All consumer biometric devices should not be considered "security" devices, but rather "convenience" devices. It makes it easier to log in than typinig a password, and it's more convenient than using an OTP on the desktop. But it's not secure as a password because the password store is on the computer.
As far as password lockers go, I'm inclined to trust a password store encrypted by a passphrase (like lastpass) rather than a biometric. That's because with a passphrase, you can have a very precise method of unlocking the password store. The passphrase itself vouches for you and is repeatable. A biometric scan may vouch for you, but the values it returns are not a key. Some other key is used to decrypt the password store. And that "some other key" is open to the whims of how it's implemented by the device maker.
One caveat, on the security scale, commercial biometric devices are a different animal altogether
the article says - " Some developers fear that Apple will corner the market for both the adapters and cables, much as it did with MagSafe connectors for MacBook laptops, using licensing agreements and threats of lawsuits to prevent less expensive third-party solutions from coming to market.".
I never really understood why these development cartridges fetch such high prices. Well, on a superficial level, I understand since it's a matter of supply and demand. But at a deeper level, it's a one off because it's an unfinished product. To me, I don't see any difference between a free fan-based english conversion vs an official "never sold to the public" version.
Would you pay millions of dollars for a test version of Windows 98 developed for esperanto? The answer is no, because nobody cares. However, the same logic doesn't apply when it comes to toys and games
if you're a nuclear radiation expert dealing with a invisible substance.
however, the general public are not radiation experts, they can't see what is and isn't dangerous, and the only guidance they get is from the government, who has not been a reliable source of information. In fact, nobody seems to have the complete story because there were a lot of variables involved in just how much risk there was, due to changing conditions. Perhaps the government provided all the information it had, and it still isn't enough to declare "yes it's safe".
It seems like it's relatively easy to monday morning quarterback how to handle a nuclear meltdown. But if I was a resident of Fukushihma, I would have chosen erring on the side of caution rather than being overtly assertive over the radiation readings provided by so called experts.
This trial is about consumer choice, namely having Samsung develop new ideas rather than recycling old ones. You should get better innovation when there are more innovators
On one hand, I find it hard to think Romero has something meaningful to say, as he has not been meaningfully involved in driving innovation in the gaming business for over 16 years
The Apple II was one of the biggest piracy platforms, so I find his choice of comparison to be somewhat faulty.
On the other hand, I can't help but think that the Ouya will not be successful for other reasons. I get the impression that it will produce more tablet-style games for the tv set rather than the rich gaming experience that's worthy of the living room
A wipe requires pulling the drive (pita) or it requires having a boot disk with tools (which isn't always handy if you're being let go and don't have 24 hours to run a 3x wipe).
My preferred method is to leave the drive encrypted at all times with my own key. Then a format with a ubuntu boot disk gives me peace of mind. or deleting the data partition is fine. Worst case, returning the laptop completely intact is still going to require them to wipe it, but you still have to wonder if you might be compelled to provide the passphrase, albeit it may be unlikely as you don't work there anymore.
Now as for the online backups that your company has been making of your drive, that's a different story. You should have had an encrypted virtual drive for that stuff all along.
the goal of a handcuff is to restrain a person, namely a person who isn't likely to have a copy of the key handy, nor a 3d printer. And the detained person will not likely be given access to people who have keys or printers either.
It doesn't matter if the keys can be made easily, really, or even if it's the same key used in all the locks. THe basic point is that a handcuffed person would not be able to get themselves out without the tool.
Perhaps a lot is being made because it's a "high tech lock". Well you can take a low tech lock, such as a chain linked to a concrete block, and even though you could easily get out with a set of boltcutters, it's just as impossible to free yourself without access to the tools.
She spent her time working at a company that has a good product and a pretty solid streak of good years.
Yahoo is stuck with lots of products that nobody wants anymore and flailing to find what to cut and what to keep. Those kinds of decisions are much more difficult that riding a rocket like Google's last decade. CEOs who turn around failing companies are not pragmatic technologists or engineers, but either cutthroats or visionaries with a killer instinct.
by the way, is it really 1024 bit encryption keys as stated in the article? I thought that the encryption keys were symmetric and its' the signature of the public key that's 1024 bit.
The money spent on space programs produce measurable, visible results. It also has milestones to show whether a project is on track, off track, or slipping.
For someone to support SETI, on the other hand, has to have faith that maybe tomorrow will lead to results and all those years spent waiting for something to happen wasn't lost opportunity cost.
Donating to SETI is perhaps more closely modeled on charity for religion rather than vis a vis to other space programs.
