"...the iPhone 3G uses "simulated" GPS by triangulating it's position based on local towers or access points."
No, that's how the iPhone currently works (it uses Skyhook's services IIRC). The 3G coming in July is a real GPS which falls back to the other method if it can't lock onto a GPS signal.
Yes, spelling it wrong, I actually used the wrong word - thanks for pointing that out. I meant non-repudiation. As in the signature cannot be denied as having come from so-and-so at such-and-such a time.
And no I did not mean non-repeatability. That would be stupid. Repeatable results are actually pretty damn important in crypto, otherwise nothing could ever be decrypted and no hash could ever be verified.
On 1 March 2005, Arjen Lenstra, Xiaoyun Wang, and Benne de Weger demonstrated[8] construction of two X.509 certificates with different public keys and the same MD5 hash, a demonstrably practical collision. The construction included private keys for both public keys. A few days later, Vlastimil Klima described[9] an improved algorithm, able to construct MD5 collisions in a few hours on a single notebook computer. On 18 March 2006, Klima published an algorithm[10] that can find a collision within one minute on a single notebook computer, using a method he calls tunneling.
The concern is less for password hashing than for cryptographic signatures based on MD5. It destroys one of the principles of a crypto signature: non-reputability. By being able to create an arbitrary collision, that is removed.
Of course, originally, Icarus was the name of a certain Greek god...
No, Icarus was not a god. He was the son of Daedalus. Daedalus was an artificer (engineer) who designed the maze in which the Minotaur was imprisoned. Basically a prisoner of the king of Minos, he fashioned two sets of wooden frames to which he attached feathers with beeswax for himself and his son to escape. Daedalus escaped, but despite multiple warnings, Icarus flew too close to Apollo's chariot (the sun), melted the wax and plunged to his death.
Before we had the formal concept of "programs" (as defined and refined by Backus and Naur), computation machines calculated numbers based on information fed into them on paper tape. A full set of instructions on paper-tape was called a "tour", and while the program was running the computation machine was said to be "touring" or "turing" (Fr). When the end of the tape was reached, the computation machine was said to be in the "turing complete" state (i.e. the tour was complete).
Um...What?
No. Turing Completeness describes a Universal Turing Machine that can emulate every possible computing device ever built. It was not named as such for "touring", but the Church-Turning thesis. As in Alan Turing.
Babbage's Analytical Engine design would have pretty much met the definition of a Turing Complete machine.
I had two, and I put them on a large stone block and my printer. Anyone know how to install safari on a printer?
No, but I did manage to get it installed on a medium stone block. I'm sure the steps I used can be scaled up to your large one. Page renders are very crisp, but refresh takes forever.
If that were so then wouldn't see some sort of "Gamma Ray Disturbance" much closer to us than the actual binary star source due to the "Death Ray" traveling towards us at the speed of light as well? Take for instance this thing shot out a ray about 4000 years ago, we would see a "Gamma Ray Disturbance" 4000 light years away.
Uh, no, we can not see events 4000 light light years away instantaneously. We would have to wait 4,000 years before the image of that Gamma Ray Disturbance reached Earth. At which time I believe we would be far to busy to notice. You know, with the actual Gamma Ray arriving at the same time.
You know, replacement batteries are available from a great number of sources for about $20 (Amazon, Ebay,...).
Listen, will you cut it out. Your sensible and thrifty advice is getting in the way of rationalizing our run-away consumerism!
Now step aside as I purchase my Panasanyosung TruBlak® KulKolor® 108 inch OLED with 10 HDMI ports*! I must have it, because I can still see part of my living room wall. Well, that and I like inducing motion sickness when I have people over to watch movies.
* I need that many to setup my 360, PS3, upscaling DVD player, HD-DVD player, Blu-Ray player, Tivo, and HD cable converter.
Court case in 1979 and criminal convictions of 11 high-ranking officials regarding Operation Snow White, the largest program of domestic espionage in U.S. history.
It does however involve unscrewing the MBA's bottom, so it's not like you'll exchange batteries mid-flight. (However, this isn't allowed anymore anyways, so kind of a moot point.)
Did they change the rules again? I know they recently banned Lithium batteries for *checked* luggage, but as far as I knew, you could still bring that spare in carry-on luggage.
Apple is currently selling AAC files that don't have DRM. you pay more but they remove the DRM, enabling ANY MP4 player to play those files.
