My neighboorhood has an armed negiboorhod watch, a bike patrol and a parents foot patrol. They all do great stuff keeping me and my kids safe. I keep thinking about volunteering to one of them but never do. I get invited almost every week by a local charity to help distribute food packages to needy families, haven't gone in years. I was very politically active in college, since I have a family the most I do is vote. Asside from giving some money to various causes I don't do anything. Contributing to open source is just one of many good things I don't do enough.
A candidates school(s) definitely come into my hiring considerations. Especially as a tie breaker or when their is little other information to go on. This is not because I think the top schools teach you so much more than other schools, The big difference is in who gets accepted in the first place. Top schools screening process are reasonably correlated with qualities I look for in a candidate and therefor are valuable input to my hiring decision.
This is the best advice for any competition. Alsi arm yourselves with every tool you csn think of. Any minute spent familiarizing yourself with an extra tool is well spent. Several years ago I led a team of capture the flag, our main tool was simply metasploit(the only tool we used more than once), 8 hours into the conpetition we were down to the last flag trailing the leading team by 15 minutes. We collected a hint stating that some users use the same password on multiple servers which got us to attempt to retrieve all passwords from an already compromised windows machine and try them on an apparently iron clad linux box with nothing but the latest openssh exposed. The other teams were using john the ripper but we had rainbow tabels. This is the only different tool we used and it gave us the win.
It was a fairly silly limitation to begin with. At 50 cm resolution a competent analyst can identify specific models of aircrafts and other military veichals, Counting them and identifying movement is even easier.
The result is on for fields with small characteristic, but the most commonly used finite fields in this context are the Zp for some prime p which have characteristic p. So though this is a very interesting result, I am not tossing out all my crypto suit yet. we should be cautiously seeking better alternatives, but the worst thing we can do is to panic and ditch well studied algorithms and implementations every time some progress is made on their cryptanalysis.
Nothing much has changed in the last 30 years. The US still has intrests in Israel and the middle east. Everyone knows Israel has nuclear weapons but can't prove it and that is just the way Israel likes it. Israel was on the brink of extinction in 1973 and no WMDs were used this proves remarkable self restraint. Accusing Israel of a 50 year old crime would serve no practical purpose. It would hurt relationships with Israel it will harm the peace process it would harm the fight against WMDs because it would show the truth we are much more concerned about dictators with WMDs then we are about democracies.
We should not have one SHA-3 with the security parameters selected by NIST or anyone else. For the vast majority of usages the speed of the hashing is a non-issue, they are all plenty fast enough yet some implementations, specifically those with limited hardware my have other concerns. We should approve the basic algorithm, and have a family of hash functions with different security parameters to be selected for each usage. Most of us should use an extra secure variant most of the time.
I learned to write in basic when I was 6, even though I could hardly spell at the time, coding and typing came together, most words were very short and easy but I still remember, 30 years later, memorizing REPEAT. I consider this a good experience. I also had the chance to teach a class of 5 year olds to do "Lego-logo", this was a once week afternoon activity for 20 weeks. They would build from mechanical lego. and would then program it on the computer by arranging large colorful blocks in order, the building blocks were inspired very loosly by Logo commands. All kids had fun and were introduced to computers&robotics as something fun,cool and accessible. A few of the kids were able to build original programs by the end of the course. These were not gifted kids and they didn't get much personnel attention. A parent teaching his child can probably accomplish a lot.
the algorithms have a lot of peer review independent of the NSA and the NSA had little input in their design (though may have significant input in the slection of those algorithms that got standardized). Though the NSA probably has better methods for attacking common cryptographic algorithms either using undisclosed weaknesses or more likely custom hardware, it seems likely the NSA can not easily crack these algorithms.
The simplest thing to do is to pick a larger key length which will give you more of a security margin.
Some implementations have also been peer reviewed, and though one can probably hide a side channel leakage in a peer reviewed implementation hiding something more sinister may be difficult for the algorithm to still be operating per the spec.
