This is just another if-you-don't-protect-your-data-you-will-regret-it post.
The fact is, this is no more scary than a 'Virus wipes hard drive!'.
If you're prepared to pay money to *maybe* get your files back, you probably have a nigerian stamp in your passport.
It's interesting to see viruses use crypto as an armament, but the defence against such an attack is the same for any other infection.
If you have backups, the payload is Inconveinence.
Now if a virus, knew who your competitor was and emailed the encrypted files to them, and then offered both you and your competitor the key, that wouldbe more interesting.
Or even, put the files on a zombie torrent network, and offer the key on ebay.
Why is it taking so long for Phones, PDA and Pagers to merge ?
We've seen these devices in sci-fi for decades, we've had the seperate technologies for years.
I reckon the problem is with mobile telcos, they don't like to leap forward with tech until they have wrung the last cent out of users and screwed early adopters.
If they just charged for data instaed of voice/data/sms etc, we would move along much faster.
Boot times are a combination of hardware and software configurations. The purmutations are so considerable as to render your proposed benchmark pointless.
You would at least need to know uptime to make the benchmark work.
For instance, if I take an old 486 and pop debian on it, boot once and then switch it off, eventually it will have a great BMPY. One boot of 1 min for the year.
People who boast about uptime, probably use a lot of unessesary electricity.
How about an Eco benchmark, simply the amount of electricity used by the system per day ?
That said, I applaud his 'just do it' attitude. Though, these are basically the same things that I have impanted in to my cats, so really there is little risk.
Why is implanting into a human so news worthy, lab animals have these tags implanted all the time, and taken out and resused too.
It would add a level of complexity, but that does not mean it can't be simple.
As you suggested a 5 second windows of auth would be ample. That could be a ring, a button on your phone, in your clothing, a badge, a piece of jewelry etc.
The point of the touch interface is not defeated by having to prime an auth.
In a similar same way that passwords don't defeat the point of networks.
I was at an MS security seminar last year, the chap evangelising (Steve Reily?) on stage was really pushing pass phrases, so I find another MS staff member pushing the same idea interesting.
I actually tried pass phrases, I was considering proposing letting staff choose between shorter complex passwords with more frequent changes, or less complex, less frequently changed passphrases. I couldn't find a way to have multiple password policies in AD so I gave up trying.
If you have aggressive workstation locking, phasephrases are a pain and will slow you down. Some days when, fingers and brain are out of sync, or using an unfamiliar keyboard, I had to slow right down to get it right.
This is a risk imo, albeit not a huge one.
Also, you do get more login failures and this will affect helpdesk calls and could promote false positives on ids systems.
I still use passphrases, but only on system where I don't have to login very often. Ultimately, keystroke logging and people writing stuff on post it notes can undermine passphrases as easily as passwords.
Slashdot Mirror
This is just another if-you-don't-protect-your-data-you-will-regret-it post.
The fact is, this is no more scary than a 'Virus wipes hard drive!'.
If you're prepared to pay money to *maybe* get your files back, you probably have a nigerian stamp in your passport.
It's interesting to see viruses use crypto as an armament, but the defence against such an attack is the same for any other infection.
If you have backups, the payload is Inconveinence.
Now if a virus, knew who your competitor was and emailed the encrypted files to them, and then offered both you and your competitor the key, that wouldbe more interesting.
Or even, put the files on a zombie torrent network, and offer the key on ebay.
Not documenting means you'll have the same job for ever, beacuse you'll never be able to move within your company.
What is an iPod anyway ?
Can it play wax cylinders ?
Why is it taking so long for Phones, PDA and Pagers to merge ?
We've seen these devices in sci-fi for decades, we've had the seperate technologies for years.
I reckon the problem is with mobile telcos, they don't like to leap forward with tech until they have wrung the last cent out of users and screwed early adopters.
If they just charged for data instaed of voice/data/sms etc, we would move along much faster.
The future is late as usual.
The Phone and PDA will merge; all your points will be addressed.
How would the SE be defended against would be terrorists ?
Who would control the SE ?
Who would get to use the SE ?