First, I think it would make more sense to state that the AAC files are not encumbered with the DRM in the first place (rather than being removed). Second, while iTunes+ tracks used to command a 0.30 USD premium, ever since Amazon began their MP3 store, iTunes+ tracks have been sold at the same rate as the regular tracks. Competition is a wonderful thing (and would tend to undermine the whole monopoly argument).
so they jack up the rent tremendously every year someone renews their lease, while at the same time giving much lower rates to new customers
It's the exact opposite for me. I live in a burb of Chicago, and that has not happened to me. I have renewed my lease many times and now my rent is almost $500 less than a new one would be. ($1100 vs. $1575 per month).
And before anyone starts jumping on me for renting. I blasted through my downpayment savings when I was laid off back during the tech bubble burst. I'll be ready to look in March, but damn I'll miss the low monthly rent vs. what I'll be paying when I buy.
...every time I have tried to use email to justify something the other party said "and you know how easily email can be faked don't you?"
Usually, an enterprise messaging system with integrated digital signatures solves that issue. I *hate* Lotus Notes with an unbridled passion. However, one of the very few things I like about it is how easy it is to have digitally signed messages (and verifying signatures). Where I'm at (a global security group), we mandate that any "official" emails are digitally signed.
I am sure there is a way to do the same in Exchange (options, 3rd party). Not so sure about other enterprise class systems. Maybe some kind of client integration with PGP/GPG. Regardless, digital signatures will CYA in those cases where someone says "you must have altered it".
I highlighted the word above to draw your attention to it (hint: it starts and ends with an "r"). Now, do you still want to ask about coal mines in regards to a statement about nuclear reactors?
if there were alternatives, nature would be using them..
I think you may be operating under the assumption evolutionary traits and expressions are optimal solutions for a given environment. In reality, evolution favors the first solution that does a good enough job to make it useful.
Take the eye for example. There are several types of eyes in nature that do the job "well enough". However, the human eye would most definitely *not* be considered an optimal solution. There's a huge freaking blind spot where the optic nerve enters the orb before branching out. Given, other parts of the body (eye jerking to help fill in the spot, stereoscopic vision) did evolve to help compensate for this deficiency, but why not branch out the optic nerve onto the external surface at the back of the eye and then attach to the retina through the ocular wall? Yes, I know there are reasons it grew the way it did, and all those reasons are basically the culmination of a confluence of environmental pressures. But if you go back far enough in the chain, one little change, a tiny beneficial and *random* mutation would change the entire outcome. Case in point: the eye of an octopus.
This culmination of these tiny changes and the possibility of random, beneficial mutations occurring over the course of *billions* of years convince me that non-terrestrial life will most likely appear, well, alien.
The attack described is perfectly feasible using a modern block cipher used in an unsuitable mode such as ECB, or CBC with a static or inappropriately reused IV.
Yes, I will grant you that figuring it out given weak edge conditions or due to a poor implementation is possible, but it's still not as simple as just opening a file and changing a couple of characters.
No! A MAC is not encryption (though it may be implemented using a block cipher) -- you cannot decrypt a MAC tag and produce the original message! There are certain constructions known as authenticated encryption which do provide this property such as Galois Counter Mode, but they're not exactly commonly used as yet.
And I never said that. What I said was, that altering the encrypted data (even 1 bit) will cause it to not validate against the MAC when the data is decrypted. In other words, the data will not longer be considered as having any integrity or authenticity (or being nonrepudiable). I consider this "protected". Yes, I will probably have to restore from a backup, but I won't be relying on bogus information. Plus, minus your edge cases above, the block of the edit onward would most likely decrypt to nothing but gibberish. The OP seemed to think that someone could alter data in a non-detectable way simply by editing a file. The only way to do it in a non-detectable manner would be to actually have the key used for encryption. And if that's the case, what the hell were they doing editing the encrypted file?
One very simple attack was changing the grades in a school system. The school encrypted the grades, so they thought they were safe from change. The failed students hacked into the system, and just changed their data to the same data held against students they knew had done well. Anyway, that's just one way that encryption doesn't protect you against malicious modification. It gets a lot sneakier the more you look into it.
What was the school using, ROT13? It sounds like they were using a substitution cipher not a modern algorithm. If they had been using any kind of real encryption, there would be no way that technique would be possible. Some of the tests that modern encryption algorithms have to face are frequency analysis (which substitution ciphers fail) and known plain text attacks (I assume the students had access to the encrypted txt and their real information). Other than the school using a centuries old, easily defeated technique I call bullshit.
Modern encryption *does* protect you from malicious altering of information. I encourage you to read up on Message Authentication Code (and all it's sundry relatives, UMAC, HMAC, CMAC). By changing just one character in an encrypted block, you have just caused the MAC to show a mismatch and invalidate the integrity and authenticity of the data. Unless they have the key used for encryption (which would raise the question of why they simply substituted characters in an encrypted field), they are shit out of luck trying to fool anyone. Yes, the cipher block is useless, but no one will be "tricked" by the changed grade, either.