When looking for a development position with little to no leadership responsibility I would be hesitant before hiring someone with 14 years of experience. Many such developers are simply incompetent, they have been around for ever and haven't risen to the top for good reason. many developers do not want to manage but find themselves leading in their own way, becoming an architect or a very hands on team leader of a small team. A different problem with experienced developers is ego and strong opinions. There are normally many good ways of doing something, an experienced developer is more likely to continue arguing for too long. If I published a position asking 2-5 years of experience I wouldn't disqualify on the spot someone with 14, but it is definitely a red warning light.
And can easily be achieved without any sarcasm detection. Social media mentions have a strong positive bias, so simply guessing positive all the time will get you pretty close to the 80% mark. and with a simple list of negative phrases you can pass the 80% mark in identifying if a social media mention(twitter, facebook, etc.) is positive or negative.
The question is, who are you worried will find this super secret sensitive information (Your name, address and fact you use the site)? The government? They don't need to intercept the e-mail they have easier ways of knowing it? Some criminal targeting you specifically who manged to intercept this e-mail? He already knows who you are all he learned is you use this site, simply seeing the IP is enough? Some random script kiddie on the internet? intercepting e-mails is not that easy, yes they are in plain text but they are not broadcast over the internet for everyone to see you have to position yourself along the route it travels (and this route normally doesn't change much) and attack somewhere along it, not impossible but hardly effortless. and why would he? Which only leaves corporate espionage targeted against the site you are visiting, which though more likely then any other vector still seems a bit far fetched, and in the end all they learn is your name&address. There are plenty of serious threats out there on the internet, this doesn't seem like one of them. focus your worrying else where.
which is an excellent site which give metrics on open source projects number of developers, lines of code progression over time and many more useful graphs and metrics to help assess how active an open source software is and what is the trend.
We build and operate manned aircrafts to a very very high safety standard. A simple software upgrade for a manned aircraft takes years to complete, because of the standards employed. When operating manned aircrafts we have strict standards as well on how to do everything and many many small and large things we don't do. These are all very limiting both in the cost they impose and in the ability to get the job done. We use unmanned aircrafts so we operate more freely both when building and when flying them, this comes with a higher accident rate from all causes but that is the whole point. We need to remember unmanned aircrafts are not only cheaper then their manned counterparts they also do things the manned counterparts can't or won't do.
In modern days education is more accessible, and almost everyone strives to get higher education, the result is more college graduates on the market, which allows more position to require a degree which drives more kids to college and the cycle continues. This also causes more colleges to open up, many of them sacrificing quality and it helps raise the cost of education. The root issue is lack of feedback between the job market and the universities. We need the number of seats in colleges and universities to be closely related with limited surplus to the job market requirements. The colleges will not self regulate and limit the number of seats because too many of them are in the business of making money, and though this is very unpopular I see no solution other then some sort of governmental regulation to limit the number of seats fro bachelor degrees which will both increase the quality of graduates and save a whole lot of money on wasted tuition and years out of the job market.
Even after taking into account that not every incoming missile will be intercepted It requires a more advance more sophisticated more expensive weapon to shoot down a cheap missile. a Vulcan Phallanx is more expensive than a mortar unit and you need many of them to protect even a smallish area. An Iron Dome interceptor is more complicated and expensive than a Kasam or Grad rocket. An Arrow missile is likewise more advanced and more expensive then a Scud or even a Shihab/Sagil missile. This is why such defense makes sense for Israel vs Terror organizations but make little sense for USA vs USSR. Israel has a budget much larger than Hamas and can afford expensive solutions. Some argue the cost for the enemy is irrelevant, it is only cost for the protective side vs potential damage from the threat And when you add to the potential damage not only the direct damages of a missile attack but the ability of the population to continue living a normal productive life during a time of conflict, you quickly see the cost of expensive Iron Dome interceptors is well worth it. The trade-off becomes less favorable for the larger missiles, unless you fear unconventional weapons or are protecting strategic sites.