" By this time in 2009, Microsoft had revealed both: On June 2 that year, it pegged a launch date for Windows 7, and by June 25 had not only posted prices for the operating system but had also kicked off a pre-sale that discounted upgrades by as much as 58%."
Well, that's interesting only if MIcrosoft promised to ship and reneged. If it hasn't been pegged to ship, then I don't see how you can fault them for secrecy for not making announcements. I don't see why the article sites the "by this time in 2009" as a reason either unless there was some requirement to announce exactly three years after the last one.
Zimmermann originally developed his own symmetric algorithm called Bass-o-Matic, which was originally used in the first versions of PGP circa 1991. Bass-o-Matic was indeed flawed, and he was shown that it was breakable.
Zimmermann replaced Bass-O-Matic with a different algorithm (which I don't remember), and that was the version that subsequently became much stronger and started to draw the attention of the investigation circa 1994.
In other words, the part that was broken in 1991 was fixed by the time the investigation started.
It was not a counterfeit microsoft certificate. It was a legitimate microsoft certificate from Terminal Server Licnensing Service, but used for purposes other than it was intended.
it'll be just like the way that data plans for the iPad work today?? Amazing, he must be able to see the future!
It has to be getting cheaper, not more expensive though. An Optus prepaid data plan in Australia costs a $20 for 2 gigs of data. With Skype IP-based text message, you pretty much have voice & text covered. Now compare that to how much AT&T charges for data, voice & text.
Ever try to scan to email lately? Try using the touch panel on a multifunction copier? It's an exercise in frustration and aggravation. Even machines that don't have scan set up seem to go happily along pretending to do something and actually doing nothing.
It's an area that's ripe for innovation for any company that can investigate how to build a better UI.
I find it somewhat annoying that there seems to be a mainstream association with the "natural" to mean "safe". There are lots of naturally occurring dangerous substances.
Attention to the thief eating my pizza from the company refrigerator, may this serve as your fair warning that you just might bite into a sample of the Australian Worm Juice the next time you steal a slice.
Slashdot Mirror
So as long as I don't visit a page called exploit.htm I should be ok?
The story states the issue is compatibility with Office documents. Perhaps Windows 8-powered tablets was what you meant to say.
All consumer biometric devices should not be considered "security" devices, but rather "convenience" devices. It makes it easier to log in than typinig a password, and it's more convenient than using an OTP on the desktop. But it's not secure as a password because the password store is on the computer.
As far as password lockers go, I'm inclined to trust a password store encrypted by a passphrase (like lastpass) rather than a biometric. That's because with a passphrase, you can have a very precise method of unlocking the password store. The passphrase itself vouches for you and is repeatable. A biometric scan may vouch for you, but the values it returns are not a key. Some other key is used to decrypt the password store. And that "some other key" is open to the whims of how it's implemented by the device maker.
One caveat, on the security scale, commercial biometric devices are a different animal altogether
the article says - " Some developers fear that Apple will corner the market for both the adapters and cables, much as it did with MagSafe connectors for MacBook laptops, using licensing agreements and threats of lawsuits to prevent less expensive third-party solutions from coming to market.".
The summary goes on to state that apple said that
More ads instead of stories
He will still continue to give no fewer interviews than he did before
I never really understood why these development cartridges fetch such high prices. Well, on a superficial level, I understand since it's a matter of supply and demand. But at a deeper level, it's a one off because it's an unfinished product. To me, I don't see any difference between a free fan-based english conversion vs an official "never sold to the public" version.
Would you pay millions of dollars for a test version of Windows 98 developed for esperanto? The answer is no, because nobody cares. However, the same logic doesn't apply when it comes to toys and games
if you're a nuclear radiation expert dealing with a invisible substance. however, the general public are not radiation experts, they can't see what is and isn't dangerous, and the only guidance they get is from the government, who has not been a reliable source of information. In fact, nobody seems to have the complete story because there were a lot of variables involved in just how much risk there was, due to changing conditions. Perhaps the government provided all the information it had, and it still isn't enough to declare "yes it's safe". It seems like it's relatively easy to monday morning quarterback how to handle a nuclear meltdown. But if I was a resident of Fukushihma, I would have chosen erring on the side of caution rather than being overtly assertive over the radiation readings provided by so called experts.
This trial is about consumer choice, namely having Samsung develop new ideas rather than recycling old ones. You should get better innovation when there are more innovators
On one hand, I find it hard to think Romero has something meaningful to say, as he has not been meaningfully involved in driving innovation in the gaming business for over 16 years
The Apple II was one of the biggest piracy platforms, so I find his choice of comparison to be somewhat faulty.
