Again, the reason this is not easy to detect, *is because other unbreakable encryption is legal, and you can't tell one encryption from another*. You can't look at a stream of HTTPS bytes and know if it is a VPN tunnel or other, non-VPN traffic - its impossible because the encyryption is not breakable.
IF HOWEVER all encryption HAD to use flagged and breakable algorithms, this would no longer be the case. Any encrypted session that was using an unflagged algorithm would easily be detected during negotiation phase.
Most automated steganography is very easily detectable and/or defeatable by automated tools - even the simple act of compression and decompression of the data can defeat a lot of stenographic techniques. And if you made it open source, as you propose, it would also likely be extremely easy to detect and defeat. Making your plan work would require some kind of revolutionary discovery in steganography that gave it the same mathematical protections encryption.
No, you're wrong... because you are confusing how crypto works TODAY with how they COULD legislate it. "Breakable crypto" can be made easily identifiable in the datastream, vs "unbreakable". Its a very trivial thing to mandate actually, if they wanted to.
Disabling "Location History" *IS NOT THE SAME THING* as disabling Location TRACKING.
"Location History" is a VERY SPECIFIC feature of Google/Android and is used to provide you reccomendations based on places you go and travel patterns. Disabling that DOES NOT disable all location tracking on Android - that is a DIFFERENT SETTING.
Hell, it is RIGHT IN THE QUICK SHORTCUTS. Unmissable!
If unbreakable encryption is illegal then ISPs can tell law enforcement of anyone using it on their networks. They don't need to be able to see whats inside to know you're using it.
"Although the potential threats to exploit this kind of data require intentional malicious actors, the exposure of that data through misconfigured storage does not," UpGuard said. "From operations as large as GoDaddy and Amazon, to small and medium organizations, anyone who uses cloud technology is subject to the risk of unintentional exposure, if the operational awareness and processes aren't there to catch and fix misconfigurations when they occur."
IBM is the furthest thing in the world from a patent troll.
Need I remind....
- IBM has had the record of the most patents per year for the past 25 years, in a row
- IBM grants free access to its entire patent portfolio (again, the world's largest - see above) to initiatives like The Linux Foundation and OASIS Standards.
- IBM has used its massive patent warchest to act in the interests of Open Source and Linux many, many, many times over the years.
- IBM allowed Google to purchase some of their patents to aid in their fight against Oracle's ridiculousness that would have killed all open source Java as well as Android
In general... IBM spends a massive amount of money on R&D and for the most part, their patents are real inventions. They then either license those patents on reasonable terms to others, or hold them as defense against other patent trolls, or use them to help open technology movements.
This to me seems like another lowball estimate from an industry that doesn't seem to have an appreciation for how fast things change nowadays.
I would expect this to be somewhere much closer to 50% based on what I see. Every person I know under 40 cut the cord a long time ago. The only people who hold out are sports junkies, and even they are dropping like flies now that you can get legal season pass streaming options for some of these.
Almost every piece of software in the enterprise and consumer world has free 30 day trials now, most of them delivered via cloud. Consumers don't want to invest a ton of money into something that won't work for their use case. If you're talking about a $0.99 game that is one thing, but some productivity apps can cost $8 and up. Paying $8 for something that turns out to not be useful at all, that stings.
Google figured this out forever ago - the play store has had free trials since inception. They used to be 24 hours, now just 4 hours - however 4 hours is plenty long enough to install an app, set it up, and try it out before deciding if it is worth actually paying for.
The last time I was in California, the hotel I was staying at (which was a $400+/night hotel) had a small sign in the lobby that said that the hotel itself was known to the state of California to possibly cause cancer. This, combined with the Disneyland sign (Disneyland also has a sign that says it causes Cancer) should be all the evidence needed to.prove that this law does absolutely nothing and is simply a mocking example of the end result of the direct democracy system in place in California.
I had multiple different name-brand APs ( $200+ units ) set up in the configuration you're describing for years. The experience was always *horrible*.
Mesh networks are far, far superior. The handoff is completely transparent and works flawlessly. Whats more since deploying my Velop, my bandwidth has gone up 2X due to the increased envelope.
There is a reason that public wifi networks have used mesh for decades. This configuration is recent in the consumer space but has been in the corperate space forever.
