I think Carnegie-Mellon people come up with a solution: instead of global "reputation" score use personal (local) one.
Basically when you download stuff from people you mark them good or bad, then "the system" will cluster your opinions with others and provide you with scores to sources you don't know based on what people like you had to say about them.
So you see - if for example Mediadefender starts to pull that trick with many fake users then they will be clustered together and won't have any impact on, well, "honest" downloaders.
They can still build a reputation but it will go down the drain real fast as soon as they start to "use it".
That's not really true in this case. If the drive allows access to the raw encrypted data and the key is known it is simple to audit the encryption hardware.
That's very naive, to say the least.
First of all, nobody gives access to actual platter information - what they write there can only be recovered in a lab. So in worst case scenario an audit like you described can be fooled by on-the-fly encryption of written data.
But even if they correctly encrypt your data you don't know what else got written to the disk - i.e. the side channel information.
So basically there are so many "holes" known and unknown, that without full disclosure of how they (Fujitsu) do that thing (including photolithography slides) such hardware encryption is unsuitable for "high stakes" situations.
What does that get you? Good device-level encryption already has the performance level of an unencrypted drive. The main thing - security.
Software is open to everybody for extensive audit.
Hardware on another hand, while potentially faster, not easily accessible and as such presumed insecure by default (one of the axioms of cryptography).
So if you need real security - you do in-software full disk encryption, if you need performance and deniability - go hardware.
Having a laptop stolen is a huge concern today. This will help ease that concern.
That's the thing - stolen laptop is a liability. In many cases corporations don't really care if the data (with private information like soc security numbers) got stolen - they don't want public embarrassment and legal consequences. So for them - these hardware things are of great interest (as a form of due diligence defense).
For real security - only open (audited) hardware/software solutions are acceptable.
Any evidence of either of these assertions? *That* would be informative.
Google for Crypto AG fiasco.
The bottom line: if you really need cryptographic security - never trust solutions which are not subject to audit (i.e. not open source software/hardware)
And the problem with most of what you said - it's illegal.
What GP specifically mentioned is that the system (with secret data) was on when the warrant was issued/received (systems with unmounted encrypted volumes not discussed here - so no point mentioning that).
Doing "stuff" with your computer after the warrant was received is "tampering".
And last time I checked, this kind of performance measured in miles, not hours. So Tesla will do like 200 miles in that amount of time. Is your daily commute that bad?
Remember: you don't waste any energy when you sit in traffic...
And yet from another happy customer: Synology rocks!
They deliver quality, support - any part of what constitutes "Value".
For a long time now I'm running "106e" NAS 24x7: works flawlessly and what's amazing is that they still continue adding new features to the box's firmware!
Based on my experience, Synology deserves considerable respect.
Highly recommended!
It's funny because in game theory when you play "chicken" (e.g. Cuban missile crisis, Iran's nuke program) to win you have to be seen acting irrationally or even crazy while opening all the good cards you have.
During the day you pump the grid at higher rate than when taking electricity from the grid during night hours to charge the car (I assume grid connection and no batteries in the house.)
So you'll need a much smaller installation to power the car...
They are making the noise for some time now, but that's pretty much all that there is.
Being skeptical makes you being right 99.999 times out of 100. If you're betting on that make sure you know your odds: As much as I know about batteries - I would not invest in A123...
I personally never driven a car for more than 500 miles in one day.
And I can count on my fingers how many times I drove for more than 300.
And it's the same for most of the people.
So, if I can recharge my car overnight - there is no problem with long charging times.
It only takes a power plug at the parking space - it is trivial.
For those few who really need to drive more than 500 miles a day (trucks) - gas is the answer (for quite some time in the future).
Clearly, there is something lacking with getting a plugin Prius to market, but it isn't technical.
Oh, but it is.
The battery. It has only so much cycles in it. Basically, more you use it - faster it degrades.
Read Tesla's blogs - if you add a plug to regular Prius and use it all the time your battery will be dead in 15 - 20k miles.
Slashdot Mirror
Actually the most important bit of information is the fact, that the card was cracked.
Knowing that much, bad guys can easily arrange actual cracking redux by good folks from Eastern Europe...
I collect job adverts from newspapers. I know this sounds dumb, who uses newspaper adverts to find personnel these days?
That's not dumb - that's green card process. They're required to post an ad for an H1 position by the Labor Department.
You don't really need it for logfiles - sequential writing is fast enough on non-SSD drives.
Actually not that hard.
I think Carnegie-Mellon people come up with a solution: instead of global "reputation" score use personal (local) one.
