Spanning electrical lines everywhere has drawbacks too. They require constant maintenance, they hinder traffic, may interfere with power lines/tram lines or other obstructions and on top of that, they come down once in a while. They are butt-ugly too, try to make a decent picture in a city using lots of trams or trolleys - near impossible at times.
Besides that, imagine building this grid only to find out that everybody is switching to the latest battery tech, that's a high initial investment you might be throwing away.
Mod AC up, I've checked after watching the YouTube video (just to be absolutely sure), and this seems to be the case.
Although it *is* an epic fail, you may argue the safety of the EC algorithm if your RNG fails for signature generation. That is a safety catch that is not present for RSA. So watch out you kids, don't forget to use secure RNG's.
So yes, they have the private key(s) because of a bug in their signature generation implementation. They probably used a software package instead of a HSM (hardware security module), which they should have used.
[try 3: my comment's don't get posted for some reason or another]
Mod AC up, I've checked after watching the YouTube video (just to be absolutely sure), and this seems to be the case.
Although it *is* an epic fail, you may argue the safety of the EC algorithm if your RNG fails for signature generation. That is a safety catch that is not present for RSA. So watch out you kids, don't forget to use secure RNG's.
So yes, they have the private key(s) because of a bug in their signature generation implementation. They probably used a software package instead of a HSM (hardware security module), which they should have used.
Mod AC up, I've checked after watching the YouTube video (just to be absolutely sure), and this seems to be the case.
Although it *is* an epic fail, you may argue the safety of the EC algorithm if your RNG fails for signature generation. That is a safety catch that is not present for RSA. So watch out you kids, don't forget to use secure RNG's.
So yes, they have the private key(s) because of a bug in their signature generation implementation. They probably used a software package instead of a HSM (hardware security module), which they should have used.
Just a quick note for you guys that like to fiddle with miniature screw-drivers and such: you can always replace your optical drive with an SSD or HDD. It seems that newmodeus has this market cornered for a while, restricting you to a higher priced product, but it is certainly a viable option. I've left my HDD where it is at because of possible heat issues (although there is quite a lot of spare room in the caddy) and possible problems with warranty. The only drawback is that you have to put your movies on HDD pre-flight or that you will have to take an external optical drive with you.
It does seem from the picture that they have used new packaging for the chips. If I remember correctly, there are more chips on my Intel SSD than there are on the picture, so they've probably paired them. That is quite a bit of effort to go through for just introducing a smaller form factor. This may also be a drawback from competitors that don't have a direct influence over the production facilities. Note that this is pure speculation from what I see from the picture.
Well, that should at least allow notebook manufacturers to use the same physical design if they decide to switch to a PCIe interface. For the current generation (and probably the next SATA-3 generation as well), the SATA standard is fast enough. End users won't notice and more importantly, it won't influence the BIOS or operating system at all.
Great, but in that case I would choose my wording more carefully. Having "reservations about this concept" translates into "not trusting the workings of this concept". If you would have said that you dislike the implications of the concept, I would have understood you.
"Being that Laplace's Demon is a thought experiment without absolute proof doesn't reflect what you thought I said."
See what I mean, how the hell am I supposed to understand sentences like these?
I'm not attacking you, I was just pointing out - what I thought was - an obvious fallacy in your reasoning.
"The only thing difficult about the financial crisis was predicting when it would occur. That it would occur was obvious from the levels of risk that the financial and real estate institutions were taking on."
The main problem with the financial crisis is getting things to change while so many people have short term, highly personal reasons to let it exists. This is such a big problem that most people seem to address this issue by putting their hands on their ears and shout "LALALALALA" on top of their voice.
"I have personal (philosophical) reservations about this concept, for it negates the concept of "free will".
In other words, because I don't want it to be like that, it can't be like that.
Personally, I've always thought that the idea of "free will" is in the ropes. Even if there is no such thing as predictability, how can we actually change the physical processes that happen in our brain, if we ourselves are a product of them?
That does not actually mean that we should change because of that, since maybe the *idea* that there is free will may be enough. We have invented all these morals and laws around them, and our brain certainly takes that data into account.