The science problem are big enough, the social\behavioral\cultural ones are bgger imo.
why do these threads always disolve into "the shuttle is shit".
if there is a crack and therte is not meant to be a crack, don't launch.
Whoever makes the call to launch is going to be villified if anything goes wrong, nay, crucified.
"Note to self: change WEP key to something other than "DEADBEEFDEADBEEFDEADBEEFDE"."
you too eh ?
and i though I was being clever with my used-to-name-my-novell-network magic.
these services never have any australian content.
niffty technology, not really relevent to me though.
yes yes, of course, but no easy way of measuring it.
I mean, even the best overclocking PSUs don't provide total system power usage. afaik.
This really is not very well thought out.
Boot times are a combination of hardware and software configurations.
The purmutations are so considerable as to render your proposed benchmark pointless.
You would at least need to know uptime to make the benchmark work.
For instance, if I take an old 486 and pop debian on it, boot once and then switch it off, eventually it will have a great BMPY. One boot of 1 min for the year.
People who boast about uptime, probably use a lot of unessesary electricity.
How about an Eco benchmark, simply the amount of electricity used by the system per day ?
Great for disabled dudes, but let's not give fat idle kids another reason to not get off their arses.
I for one would rather have incomming data feeds rather than thought control.
"It is those artificial AI intelligences that I fear most, I tell ya."
It's those artificial artificial intelligence intelligences *I* fear most.
I agree, if someone wants that implant, it going to hurt, but they will get it.
Also, it can be copied.
I mean, just how easy would it be to get the tag id and copy it.
Having a short range is not a defence, the whole point is he want to use it, therefore other systems must be told about it.
I think products like this have more potential.
http://www.maxim-ic.com/products/ibutton/
That said, I applaud his 'just do it' attitude.
Though, these are basically the same things that I have impanted in to my cats, so really there is little risk.
Why is implanting into a human so news worthy, lab animals have these tags implanted all the time, and taken out and resused too.
Unless I'm missing something, someone copied someones elses product and are being sued.
Good everything is working.
I recognise these names as viagra vendors.
Honeywell and in Honeywell Bull ?
They make computers. Or did.
Anyway, if someone had infringed on a patent I held, I'd sue, so would you, and you...and you, we all would.
These companies doing the infringing, all have well paid lawyers.
This would be a known risk, so if they are not ready for court its their own fault.
You may want to consider Drupal for web/intranet/extranet needs.
http://www.drupal.org/
lots of modules, active devs, php and free.
pretty unlikely so don't worry ?
pretty unlikely so don't update ?
I think not.
IPSCA issue certs free to educational and non-profit orgs.
I've used tham and they seem ok.
Not the best browser support though.
It would add a level of complexity, but that does not mean it can't be simple.
As you suggested a 5 second windows of auth would be ample.
That could be a ring, a button on your phone, in your clothing, a badge, a piece of jewelry etc.
The point of the touch interface is not defeated by having to prime an auth.
In a similar same way that passwords don't defeat the point of networks.
I was going to say that.
Door handles, public transport, money, taps, etc.
Ring, watch, braclet, earing, etc
All achievable now.
Affecting change in data, via thought, is a long way off.
this is misleading, I have a similar product, the device is not the weak link, the software is.
anyway, these home biometrics are not corporate grade.
also, if you get a fingerprint reader, don;t use your index finger.
I was at an MS security seminar last year, the chap evangelising (Steve Reily?) on stage was really pushing pass phrases, so I find another MS staff member pushing the same idea interesting.
I actually tried pass phrases, I was considering proposing letting staff choose between shorter complex passwords with more frequent changes, or less complex, less frequently changed passphrases.
I couldn't find a way to have multiple password policies in AD so I gave up trying.
If you have aggressive workstation locking, phasephrases are a pain and will slow you down.
Some days when, fingers and brain are out of sync, or using an unfamiliar keyboard, I had to slow right down to get it right.
This is a risk imo, albeit not a huge one.
Also, you do get more login failures and this will affect helpdesk calls and could promote false positives on ids systems.
I still use passphrases, but only on system where I don't have to login very often.
Ultimately, keystroke logging and people writing stuff on post it notes can undermine passphrases as easily as passwords.