Unlike some of the other mesh systems, Velop is tri-band, it uses a completely separate frequency for the backhaul network specifically so that it won't create interference. You can also backhaul with wired if you want/can.
Amazon didn't make profits for a LONG TIME. They made no money whatsoever for longer than Tesla has existed as a company. Tesla is going to be profitable next quarter.
And the big car companies can't figure out how to execute on EVs. Sales of the Leaf, Volt, and Bolt have been abysmal compared to Tesla. Chevy sold 23,000 Bolts in 2017. Nissan sold 11,230 Leafs. Tesla sold 103,000 vehicles - and the Model 3 didn't even exist.
Wake me up when the mainstream manufacturers can actually execute.
TSLA is slated to become profitable in Q3, and is well on track to do so.
You know what other stock followed this same path - not making any money for over a decade? Amazon. Maybe you wish you had shorted that stock early on as well? Or not...
Yes, because Google has stopped doing business in all of Europe due to the GDPR (which I will add is much more strict and has more teeth than this proposed legislation).
OH WAIT that is not true at all. It turns out that folks DO want Google services? You don't say...
The group in charge of GDPR doesn't have the slightest idea how modern technology, software, cybersecurity, or the Internet in general works to begin with. If they did, then the GDPR would have been more sane.
I fail to see how it's an issue if Twitter decides to destroy themselves. Frankly I can't wait for that to happen since they are so hypocritical with enforcing their own policies.
Slashdot Mirror
Well, Australia is talking about doing it. That is exactly what this article is about, making unbreakable encryption illegal.
RTFA.
*SIGH*
Again, the reason this is not easy to detect, *is because other unbreakable encryption is legal, and you can't tell one encryption from another*. You can't look at a stream of HTTPS bytes and know if it is a VPN tunnel or other, non-VPN traffic - its impossible because the encyryption is not breakable.
IF HOWEVER all encryption HAD to use flagged and breakable algorithms, this would no longer be the case. Any encrypted session that was using an unflagged algorithm would easily be detected during negotiation phase.
Most automated steganography is very easily detectable and/or defeatable by automated tools - even the simple act of compression and decompression of the data can defeat a lot of stenographic techniques. And if you made it open source, as you propose, it would also likely be extremely easy to detect and defeat. Making your plan work would require some kind of revolutionary discovery in steganography that gave it the same mathematical protections encryption.
No, you're wrong... because you are confusing how crypto works TODAY with how they COULD legislate it. "Breakable crypto" can be made easily identifiable in the datastream, vs "unbreakable". Its a very trivial thing to mandate actually, if they wanted to.
Disabling "Location History" *IS NOT THE SAME THING* as disabling Location TRACKING.
"Location History" is a VERY SPECIFIC feature of Google/Android and is used to provide you reccomendations based on places you go and travel patterns. Disabling that DOES NOT disable all location tracking on Android - that is a DIFFERENT SETTING.
Hell, it is RIGHT IN THE QUICK SHORTCUTS. Unmissable!
What an idiotic article.
Unless said things are made illegal.
If unbreakable encryption is illegal then ISPs can tell law enforcement of anyone using it on their networks. They don't need to be able to see whats inside to know you're using it.
"Although the potential threats to exploit this kind of data require intentional malicious actors, the exposure of that data through misconfigured storage does not," UpGuard said. "From operations as large as GoDaddy and Amazon, to small and medium organizations, anyone who uses cloud technology is subject to the risk of unintentional exposure, if the operational awareness and processes aren't there to catch and fix misconfigurations when they occur."
The not-so-secret fact of the matter is AMBER alerts are completely pointless and a giant waste of time and money.
https://www.researchgate.net/b...
However, "think of the children" and all that.
I can almost guarantee that IBM uses this patent. IBM runs e-commerce sites left right and centre.
IBM is the furthest thing in the world from a patent troll.
Need I remind....
- IBM has had the record of the most patents per year for the past 25 years, in a row
- IBM grants free access to its entire patent portfolio (again, the world's largest - see above) to initiatives like The Linux Foundation and OASIS Standards.
- IBM has used its massive patent warchest to act in the interests of Open Source and Linux many, many, many times over the years.