When I have something performance sensitive I can always work hard to optimize it, and even switch to a different platform for some small part of the project. The question therefor is not how fast can I write it, but how easy is it, this has a lot to do about libraries and tools but language makes a difference too. The JVM environment is an excellent environment to work in, with a plethora of excellent libraries and tools (including the Tomcat server). Yet the Java language is falling rapidly behind, and C# is rapidly gaining new bells and whistles while Java is stagnating, I find it mind buggling Java 7 doesn't have lambda expressions. That's why I have switched to Scala which gives all the good of the JVM in a modern functional yet object oriented language giving me all the protection of a strongly typed static language yet with minimal boilerplate reminding me of dynamic languages.
It seems to me a x75 increase in power efficiency should be worth to nVidia (or any competitor) much more than $20M, why does DARPA need to fund this, this seems exactly like the kind of work which doesn't need DARPA money. DARAPA should spend money where it is not clearly economic for others to do so.
Free speech is a sacred right, even murderers have it. However encouraging people to commit crimes when there is good reason to believe someone will act upon your words is illegal pretty much anywhere. Hamas should not be censored because they are evil (they are as evil as they come), They should be censored when they call for terror or other illegal activity. I myself have not read too many of their twitter posts so I don't know if they use them to spread general propoganda (false or other) or if they overtly call for terrorism. All of this is purely on the moral aspects of censorship, ignoring the effectiveness of censoring twitter. I suspect censoring Hamas effectively may prove difficult.
If we study our history we will learn that Hamas started using rockets as it's main weapon only after the security fence made suicide bombings less practical. When you close off one option for the enemy he will inevitably find a new one, preferably a less effective one but this is not to say you shouldn't close off his options. We also need to remember that the modern warfare is more about morale then number of casualties, The Hamas wants as many Israelis as possible to live in fear, killing them is just an added bonus. having an effective defense makes the civilians under attack feel less defenseless.
Slashdot Mirror
My neighboorhood has an armed negiboorhod watch, a bike patrol and a parents foot patrol. They all do great stuff keeping me and my kids safe. I keep thinking about volunteering to one of them but never do.
I get invited almost every week by a local charity to help distribute food packages to needy families, haven't gone in years.
I was very politically active in college, since I have a family the most I do is vote.
Asside from giving some money to various causes I don't do anything.
Contributing to open source is just one of many good things I don't do enough.
A candidates school(s) definitely come into my hiring considerations. Especially as a tie breaker or when their is little other information to go on.
This is not because I think the top schools teach you so much more than other schools, The big difference is in who gets accepted in the first place.
Top schools screening process are reasonably correlated with qualities I look for in a candidate and therefor are valuable input to my hiring decision.
Apologies for the horrible spelling.
This is the best advice for any competition.
Alsi arm yourselves with every tool you csn think of. Any minute spent familiarizing yourself with an extra tool is well spent.
Several years ago I led a team of capture the flag, our main tool was simply metasploit(the only tool we used more than once), 8 hours into the conpetition we were down to the last flag trailing the leading team by 15 minutes. We collected a hint stating that some users use the same password on multiple servers which got us to attempt to retrieve all passwords from an already compromised windows machine and try them on an apparently iron clad linux box with nothing but the latest openssh exposed. The other teams were using john the ripper but we had rainbow tabels. This is the only different tool we used and it gave us the win.
There is atmospheric distortion to deal with. Looking in is much harder then looking out.
It was a fairly silly limitation to begin with.
At 50 cm resolution a competent analyst can identify specific models of aircrafts and other military veichals,
Counting them and identifying movement is even easier.
The result is on for fields with small characteristic, but the most commonly used finite fields in this context are the Zp for some prime p which have characteristic p.
So though this is a very interesting result, I am not tossing out all my crypto suit yet.
we should be cautiously seeking better alternatives, but the worst thing we can do is to panic and ditch well studied algorithms and implementations every time some progress is made on their cryptanalysis.
Nothing much has changed in the last 30 years. The US still has intrests in Israel and the middle east. Everyone knows Israel has nuclear weapons but can't prove it and that is just the way Israel likes it. Israel was on the brink of extinction in 1973 and no WMDs were used this proves remarkable self restraint. Accusing Israel of a 50 year old crime would serve no practical purpose. It would hurt relationships with Israel it will harm the peace process it would harm the fight against WMDs because it would show the truth we are much more concerned about dictators with WMDs then we are about democracies.
a lot more then it is about salary, at least for university professors.