It's about the same idea that some government in NL has to invest in fiber tech. Personally, I don't think that is the way to do it. The idea is to invest in internet content that *possibly* requires high speed internet. The high speed internet will follow. Of course, sometimes you have to push technology a bit as well. But the way to do that is investing in research and small scale try-outs. If the technology succeeds in the try-outs, leave it to the market to fill in demand. I think there are loads upon loads of specialized problems waiting for a supercomputer. Focus on those that need a specialized computer with specialized tech, and make initial investments to succeed in a non-commercial setup. The commercial applications will follow automatically if the tech becomes available.
Personally, I think that creating additional methods to measure speed are absolutely idiotic. They are only interesting to make yet another list of high speed computers. The only way to success is rather simply to solve problems, the computers themselves are only a means. Creating these lists is like comparing dicks, and that's a rather sad thing to do with scientific equipment.
I guess because they don't trust their employees. If you watch more closely, you will see that each cashier has his own register. So they know who to blame when they are counting the money in the register (or at least bring it down to one or two employees).
Yeah, and test horse piss too. That might help as well.
For sure, just looking at how alternative medicine invents cures tells quite a lot about the treatment. My mother injected extremely diluted fermented mistletoe. This all because some quack thought it looked like a cancer, so it should probably treat cancer (????). Getafix would have been proud though.
This is the way many alternative doctors work: they just focus on the patient more than the procedure. There is a lot of bad stuff happening at hospitals and alternative medicine is only to keen to step in. Of course, that all stops when the patient is either out of money or in the later phases of a terminal disease. It also leaves patients feeling healthier than they actually are, which does certainly not help people come in to terms with their illness.
There is two ways to tackle this kind of make belief: keep showing the bad practices of the practitioners, but much more importantly, let the mainstream medicine focus on the quality of life of the patient, instead of looking for "cures" all the time.
Tried to do that, only to find out that many sites did not accept those kind of passports, many even restricting me to 8 letters. And my memory fails me for less often used sites. Yours will too, just wait until something really important happens in your life and you can't tell left from right for a while. Hell, I did not even remember my slashdot password, one of the most used on my computer (yeah, yeah, I know, pathetic:).
Yes, keep a password file on your phone, or if you are an old-timer, a PA. And for gods sake, use one that is portable across computers, so you can back it up. Use a strong password to encrypt the file.
Or use ROT or something to generate passwords from a base password. Even if you use just letters and digits, it is rather safe unless people are specifically targeting you. You may even write down the way you do ROT as it is the base password that adds the most security. I'm using a base password, ROT and the site's name as a "derivation key" myself.
Doesn't work for the simple reason that it would be extremely easy to perform a dictionary attack on the hash of the URL. That is, unless you are referring to the already common practice for browsers to have a form field -> password map (which is basically the same as a URL -> password map).
Don't forget that Android applications are placed in a sandbox. Each time you install an app, you will have to agree that the app wants to have access to specific parts of your phone. I've discarded apps that were too invasive, e.g. wanting access to my phone book, or games that want access to the internet. With Apple, the only protection you have is...Apple. At least with Android there is another level of security.
I'm not so sure that is true. To make a high performance, side channel attack resistant implementation, you do require quite a lot of skill. I'm not so sure about the auditor. If there are no data specific pieces of code and if the code is self maintained, it should be rather possible to review it well. Probably the best trick is to create a large set of test vectors (e.g. using another library) and use a profiler to see which areas lite up.
I've implemented quite a few algorithms already, and I don't consider myself highly advanced in mathematics. Actually, they can be even rather easy to read, if properly documented. Unfortunately, they never are, because crypto nerds don't communicate that well in my experience.
I personally think that fuming about the plot has become fashionable. I didn't think it was *that* bad actually. It was totally unsurprising, but that goes for a good many movies. Just try and not plot ahead while watching the movie. Not listening to people parroting about the bad plot (even before they have seen it in some cases) also makes it a lot less bad.
I just went to it twice, once to look at the movie and one time to have another view of it in an IMAX theater (which did not differ too much with the standard 3D version).
Oh, and then there are people that watch it the first time in 2D. It is probably still sub-par, but by gods, why?
Slashdot Mirror
Spanning electrical lines everywhere has drawbacks too. They require constant maintenance, they hinder traffic, may interfere with power lines/tram lines or other obstructions and on top of that, they come down once in a while. They are butt-ugly too, try to make a decent picture in a city using lots of trams or trolleys - near impossible at times.