On the other hand, I can't help but think that the Ouya will not be successful for other reasons. I get the impression that it will produce more tablet-style games for the tv set rather than the rich gaming experience that's worthy of the living room
Based on the author's math, you're still paying for Internet, whether you use it for tv or not.
A wipe requires pulling the drive (pita) or it requires having a boot disk with tools (which isn't always handy if you're being let go and don't have 24 hours to run a 3x wipe).
My preferred method is to leave the drive encrypted at all times with my own key. Then a format with a ubuntu boot disk gives me peace of mind. or deleting the data partition is fine. Worst case, returning the laptop completely intact is still going to require them to wipe it, but you still have to wonder if you might be compelled to provide the passphrase, albeit it may be unlikely as you don't work there anymore.
Now as for the online backups that your company has been making of your drive, that's a different story. You should have had an encrypted virtual drive for that stuff all along.
the goal of a handcuff is to restrain a person, namely a person who isn't likely to have a copy of the key handy, nor a 3d printer. And the detained person will not likely be given access to people who have keys or printers either.
It doesn't matter if the keys can be made easily, really, or even if it's the same key used in all the locks. THe basic point is that a handcuffed person would not be able to get themselves out without the tool.
Perhaps a lot is being made because it's a "high tech lock". Well you can take a low tech lock, such as a chain linked to a concrete block, and even though you could easily get out with a set of boltcutters, it's just as impossible to free yourself without access to the tools.
She spent her time working at a company that has a good product and a pretty solid streak of good years.
Yahoo is stuck with lots of products that nobody wants anymore and flailing to find what to cut and what to keep. Those kinds of decisions are much more difficult that riding a rocket like Google's last decade. CEOs who turn around failing companies are not pragmatic technologists or engineers, but either cutthroats or visionaries with a killer instinct.
If only there was a standards group, like NIST, that could determine what the acceptable key lengths were.
Oh yeah, NIST does have a publication on this topic and stated that 1024 bit keys were no longer acceptable back in ... 2010.
by the way, is it really 1024 bit encryption keys as stated in the article? I thought that the encryption keys were symmetric and its' the signature of the public key that's 1024 bit.
the asshats who keep calling my phone to play the sound of a foghorn blowing
The money spent on space programs produce measurable, visible results. It also has milestones to show whether a project is on track, off track, or slipping.
For someone to support SETI, on the other hand, has to have faith that maybe tomorrow will lead to results and all those years spent waiting for something to happen wasn't lost opportunity cost.
Donating to SETI is perhaps more closely modeled on charity for religion rather than vis a vis to other space programs.
Well, that's interesting only if MIcrosoft promised to ship and reneged. If it hasn't been pegged to ship, then I don't see how you can fault them for secrecy for not making announcements. I don't see why the article sites the "by this time in 2009" as a reason either unless there was some requirement to announce exactly three years after the last one.
Zimmermann originally developed his own symmetric algorithm called Bass-o-Matic, which was originally used in the first versions of PGP circa 1991. Bass-o-Matic was indeed flawed, and he was shown that it was breakable. Zimmermann replaced Bass-O-Matic with a different algorithm (which I don't remember), and that was the version that subsequently became much stronger and started to draw the attention of the investigation circa 1994. In other words, the part that was broken in 1991 was fixed by the time the investigation started.
It was not a counterfeit microsoft certificate. It was a legitimate microsoft certificate from Terminal Server Licnensing Service, but used for purposes other than it was intended.
it'll be just like the way that data plans for the iPad work today?? Amazing, he must be able to see the future! It has to be getting cheaper, not more expensive though. An Optus prepaid data plan in Australia costs a $20 for 2 gigs of data. With Skype IP-based text message, you pretty much have voice & text covered. Now compare that to how much AT&T charges for data, voice & text.
Ever try to scan to email lately? Try using the touch panel on a multifunction copier? It's an exercise in frustration and aggravation. Even machines that don't have scan set up seem to go happily along pretending to do something and actually doing nothing. It's an area that's ripe for innovation for any company that can investigate how to build a better UI.
I find it somewhat annoying that there seems to be a mainstream association with the "natural" to mean "safe". There are lots of naturally occurring dangerous substances.
Patches fix security flaw. News at 11
Attention to the thief eating my pizza from the company refrigerator, may this serve as your fair warning that you just might bite into a sample of the Australian Worm Juice the next time you steal a slice.