For engeneirs it's more about cost of living and specifically cost of housing
We should not have one SHA-3 with the security parameters selected by NIST or anyone else.
For the vast majority of usages the speed of the hashing is a non-issue, they are all plenty fast enough
yet some implementations, specifically those with limited hardware my have other concerns.
We should approve the basic algorithm, and have a family of hash functions with different security parameters
to be selected for each usage.
Most of us should use an extra secure variant most of the time.
I learned to write in basic when I was 6, even though I could hardly spell at the time, coding and typing came together,
most words were very short and easy but I still remember, 30 years later, memorizing REPEAT. I consider this a good experience.
I also had the chance to teach a class of 5 year olds to do "Lego-logo", this was a once week afternoon activity for 20 weeks.
They would build from mechanical lego. and would then program it on the computer by arranging large colorful blocks in order, the building blocks were inspired very loosly by Logo commands.
All kids had fun and were introduced to computers&robotics as something fun,cool and accessible.
A few of the kids were able to build original programs by the end of the course.
These were not gifted kids and they didn't get much personnel attention. A parent teaching his child can probably accomplish a lot.
the algorithms have a lot of peer review independent of the NSA and the NSA had little input in their design (though may have
significant input in the slection of those algorithms that got standardized).
Though the NSA probably has better methods for attacking common cryptographic algorithms either using undisclosed weaknesses or more likely
custom hardware, it seems likely the NSA can not easily crack these algorithms.
The simplest thing to do is to pick a larger key length which will give you more of a security margin.
Some implementations have also been peer reviewed, and though one can probably hide a side channel leakage in a peer reviewed implementation
hiding something more sinister may be difficult for the algorithm to still be operating per the spec.
When looking for a development position with little to no leadership responsibility I would be hesitant before hiring someone with 14 years of experience.
Many such developers are simply incompetent, they have been around for ever and haven't risen to the top for good reason.
many developers do not want to manage but find themselves leading in their own way, becoming an architect or a very hands on team leader of a small team.
A different problem with experienced developers is ego and strong opinions. There are normally many good ways of doing something, an experienced developer is more likely to continue arguing for too long.
If I published a position asking 2-5 years of experience I wouldn't disqualify on the spot someone with 14, but it is definitely a red warning light.
And can easily be achieved without any sarcasm detection.
Social media mentions have a strong positive bias, so simply guessing positive all the time will get you
pretty close to the 80% mark. and with a simple list of negative phrases you can pass the 80% mark in identifying if a social media mention(twitter, facebook, etc.) is positive or negative.
I don't want an ultra book, I want something full size I can code on :(
and it seems currently my options are either Apple or settle for FHD.
The question is, who are you worried will find this super secret sensitive information (Your name, address and fact you use the site)?
The government? They don't need to intercept the e-mail they have easier ways of knowing it?
Some criminal targeting you specifically who manged to intercept this e-mail? He already knows who you are all he learned is you use this site,
simply seeing the IP is enough?
Some random script kiddie on the internet? intercepting e-mails is not that easy, yes they are in plain text but they are not broadcast over the internet for everyone to see
you have to position yourself along the route it travels (and this route normally doesn't change much) and attack somewhere along it, not impossible but hardly effortless. and why would he?
Which only leaves corporate espionage targeted against the site you are visiting, which though more likely then any other vector still seems a bit far fetched, and in the end all they learn is your name&address.
There are plenty of serious threats out there on the internet, this doesn't seem like one of them.
focus your worrying else where.
In many cases in the past building a power grid resilient to small power outages, automatically rerouting power around failed components
only leads to it being more susceptible to large power failures caused by cascading failures.
http://en.wikipedia.org/wiki/Power_outage
http://en.wikipedia.org/wiki/Cascading_failure
which is an excellent site which give metrics on open source projects number of developers,
lines of code progression over time and many more useful graphs and metrics to help assess how active an open source software is
and what is the trend.
We build and operate manned aircrafts to a very very high safety standard.