- IBM allowed Google to purchase some of their patents to aid in their fight against Oracle's ridiculousness that would have killed all open source Java as well as Android
In general... IBM spends a massive amount of money on R&D and for the most part, their patents are real inventions. They then either license those patents on reasonable terms to others, or hold them as defense against other patent trolls, or use them to help open technology movements.
This to me seems like another lowball estimate from an industry that doesn't seem to have an appreciation for how fast things change nowadays.
I would expect this to be somewhere much closer to 50% based on what I see. Every person I know under 40 cut the cord a long time ago. The only people who hold out are sports junkies, and even they are dropping like flies now that you can get legal season pass streaming options for some of these.
Kaspersky is a shill of the Russian government right?
We don't trust anything they say!
A free trial *is not* "the return of shareware".
Almost every piece of software in the enterprise and consumer world has free 30 day trials now, most of them delivered via cloud. Consumers don't want to invest a ton of money into something that won't work for their use case. If you're talking about a $0.99 game that is one thing, but some productivity apps can cost $8 and up. Paying $8 for something that turns out to not be useful at all, that stings.
Google figured this out forever ago - the play store has had free trials since inception. They used to be 24 hours, now just 4 hours - however 4 hours is plenty long enough to install an app, set it up, and try it out before deciding if it is worth actually paying for.
The last time I was in California, the hotel I was staying at (which was a $400+/night hotel) had a small sign in the lobby that said that the hotel itself was known to the state of California to possibly cause cancer. This, combined with the Disneyland sign (Disneyland also has a sign that says it causes Cancer) should be all the evidence needed to.prove that this law does absolutely nothing and is simply a mocking example of the end result of the direct democracy system in place in California.
I had multiple different name-brand APs ( $200+ units ) set up in the configuration you're describing for years. The experience was always *horrible*.
Mesh networks are far, far superior. The handoff is completely transparent and works flawlessly. Whats more since deploying my Velop, my bandwidth has gone up 2X due to the increased envelope.
There is a reason that public wifi networks have used mesh for decades. This configuration is recent in the consumer space but has been in the corperate space forever.
Your phone will not roam properly between "two APs connected with wires". It holds on for dear life to the weakest signal until it's dead.
This isn't how things work on a mesh.
Upgrading to the Velop system was the best investment I've made in my house in awhile.
Unlike some of the other mesh systems, Velop is tri-band, it uses a completely separate frequency for the backhaul network specifically so that it won't create interference. You can also backhaul with wired if you want/can.
Amazon didn't make profits for a LONG TIME. They made no money whatsoever for longer than Tesla has existed as a company. Tesla is going to be profitable next quarter.
And the big car companies can't figure out how to execute on EVs. Sales of the Leaf, Volt, and Bolt have been abysmal compared to Tesla. Chevy sold 23,000 Bolts in 2017. Nissan sold 11,230 Leafs. Tesla sold 103,000 vehicles - and the Model 3 didn't even exist.
Wake me up when the mainstream manufacturers can actually execute.
TSLA is slated to become profitable in Q3, and is well on track to do so.
You know what other stock followed this same path - not making any money for over a decade? Amazon. Maybe you wish you had shorted that stock early on as well? Or not...
Yes, because Google has stopped doing business in all of Europe due to the GDPR (which I will add is much more strict and has more teeth than this proposed legislation).
OH WAIT that is not true at all. It turns out that folks DO want Google services? You don't say...
The group in charge of GDPR doesn't have the slightest idea how modern technology, software, cybersecurity, or the Internet in general works to begin with. If they did, then the GDPR would have been more sane.
Anyone who posts a comment like yours either
(a) Knows nothing about how software and computers work in general
(b) Knows nothing about GDPR
(c) Has enough of an intersection of (a) and (b) that they are still very misinformed.
GDPR is a total farce and complete nonsense. If you don't realize that, then you don't know enough about it.
It would also be incredibly useful for transcribing videos for the visually impaired, or for indexing the text.
I'll tell you what it is... It's 1984 and Newspeak, live, and in action.
"We have always been at war with Eurasia"
I fail to see how it's an issue if Twitter decides to destroy themselves. Frankly I can't wait for that to happen since they are so hypocritical with enforcing their own policies.