Besides that, imagine building this grid only to find out that everybody is switching to the latest battery tech, that's a high initial investment you might be throwing away.
Trying desperately to post but /. letting me down. Using this uninformative article to test. Sorry sorry sorry, mod me into oblivion if you want to.
Mod AC up, I've checked after watching the YouTube video (just to be absolutely sure), and this seems to be the case.
Although it *is* an epic fail, you may argue the safety of the EC algorithm if your RNG fails for signature generation. That is a safety catch that is not present for RSA. So watch out you kids, don't forget to use secure RNG's.
So yes, they have the private key(s) because of a bug in their signature generation implementation. They probably used a software package instead of a HSM (hardware security module), which they should have used.
[try 3: my comment's don't get posted for some reason or another]
Mod AC up, I've checked after watching the YouTube video (just to be absolutely sure), and this seems to be the case.
Although it *is* an epic fail, you may argue the safety of the EC algorithm if your RNG fails for signature generation. That is a safety catch that is not present for RSA. So watch out you kids, don't forget to use secure RNG's.
So yes, they have the private key(s) because of a bug in their signature generation implementation. They probably used a software package instead of a HSM (hardware security module), which they should have used.
[reposted due to /. technical difficulties]
Mod AC up, I've checked after watching the YouTube video (just to be absolutely sure), and this seems to be the case.
Although it *is* an epic fail, you may argue the safety of the EC algorithm if your RNG fails for signature generation. That is a safety catch that is not present for RSA. So watch out you kids, don't forget to use secure RNG's.
So yes, they have the private key(s) because of a bug in their signature generation implementation. They probably used a software package instead of a HSM (hardware security module), which they should have used.
Just a quick note for you guys that like to fiddle with miniature screw-drivers and such: you can always replace your optical drive with an SSD or HDD. It seems that newmodeus has this market cornered for a while, restricting you to a higher priced product, but it is certainly a viable option. I've left my HDD where it is at because of possible heat issues (although there is quite a lot of spare room in the caddy) and possible problems with warranty. The only drawback is that you have to put your movies on HDD pre-flight or that you will have to take an external optical drive with you.
It does seem from the picture that they have used new packaging for the chips. If I remember correctly, there are more chips on my Intel SSD than there are on the picture, so they've probably paired them. That is quite a bit of effort to go through for just introducing a smaller form factor. This may also be a drawback from competitors that don't have a direct influence over the production facilities. Note that this is pure speculation from what I see from the picture.
Well, that should at least allow notebook manufacturers to use the same physical design if they decide to switch to a PCIe interface. For the current generation (and probably the next SATA-3 generation as well), the SATA standard is fast enough. End users won't notice and more importantly, it won't influence the BIOS or operating system at all.
A chance of about one in a million means that if you have one million pupils usually one will be flaged without any reason PER TEST.
Great, but in that case I would choose my wording more carefully. Having "reservations about this concept" translates into "not trusting the workings of this concept". If you would have said that you dislike the implications of the concept, I would have understood you.
"Being that Laplace's Demon is a thought experiment without absolute proof doesn't reflect what you thought I said."
See what I mean, how the hell am I supposed to understand sentences like these?
I'm not attacking you, I was just pointing out - what I thought was - an obvious fallacy in your reasoning.
"The only thing difficult about the financial crisis was predicting when it would occur. That it would occur was obvious from the levels of risk that the financial and real estate institutions were taking on."
The main problem with the financial crisis is getting things to change while so many people have short term, highly personal reasons to let it exists. This is such a big problem that most people seem to address this issue by putting their hands on their ears and shout "LALALALALA" on top of their voice.
"I have personal (philosophical) reservations about this concept, for it negates the concept of "free will".
In other words, because I don't want it to be like that, it can't be like that.
Personally, I've always thought that the idea of "free will" is in the ropes. Even if there is no such thing as predictability, how can we actually change the physical processes that happen in our brain, if we ourselves are a product of them?
That does not actually mean that we should change because of that, since maybe the *idea* that there is free will may be enough. We have invented all these morals and laws around them, and our brain certainly takes that data into account.
