Tactics is all about what tack you're on, so as to be able to fire broadsides at an enemy who can't fire back. Strategy is all about being upwind before the battle ever starts, so you can chose what tack to be on, when your enemy can't.
Alas, yes: one of my former start-ups had to do a pivot to node.js because they had a limited budget and real difficulties finding cheap java or kotlin programmers. They then had to build back-end programmers out of front-end, thus increasing the rate the now full-stack developers could ask for. Rinse, repeat.
The stated first purpose of the system is well served, but unless there is a law in place (PIPEDA in Canada) to force them to be used for only that purpose and then discarded, the images can then be used for the second purpose, "to ensure that people leaving the country are who they say they are, and to prevent visa overstays", as well as any third, fourth or fifth purpose that CBP (which standa for "Customs and Border Patrol") may see as desirable.
The first may well work, but the second necessarily fails, posing a real but hidden risk to everyone who passes through this airport.
That's half of what the article says is in play, and it makes prefect sense, just as you argue.
Your concern with the other uses are what I'm speaking to: if they are "to ensure that people leaving the country are who they say they are, and to prevent visa overstays", then that's the more general case, as well as the thin edge of the wedge aimed at normalizing surveillance that would normally be seen as abhorrent.
No matter how good a percentage you have (below 100%, of course), the birthday paradox will give you a ton of false positives.
It's because you're actually doing N*(N-1) comparisons, where N::= (the number of passenger a day at the airport + the number of crooks you're looking for). For a probability of 1-(1/365) (ie, 99.7% accuracy), you get a 100% chance of a false positive after 367 people... see https://en.wikipedia.org/wiki/...
The German security service supposedly identified somebody's grandmother as a terrorist, and stopped the experiment abruptly.
We called it "mandatory security levels and categories" (eg, Dockmaster.mil), and then reinvented them for minis (eg, Trusted Solaris) and micros (eg, SELinux), and now Intel is doing the category part in hardware, just like Multics. Methinks they're a tiny bit behind the times...
Lexis Nexus, when I was there, considered itself a publisher of law-court case reports rather than an indexing site, and so has to take down reports when the courts issue a blocking order.
Despite well-honed proceses, it was still a panic to get a standardized dummy page through in place of the real report. Managing our part of a really huge site in Dayton, OH from Toronto, ON is not a trivial exercise.
As other writers noted, Visa has 70% less fraud because they can now disclaim responsibility for all the fraudulent charges on the older, more popular equipment. There might be a small decrease in fraud overall, but the "70% less" is really "70% the merchant has to eat, as we're not accepting fraud reports from their equipment".
Some managers are better kept at arms length from the daily workings of the project.
Very much so: I had to "excuse one with thanks" after they ordered extra video cards and ethernet cards for machines that already had good enough ones. We said "model X or better", so he thought X plus something else would qualify as better (;-))
Back when Honeywell made computers as well as thermostats, a study was made of managers who stareted using a new, on-line financial planning application, a kind a strange mainframe-based spreadsheet-thingie. The ones who reported using it heavily had far worse contributions to profitability than everyone else. We figure they were heads-down in the computer when they should havce been doing management (;-))
One lawmaker argues that the bill is necessary because under the current system if a person phones in a swat call, "there's really no consequence for his actions."
In Canada, it's Criminal Misconduct, and also Criminal Harassment see https://www.canlii.org/en/bc/b..."> R. v. B.L.A., 2015 BCPC 203 (CanLII)
I'm not prepared to believe the US is a lawless domain: I am prepared to suspect the unnamed legislator of lying. Or perhaps mere stupidity.
Journalists have been aware of this problem since glass-plate cameras: they look for ways to hide their images from passing police, and only have harmless ones to display. Once they get home, they can crop and mask out persons at risk and still show, for example, the violent breakup of a protest by the military.
I was peripheral to the discussion, and a customer bid on the "new whois" proposal: this is how it was supposed to work.
A domain name in.com was supposed to be just like a business, and it was expected that the business contact could be your marketing department or in-house counsel. In.net and.org it was the same.
In.ca, the registrant name is the registrar, and when contacted they will contact me.
Slashdot Mirror
Tactics is all about what tack you're on, so as to be able to fire broadsides at an enemy who can't fire back. Strategy is all about being upwind before the battle ever starts, so you can chose what tack to be on, when your enemy can't.
Same rules as scrutineers and ballots: they're allowed to look but not touch. In some legal regimes, the cashier will have committed theft.
I build the train, I drive the train. And when it breaks, I occasionally fix the train.
And yes, that includes both the locomotive and the caboose.
Alas, yes: one of my former start-ups had to do a pivot to node.js because they had a limited budget and real difficulties finding cheap java or kotlin programmers. They then had to build back-end programmers out of front-end, thus increasing the rate the now full-stack developers could ask for. Rinse, repeat.