Basically when you download stuff from people you mark them good or bad, then "the system" will cluster your opinions with others and provide you with scores to sources you don't know based on what people like you had to say about them.
So you see - if for example Mediadefender starts to pull that trick with many fake users then they will be clustered together and won't have any impact on, well, "honest" downloaders.
They can still build a reputation but it will go down the drain real fast as soon as they start to "use it".
As I mentioned it before.
That's how to break it: google talk: 'Using Data to "Brute Force" Hard Problems in Vision and Graphics' by A. Efros.
That's very naive, to say the least.
First of all, nobody gives access to actual platter information - what they write there can only be recovered in a lab. So in worst case scenario an audit like you described can be fooled by on-the-fly encryption of written data.
But even if they correctly encrypt your data you don't know what else got written to the disk - i.e. the side channel information.
And just from the top of my head (simply to further disprove your point about effectiveness of such an audit)look here: http://www.cs.auckland.ac.nz/~pgut001/pubs/secure_del.html (p. 7)
So basically there are so many "holes" known and unknown, that without full disclosure of how they (Fujitsu) do that thing (including photolithography slides) such hardware encryption is unsuitable for "high stakes" situations.
So if you need real security - you do in-software full disk encryption, if you need performance and deniability - go hardware.
That's the thing - stolen laptop is a liability. In many cases corporations don't really care if the data (with private information like soc security numbers) got stolen - they don't want public embarrassment and legal consequences. So for them - these hardware things are of great interest (as a form of due diligence defense).
For real security - only open (audited) hardware/software solutions are acceptable.
The bottom line: if you really need cryptographic security - never trust solutions which are not subject to audit (i.e. not open source software/hardware)
No, you're simply got lucky with drivers.
Those of us, who weren't (a lot - check the forums) still had to jump through hoops with ndiswrapper (and no - the same story with Gutsy)
There was a presentation at google talk: 'Using Data to "Brute Force" Hard Problems in Vision and Graphics' by A. Efros.
Basically it's not that hard to teach computer to recognize things if you have shitload of pre-tagged images.
And the problem with most of what you said - it's illegal.
What GP specifically mentioned is that the system (with secret data) was on when the warrant was issued/received (systems with unmounted encrypted volumes not discussed here - so no point mentioning that).
Doing "stuff" with your computer after the warrant was received is "tampering".
During the day you SELL the electricity.
During the night you buy (CHEAP!) electricity to charge your car.
(regadless of what Lutz says)
And last time I checked, this kind of performance measured in miles, not hours. So Tesla will do like 200 miles in that amount of time. Is your daily commute that bad?
Remember: you don't waste any energy when you sit in traffic...
They deliver quality, support - any part of what constitutes "Value".
For a long time now I'm running "106e" NAS 24x7: works flawlessly and what's amazing is that they still continue adding new features to the box's firmware!
Based on my experience, Synology deserves considerable respect.
Highly recommended!
Damn! I wish I had modpoints!
It's funny because in game theory when you play "chicken" (e.g. Cuban missile crisis, Iran's nuke program) to win you have to be seen acting irrationally or even crazy while opening all the good cards you have.
Makes one wonder...
During the day you pump the grid at higher rate than when taking electricity from the grid during night hours to charge the car (I assume grid connection and no batteries in the house.)
So you'll need a much smaller installation to power the car...
Slow and steady is good only against stationary targets...
As for everything else - it's not a certainty - it's a speculation.
They are making the noise for some time now, but that's pretty much all that there is.
Being skeptical makes you being right 99.999 times out of 100. If you're betting on that make sure you know your odds: As much as I know about batteries - I would not invest in A123...
You'll need a revolution in storage capacity of ultracaps just to get even with current batteries.
And the wisdom is - never count on a revolution in particular technology.
Don't get me wrong, revolutions happen all the time. It just you never know where to expect them.
Not true.
I personally never driven a car for more than 500 miles in one day.
And I can count on my fingers how many times I drove for more than 300.
And it's the same for most of the people.
So, if I can recharge my car overnight - there is no problem with long charging times.
It only takes a power plug at the parking space - it is trivial.
For those few who really need to drive more than 500 miles a day (trucks) - gas is the answer (for quite some time in the future).
There is no existing battery technology for such a car.
When there will be such a battery - there will be no need for a gas engine in such a car: it will add mass, complexity, cost.
Oh, but it is.
The battery. It has only so much cycles in it. Basically, more you use it - faster it degrades. Read Tesla's blogs - if you add a plug to regular Prius and use it all the time your battery will be dead in 15 - 20k miles.