You can't GET a carry permit in Chicago, unless you're a cop or military.
I don't *live* in Chicago, so I am pretty unfamiliar with a lot of the statutes in the city, but I do work downtown at a large bank. While most of our security personnel carry nothing more dangerous than a radio, the armored car drivers and the vault guards *do* have sidearms (usually.38 specials). If what you said is true, how are they able to have these?
I'm really not trying to be antagonistic and I know nothing about the carry laws in Chicago, but my observation seems to contradict your statement.
Slashdot Mirror
"...the iPhone 3G uses "simulated" GPS by triangulating it's position based on local towers or access points."
No, that's how the iPhone currently works (it uses Skyhook's services IIRC). The 3G coming in July is a real GPS which falls back to the other method if it can't lock onto a GPS signal.
Anecdote fight! Anecdote fight!
Yes, spelling it wrong, I actually used the wrong word - thanks for pointing that out. I meant non-repudiation. As in the signature cannot be denied as having come from so-and-so at such-and-such a time.
And no I did not mean non-repeatability. That would be stupid. Repeatable results are actually pretty damn important in crypto, otherwise nothing could ever be decrypted and no hash could ever be verified.
Here's a good site to give you an overview.
And it radiates via what medium?
The cake is a lie! (sorry, I'll just let myself out)
Dude, at least acknowledge the original you borrowed this from (maybe Mark Twain, most likely M.J. Yilz). http://grammar.ccc.commnet.edu/grammar/twain.htm
No. Turing Completeness describes a Universal Turing Machine that can emulate every possible computing device ever built. It was not named as such for "touring", but the Church-Turning thesis. As in Alan Turing.
Babbage's Analytical Engine design would have pretty much met the definition of a Turing Complete machine.
Now step aside as I purchase my Panasanyosung TruBlak® KulKolor® 108 inch OLED with 10 HDMI ports*! I must have it, because I can still see part of my living room wall. Well, that and I like inducing motion sickness when I have people over to watch movies.
* I need that many to setup my 360, PS3, upscaling DVD player, HD-DVD player, Blu-Ray player, Tivo, and HD cable converter.
As a matter of fact, yes.
Robert L. Forward comes to mind.
That's almost like an old Burma Shave ad, except... nasty.
so they jack up the rent tremendously every year someone renews their lease, while at the same time giving much lower rates to new customers
It's the exact opposite for me. I live in a burb of Chicago, and that has not happened to me. I have renewed my lease many times and now my rent is almost $500 less than a new one would be. ($1100 vs. $1575 per month).
And before anyone starts jumping on me for renting. I blasted through my downpayment savings when I was laid off back during the tech bubble burst. I'll be ready to look in March, but damn I'll miss the low monthly rent vs. what I'll be paying when I buy.
I am sure there is a way to do the same in Exchange (options, 3rd party). Not so sure about other enterprise class systems. Maybe some kind of client integration with PGP/GPG. Regardless, digital signatures will CYA in those cases where someone says "you must have altered it".
Take the eye for example. There are several types of eyes in nature that do the job "well enough". However, the human eye would most definitely *not* be considered an optimal solution. There's a huge freaking blind spot where the optic nerve enters the orb before branching out. Given, other parts of the body (eye jerking to help fill in the spot, stereoscopic vision) did evolve to help compensate for this deficiency, but why not branch out the optic nerve onto the external surface at the back of the eye and then attach to the retina through the ocular wall? Yes, I know there are reasons it grew the way it did, and all those reasons are basically the culmination of a confluence of environmental pressures. But if you go back far enough in the chain, one little change, a tiny beneficial and *random* mutation would change the entire outcome. Case in point: the eye of an octopus.
This culmination of these tiny changes and the possibility of random, beneficial mutations occurring over the course of *billions* of years convince me that non-terrestrial life will most likely appear, well, alien.
Modern encryption *does* protect you from malicious altering of information. I encourage you to read up on Message Authentication Code (and all it's sundry relatives, UMAC, HMAC, CMAC). By changing just one character in an encrypted block, you have just caused the MAC to show a mismatch and invalidate the integrity and authenticity of the data. Unless they have the key used for encryption (which would raise the question of why they simply substituted characters in an encrypted field), they are shit out of luck trying to fool anyone. Yes, the cipher block is useless, but no one will be "tricked" by the changed grade, either.
I'm really not trying to be antagonistic and I know nothing about the carry laws in Chicago, but my observation seems to contradict your statement.