TCP is in use for a reason. As long as our networks are based on a connectionless architecture we will have protocols like TCP around to make sure our stuff actually gets delivered correctly.
The idea of using IPSec is intriguing, but how do you propose to achieve congestion avoidance?
Excellent points. I have to wonder if people would be so up-in-arms if Comcast was dropping SYN packets instead of forging RST packets.
Don't get me wrong, Comcast is still a slimy grease ball of a company. BUT, for the reasons outlined in the previous post, I don't think anyone can proclaim this to be the smoking gun that proves Comcast is the devil incarnate.
Actually, most keystroke dynamics products use only your user name and password. Typically you have to go through a learning period where it observes you typing the same phrase (i.e. your username) some statistically significant number of times.
Studies have shown that the latencies between any two random letters that you might type are too variable to use to accurately validate people. That's why they focus on strings that are typed frequently.
Good points, though I think making drives tamper proof will still only delay the inevitible.
The only way to *truly* secure something is to prevent physical access. At this current time, that's not possible.
If they start encasing circuit boards in epoxy then there is little doubt that people will soon be taking hammers and chisels to their HD-DVD players. Given the time, they will gain access.
I'm not doing anything out of the ordinary. I make very heavy use of the card, using it to buy most everything (gotta love the miles/points/whatever).
But I can't remember the last time my wallet got wet, run over, sent through the wash, etc.
My immediate concern is durability.
Credit cards take a lot of punishment. I probably replace my credit card once a year because the magnetic strip has become damaged and no longer readable. All the same, magnetic strips have shown great durability for putting up with a fair amount of punishment. I'm not sure I can visualize an LCD screen thin enough to be incorporated into a card that will withstand 175+ lbs of pressure for hours at a time. And that doesn't even consider the circuitry involved in generating the passcode.
This is great! Does this means that my personal internet will be okay even if you put enormous amounts of material, enormous amounts of material in your personal internet?
(Weak attempt at Sen. Stevens joke)
According to the rumor mill that I plug into, Wal-Mart was not actually compromised.
Instead, as I heard it, the thieves purchased Wal-Mart gift cards with the stolen cards. The rumor I heard was that the cards were purchased with enough frequency and for large enough dollar amounts so that Wal-Mart's internal fraud alerts were set off.
Re:One has to wonder...
on
VoIP Security
·
· Score: 2, Informative
Plain ol' IPSec is not a cure-all in this situation.
In fact, if you want to believe NIST, most of the hardened encryption algorithms can all verge on introducing too much delay into the process. The solution is to introduce a priority scheduling component into encryption engines, but given the language of the report, I'm not sure that's widely done at the moment.
Slashdot Mirror
UDP!?!
TCP is in use for a reason. As long as our networks are based on a connectionless architecture we will have protocols like TCP around to make sure our stuff actually gets delivered correctly.
The idea of using IPSec is intriguing, but how do you propose to achieve congestion avoidance?
Excellent points. I have to wonder if people would be so up-in-arms if Comcast was dropping SYN packets instead of forging RST packets.
Don't get me wrong, Comcast is still a slimy grease ball of a company. BUT, for the reasons outlined in the previous post, I don't think anyone can proclaim this to be the smoking gun that proves Comcast is the devil incarnate.
Actually, most keystroke dynamics products use only your user name and password. Typically you have to go through a learning period where it observes you typing the same phrase (i.e. your username) some statistically significant number of times.
Studies have shown that the latencies between any two random letters that you might type are too variable to use to accurately validate people. That's why they focus on strings that are typed frequently.
Good points, though I think making drives tamper proof will still only delay the inevitible.
The only way to *truly* secure something is to prevent physical access. At this current time, that's not possible.
If they start encasing circuit boards in epoxy then there is little doubt that people will soon be taking hammers and chisels to their HD-DVD players. Given the time, they will gain access.
I see a lawsuit in the future... and I hope, for his sake, that he wins. This is the most ridiculous thing that I have seen in a long time.
TFA is currently unavailable (the server is currently unavailable). Hopefully the summary in this case is misleading or wrong.
I'm not doing anything out of the ordinary. I make very heavy use of the card, using it to buy most everything (gotta love the miles/points/whatever). But I can't remember the last time my wallet got wet, run over, sent through the wash, etc.
My immediate concern is durability. Credit cards take a lot of punishment. I probably replace my credit card once a year because the magnetic strip has become damaged and no longer readable. All the same, magnetic strips have shown great durability for putting up with a fair amount of punishment. I'm not sure I can visualize an LCD screen thin enough to be incorporated into a card that will withstand 175+ lbs of pressure for hours at a time. And that doesn't even consider the circuitry involved in generating the passcode.
Interesting point(s).
This is great! Does this means that my personal internet will be okay even if you put enormous amounts of material, enormous amounts of material in your personal internet? (Weak attempt at Sen. Stevens joke)
That was easily the funniest thing I've read all day.
According to the rumor mill that I plug into, Wal-Mart was not actually compromised. Instead, as I heard it, the thieves purchased Wal-Mart gift cards with the stolen cards. The rumor I heard was that the cards were purchased with enough frequency and for large enough dollar amounts so that Wal-Mart's internal fraud alerts were set off.
Plain ol' IPSec is not a cure-all in this situation.
/ SP800-58-final.pdf
In fact, if you want to believe NIST, most of the hardened encryption algorithms can all verge on introducing too much delay into the process. The solution is to introduce a priority scheduling component into encryption engines, but given the language of the report, I'm not sure that's widely done at the moment.
NIST has a nice technical report regarding all (or most) of the VoIP security approaches. It's quite lengthy, though, so use the ToC. http://csrc.nist.gov/publications/nistpubs/800-58