It's about the same idea that some government in NL has to invest in fiber tech. Personally, I don't think that is the way to do it. The idea is to invest in internet content that *possibly* requires high speed internet. The high speed internet will follow. Of course, sometimes you have to push technology a bit as well. But the way to do that is investing in research and small scale try-outs. If the technology succeeds in the try-outs, leave it to the market to fill in demand. I think there are loads upon loads of specialized problems waiting for a supercomputer. Focus on those that need a specialized computer with specialized tech, and make initial investments to succeed in a non-commercial setup. The commercial applications will follow automatically if the tech becomes available.
Personally, I think that creating additional methods to measure speed are absolutely idiotic. They are only interesting to make yet another list of high speed computers. The only way to success is rather simply to solve problems, the computers themselves are only a means. Creating these lists is like comparing dicks, and that's a rather sad thing to do with scientific equipment.
I guess because they don't trust their employees. If you watch more closely, you will see that each cashier has his own register. So they know who to blame when they are counting the money in the register (or at least bring it down to one or two employees).
Yeah, and test horse piss too. That might help as well.
For sure, just looking at how alternative medicine invents cures tells quite a lot about the treatment. My mother injected extremely diluted fermented mistletoe. This all because some quack thought it looked like a cancer, so it should probably treat cancer (????). Getafix would have been proud though.
This is the way many alternative doctors work: they just focus on the patient more than the procedure. There is a lot of bad stuff happening at hospitals and alternative medicine is only to keen to step in. Of course, that all stops when the patient is either out of money or in the later phases of a terminal disease. It also leaves patients feeling healthier than they actually are, which does certainly not help people come in to terms with their illness.
There is two ways to tackle this kind of make belief: keep showing the bad practices of the practitioners, but much more importantly, let the mainstream medicine focus on the quality of life of the patient, instead of looking for "cures" all the time.
Tried to do that, only to find out that many sites did not accept those kind of passports, many even restricting me to 8 letters. And my memory fails me for less often used sites. Yours will too, just wait until something really important happens in your life and you can't tell left from right for a while. Hell, I did not even remember my slashdot password, one of the most used on my computer (yeah, yeah, I know, pathetic :).
Yes, keep a password file on your phone, or if you are an old-timer, a PA. And for gods sake, use one that is portable across computers, so you can back it up. Use a strong password to encrypt the file.
Or use ROT or something to generate passwords from a base password. Even if you use just letters and digits, it is rather safe unless people are specifically targeting you. You may even write down the way you do ROT as it is the base password that adds the most security. I'm using a base password, ROT and the site's name as a "derivation key" myself.
Doesn't work for the simple reason that it would be extremely easy to perform a dictionary attack on the hash of the URL. That is, unless you are referring to the already common practice for browsers to have a form field -> password map (which is basically the same as a URL -> password map).
Quickly, somebody mod this up! I want to see how this ends before I need to restart my computer - it just finished downloading them automatic updates.
Don't forget that Android applications are placed in a sandbox. Each time you install an app, you will have to agree that the app wants to have access to specific parts of your phone. I've discarded apps that were too invasive, e.g. wanting access to my phone book, or games that want access to the internet. With Apple, the only protection you have is...Apple. At least with Android there is another level of security.
I'm not so sure that is true. To make a high performance, side channel attack resistant implementation, you do require quite a lot of skill. I'm not so sure about the auditor. If there are no data specific pieces of code and if the code is self maintained, it should be rather possible to review it well. Probably the best trick is to create a large set of test vectors (e.g. using another library) and use a profiler to see which areas lite up.
I've implemented quite a few algorithms already, and I don't consider myself highly advanced in mathematics. Actually, they can be even rather easy to read, if properly documented. Unfortunately, they never are, because crypto nerds don't communicate that well in my experience.
The young ones were pretty funny as well, but I would not put them in a list of things that were great in the 80's. Vice my soul?
I personally think that fuming about the plot has become fashionable. I didn't think it was *that* bad actually. It was totally unsurprising, but that goes for a good many movies. Just try and not plot ahead while watching the movie. Not listening to people parroting about the bad plot (even before they have seen it in some cases) also makes it a lot less bad.
I just went to it twice, once to look at the movie and one time to have another view of it in an IMAX theater (which did not differ too much with the standard 3D version).
Oh, and then there are people that watch it the first time in 2D. It is probably still sub-par, but by gods, why?