I think if they hit organized crime, even by accident, that might be the "wrong person"
The stated first purpose of the system is well served, but unless there is a law in place (PIPEDA in Canada) to force them to be used for only that purpose and then discarded, the images can then be used for the second purpose, "to ensure that people leaving the country are who they say they are, and to prevent visa overstays", as well as any third, fourth or fifth purpose that CBP (which standa for "Customs and Border Patrol") may see as desirable. The first may well work, but the second necessarily fails, posing a real but hidden risk to everyone who passes through this airport.
That's half of what the article says is in play, and it makes prefect sense, just as you argue. Your concern with the other uses are what I'm speaking to: if they are "to ensure that people leaving the country are who they say they are, and to prevent visa overstays", then that's the more general case, as well as the thin edge of the wedge aimed at normalizing surveillance that would normally be seen as abhorrent.
No matter how good a percentage you have (below 100%, of course), the birthday paradox will give you a ton of false positives.
It's because you're actually doing N*(N-1) comparisons, where N ::= (the number of passenger a day at the airport + the number of crooks you're looking for). For a probability of 1-(1/365) (ie, 99.7% accuracy), you get a 100% chance of a false positive after 367 people... see https://en.wikipedia.org/wiki/...
The German security service supposedly identified somebody's grandmother as a terrorist, and stopped the experiment abruptly.
We called it "mandatory security levels and categories" (eg, Dockmaster.mil), and then reinvented them for minis (eg, Trusted Solaris) and micros (eg, SELinux), and now Intel is doing the category part in hardware, just like Multics. Methinks they're a tiny bit behind the times...
I expected at least one spirited defense of cloud from the "lawful access" people.
Hint: it's the same reason you have to pay the same school taxes whether you have six kids oe none.
Canada too, but we have to declare all the land that we want to buy at the beginning, and pat the price as of that date.
"The project began having trouble buying property for the route almost immediately after it issued its first construction contract in 2013."
Lexis Nexus, when I was there, considered itself a publisher of law-court case reports rather than an indexing site, and so has to take down reports when the courts issue a blocking order.
Despite well-honed proceses, it was still a panic to get a standardized dummy page through in place of the real report. Managing our part of a really huge site in Dayton, OH from Toronto, ON is not a trivial exercise.
My understanding is that VW was just the worst of a bad lot (;-))
See Ross Anderson's "Light Blue Touchpaper" for a timeline, https://www.lightbluetouchpape...
As other writers noted, Visa has 70% less fraud because they can now disclaim responsibility for all the fraudulent charges on the older, more popular equipment. There might be a small decrease in fraud overall, but the "70% less" is really "70% the merchant has to eat, as we're not accepting fraud reports from their equipment".
I had so much sunlight that I have scorch marks (AKA age spots, solar lentigines) on my head, and I'm still short-sightred.
I thought it was a big white wall, quite a bit farther away...
Fortunately I was moving quite slowly, and the trucking company was more amused than annoyed.
"Stop reading and go out and play, you'll ruin your eyes".
My mother fell for it, my dad was harder to fool.
The group were 30 to 50 years of age, white, male and pretty darned homogenous. Twenty-somethings rarely got to the level where they had a budget.
Some managers are better kept at arms length from the daily workings of the project.
Very much so: I had to "excuse one with thanks" after they ordered extra video cards and ethernet cards for machines that already had good enough ones. We said "model X or better", so he thought X plus something else would qualify as better (;-))
Back when Honeywell made computers as well as thermostats, a study was made of managers who stareted using a new, on-line financial planning application, a kind a strange mainframe-based spreadsheet-thingie. The ones who reported using it heavily had far worse contributions to profitability than everyone else. We figure they were heads-down in the computer when they should havce been doing management (;-))
One lawmaker argues that the bill is necessary because under the current system if a person phones in a swat call, "there's really no consequence for his actions."
In Canada, it's Criminal Misconduct, and also Criminal Harassment see https://www.canlii.org/en/bc/b..."> R. v. B.L.A., 2015 BCPC 203 (CanLII)
I'm not prepared to believe the US is a lawless domain: I am prepared to suspect the unnamed legislator of lying. Or perhaps mere stupidity.
Journalists have been aware of this problem since glass-plate cameras: they look for ways to hide their images from passing police, and only have harmless ones to display. Once they get home, they can crop and mask out persons at risk and still show, for example, the violent breakup of a protest by the military.
I was peripheral to the discussion, and a customer bid on the "new whois" proposal: this is how it was supposed to work. A domain name in .com was supposed to be just like a business, and it was expected that the business contact could be your marketing department or in-house counsel. In .net and .org it was the same.
In .ca, the registrant name is the registrar, and when contacted they will contact me.