app to run.
THey have enough trouble answering the questions during an install, or finding their files when they want to open them in their word processor 'Microsoft', or email..
Because, when the provider controls the software completely, you may not be in a position to be able to cleanly move to a new provider. You may not be able to extract your data from the provider's system, and if you can it may be in a format that can't be used by any other provider..
That is why i stipulated that "you get the choice" for it to be 'ok'.
If they grab you with proprietary formats, then i agree you aren't free to change and it should be avoided. If they use open formats and guarantee you can get to your data to move it, then I still think its ok to use the service.
As long as you get the choice of discontinuing service and move to another provider at will, who really cares? Until you are *forced* to use provider A, there really isn't an issue that they 'control your computing'. ( they really don't )
If you blindly succumb to some vendors wishes, then you shouldn't be in the position and should be serving fries.
If you then open your network up like was discussed and cant provide a secure set-up, then you should be in jail.
So yes, 'too bad'.
Does it *prove* the file/partition is encrypted or does it just strongly suggest that it is suspicious?
i think you would still have plausible deniability.
Rather have that then Gates or Ellison.
Why do that when you can just blame the customer and cry to the government that it isn't fair?
I agree on the fab side unless they have a few extra billion laying around, but they could go hire people with chip design experience and move that in house.
Look, just like the real thing there is a face in those flames. ( anyone else remember that picture right after the attack? )
Except they are not the same sort of resource. So no, don't just 'meter and move on'.
But then again, im on comcast.
Um my outside connection slowing my computer down? Um. ya, sure.
It might piss me off, might kill my browsing for the day, but slowing my computer down is just a bad marketing ploy.
*snip* Many of these devices are on a LAN with no DNS (although plenty are on the 'net). Why? Again, because vendors insist that they be connected so they can VPN in and support them (often using LogMeIn, Webex etc).
They should be on a dedicated LAN with NO entry point for some idiot with a laptop. A vendor complains? Too bad, hand them a cat 5 on different network. Its your rules, not theirs.
Im sorry but when it comes to medical equipment there is NO excuse for being sloppy. Those involved should be blacklisted from the industry.
And yes, it can be done, and is. Sure its difficult, but it needs to be done.
Critical medical equipment should never have been even remotely connected to anything not 100% secure.
Its a little of both.
Yes, i really said microcode. One really should understand how things works at their lowest level to be truly effective. Im not saying they have to be an expert and delve into how holes move across the gates on the die, but a general understanding of bit movement at the gate level is a good thing.
Losing that knowledge is sad.
As people become less and less knowledgeable about the basics, we will end up with more and more bloated and unstable code.
How many people today even know what microcode is? Let alone used it to push bits around registers directly? Understanding at that level gives you an appreciation of what is going on that is lost when you see the computer as a black box you toss prepackaged widgets at.
Because most average users cant handle opening up explorer and knowing what to execute to get their app to run.
THey have enough trouble answering the questions during an install, or finding their files when they want to open them in their word processor 'Microsoft', or email..
Will be confused as hell now.
"I put the disk in and it didn't do anything, it must be broke"
"To play my game i have to open my computer what... ???!!?"
The 'yet' part is the key.
Start encrypting now, before you have unencrypted data sitting out there waiting to be mined for when they changed their tune.
Because, when the provider controls the software completely, you may not be in a position to be able to cleanly move to a new provider. You may not be able to extract your data from the provider's system, and if you can it may be in a format that can't be used by any other provider. .
That is why i stipulated that "you get the choice" for it to be 'ok'.
If they grab you with proprietary formats, then i agree you aren't free to change and it should be avoided. If they use open formats and guarantee you can get to your data to move it, then I still think its ok to use the service.
Anyone got some real meat on this?
They will pull funding on all of the projects.
Got your copy of the code you need yet? Better do it soon.
If you get the service you want, this is bad why?
As long as you get the choice of discontinuing service and move to another provider at will, who really cares? Until you are *forced* to use provider A, there really isn't an issue that they 'control your computing'. ( they really don't )
Problem ( mostly ) solved.
Its not 2012...
Helped steal code, i agree. I doubt he could have coded out of a wet paper bag, even back in the Altair days.
He is a cut throat business man with shady practices, not a 'geek hero'.
If he was actually sitting there helping code the products, i might change my stand, but he wasn't/isn't, so he's just yet another overpaid suit