A simple software upgrade for a manned aircraft takes years to complete, because of the standards employed.
When operating manned aircrafts we have strict standards as well on how to do everything and many many small and large things we don't do.
These are all very limiting both in the cost they impose and in the ability to get the job done.
We use unmanned aircrafts so we operate more freely both when building and when flying them, this comes with a higher accident rate from all causes but that
is the whole point.
We need to remember unmanned aircrafts are not only cheaper then their manned counterparts they also do things the manned counterparts can't or won't do.
In modern days education is more accessible, and almost everyone strives to get higher education, the result is more college graduates on the market, which allows more position to require a degree which drives more kids to college and the cycle continues.
This also causes more colleges to open up, many of them sacrificing quality and it helps raise the cost of education.
The root issue is lack of feedback between the job market and the universities.
We need the number of seats in colleges and universities to be closely related with limited surplus to the job market requirements.
The colleges will not self regulate and limit the number of seats because too many of them are in the business of making money,
and though this is very unpopular I see no solution other then some sort of governmental regulation to limit the number of seats fro bachelor degrees which will both increase the quality of graduates and save a whole lot of money on wasted tuition and years out of the job market.
Even after taking into account that not every incoming missile will be intercepted
It requires a more advance more sophisticated more expensive weapon to shoot down a cheap missile.
a Vulcan Phallanx is more expensive than a mortar unit and you need many of them to protect even a smallish area.
An Iron Dome interceptor is more complicated and expensive than a Kasam or Grad rocket.
An Arrow missile is likewise more advanced and more expensive then a Scud or even a Shihab/Sagil missile.
This is why such defense makes sense for Israel vs Terror organizations
but make little sense for USA vs USSR.
Israel has a budget much larger than Hamas and can afford expensive solutions.
Some argue the cost for the enemy is irrelevant, it is only cost for the protective side vs potential damage from the threat
And when you add to the potential damage not only the direct damages of a missile attack but the ability of the population to continue living
a normal productive life during a time of conflict, you quickly see the cost of expensive Iron Dome interceptors is well worth it.
The trade-off becomes less favorable for the larger missiles, unless you fear unconventional weapons or are protecting strategic sites.
When I have something performance sensitive I can always work hard to optimize it, and even switch to a different platform
for some small part of the project.
The question therefor is not how fast can I write it, but how easy is it, this has a lot to do about libraries and tools but language makes a difference too.
The JVM environment is an excellent environment to work in, with a plethora of excellent libraries and tools (including the Tomcat server).
Yet the Java language is falling rapidly behind, and C# is rapidly gaining new bells and whistles while Java is stagnating,
I find it mind buggling Java 7 doesn't have lambda expressions.
That's why I have switched to Scala which gives all the good of the JVM in a modern functional yet object oriented language
giving me all the protection of a strongly typed static language yet with minimal boilerplate reminding me of dynamic languages.
It seems to me a x75 increase in power efficiency should be worth to nVidia (or any competitor) much more than $20M, why does DARPA need to fund this, this seems exactly like the kind of work which doesn't need DARPA money. DARAPA should spend money where it is not clearly economic for others to do so.
Free speech is a sacred right, even murderers have it.
However encouraging people to commit crimes when there is good reason to believe someone will act upon your words
is illegal pretty much anywhere.
Hamas should not be censored because they are evil (they are as evil as they come),
They should be censored when they call for terror or other illegal activity.
I myself have not read too many of their twitter posts so I don't know if they use them to spread general propoganda (false or other)
or if they overtly call for terrorism.
All of this is purely on the moral aspects of censorship, ignoring the effectiveness of censoring twitter.
I suspect censoring Hamas effectively may prove difficult.
If we study our history we will learn that Hamas started using rockets as it's main weapon only after the security fence made suicide bombings less practical.
When you close off one option for the enemy he will inevitably find a new one, preferably a less effective one
but this is not to say you shouldn't close off his options.
We also need to remember that the modern warfare is more about morale then number of casualties, The Hamas wants as many Israelis as possible to live in fear, killing them is just an added bonus. having an effective defense makes the civilians under attack feel less defenseless.