I presume one the key applications they had in mind was ingame advertising.
Blizzard's various Battle.net clients (I remember in particular Warcraft 3) have shown ads while you're not playing (e.g. joining or creating a game, chatting, etc.).
Taking up valuable screen real estate by showing ads while playing is probably a big no-no if you want happy players. I think the happy variety pays the most money...
(other than just browsing while your on a loading screen)
That's one hell of a long loading screen if you can do meaningful browsing while it's on. Which games are we talking about here? I want to not buy those.
Seriously, how the fuck could anyone thing DNSSEC could protect anyone from anything if it really were "completely off-line"?
Off-line means "not while it's happening".
As in, the protocol is NOT: get a request, sign something, send a reply (including a signature). The protocol IS: sign something, get a request, send a reply (including a signature).
The "sign something" step can be done on a different CPU, such that the name server doesn't have its CPU load increased. Signing doesn't introduce delays that weren't there in insecure DNS.
Here's how it protects you: you get the reply, and the signature, and then you validate it. If it's invalid, throw it out and goto 1. That way, you're protected against forgeries, assuming that signatures can't be forged.
Was it that unclear that this is what I meant by "off-line"?
you're wrong about basic and simple things.
Please give an example.
You clearly don't have even a basic background in cryptography
It's what I'm doing my phd in. Don't trust my arguments based on that; trust them on their own merit, and give good counterarguments.
This is one:
Caches still have to verify the packets.
Ah, true. Make the keys really big, not insanely big;) and set a reasonable TTL so that that caches won't have to do this often [IIRC, signatures except NSEC records can be cached in DNSSEC].
This is not one:
DNSSEC was designed by the same people who created the problem. Yet they keep saying "trust us, we've been doing this for a while". DNSCurve was designed by cryptographers who went out to solve an actual problem that people are experiencing.
Here's slant in the other direction: DNSSEC was designed by people who know DNS intimately and know the operating requirements of critical infrastructure. DNSCurve was designed by people who were only considering the cryptographic aspects of security.
I'm not sure it's true, but I am sure that we should judge each solution on merits rather than on who's been designing them.
I'm sure DNSCurve has some good ideas in it. I'm also sure DNSSEC has some good ideas in it. I think we should find out what the good ideas are, which are most important, and then use that to judge each of the proposed solutions on their own merit. Maybe a combination of the best of both worlds is possible to an extent?
Not well enough, or you'd note that the closing curly brace is not escaped (the opening one is), and that you'd really want newlines (\n) instead of returns (\r) or else the new next is going to overwrite the old text when you cat(1) it...
They're the ones making the Kinesis Ergo Elan keyboards and the Logitech Marble Mouse?;)
On a serious note: how are Microsoft's peripherals better than those two? And for bonus points, find reasons that are not personal value judgments, such as "damages your hands less" or "lets you do your work faster".
[I'm not claiming the things I use are the best, just that it's not clear to me how Microsoft's offerings are better]
If you do some game theory, you might run into the term "Cost of Anarchy".
In some games [which you should really read as "models of economic situations"], if everybody acts in their own best self-interest, you reach a stable state, put the payoff to the citizenry is less than what it could be if the players were regulated.
In particular, I remember this coming up in a game dealing specifically with either building networks, or routing packets on them.
If the economic realities are such that the citizenry is better off when regulated, I want regulation. I want the most people to be the best off, and I won't hold on to an ideal of freedom that doesn't produce that.
Now, _implementing_ it, that's the hard part... maybe we could make all market regulations last for three years and be renewable, all at the same time. Then the government can plan ahead based on experience from the past three years, better economic models and such. Let's call the set of regulations... uh... I dunno...;) Something about building a windmill?
Even an amateur cryptographer would tell you that the more you know about the message, the easier it is to break it.
And a professional cryptographer would tell you to use a signature scheme that is provably secure (under standard cryptographic assumptions) against known plaintext signature forgery, and use a key big enough to satisfy you. Heck, you do all the crypto off-line, so you can pick a big one.
Confidentiality protections reduce the amount of knowledge, and thus protect against attacks that are yet unknown.
Prove the security of your signature scheme in the Universal Composability model and it's secure against all attacks, known and unknown.
I don't think you know what you're talking about.
Oh the iro... No, actually, you _do_ know what you're talking about: amateur cryptography.
DNSCurve protects against denial of service attacks [link]
So to back up your claim, you post a link to someone making the same claim. Now I'm convinced...
It requires far less compute-power than DNSSEC.
Yes, but it requires it on-line. It also requires caching keys for your clients unless you want to double your in- and outbound packet load.
Read the page about DNSCurve. It says "DNSCurve and DNSSEC have complementary security goals. If both were widely deployed then each one would provide some security that the other does not provide."
They're, taken at the word, not meant to replace each other.
I'd be willing to wager that you've used responsibly designed Flash applets before and simply assumed them to be cleverly implemented Javascript [...]
I bet he didn't even notice pressing the big f/play button to make it run;)
[FlashBlock firefox extension, a godsend; even worth it when you use noscript, for those video players that start playing straight away despite your wishes].
But then maybe that is the problem with Microsoft management, that it is full of shrewd corporate ladder-climbing types instead of inspired artists and engineers.
It's a problem when people are more concerned about getting the higher-up job than about doing their own job, 100% agreed.
But management positions should be held by managers, not artists or engineers. They should be familiar with the process they're managing (so ex-artists and -engineers are a good idea), but they should also have a good set of management skills. Learning only from your experiences is probably not the best way to go.
Having someone teach you insights of the past, what to think about and how to think usefully about it (i.e. a formal education) is probably a good start, and in my book, if you get a management position, that makes you a manager and an ex-whatever.
Until we can build a system capable of parallelism on that level, we will not have a "conscious" machine.
In practice, that's probably true. But in theory there's nothing stopping us from building a very fast non-parallel computer that does all the same computations sequentially. Wouldn't that be just as good, as long as it computes the same results?
That there would be support for existing and widely deployed platforms that are going to stay alive and well for a considerable amount of time?
That NVidia wanted to reach a fairly large market segment? That NVidia would understand their gamer audience who might want to stay on XP for performance reasons?
Of course, it's also tricky to do correctly, very few games are there at the moment
Come on, it's not that difficult to rotate the palette of the monsters. Or you can just give the same monsters a load of more hit points as you progress from normal to nightmare and hell.;)
Another interesting idea is to create combinatorial mechanics. For instance, in One Must Fall, you can choose between 10 pilots and 10 robots, giving you 100 unique fighting styles for the cost of 20 pieces of artwork.
And there's of course the possibility of player-generated content in the style of Spore. I imagine it'd also be reasonably simple to construct a random species for some easy computer-generated content [again, as a combination of legs, mouthes and bodies of different types].
There are ways to cut down on the content work and still get some good results.
If you've never made a game yourself, you'd be amazed at how much work it is to create content.
Oh yes!
In two or three working nights*, you can go from no OpenGL programming experience to having a working, near-complete version of tetris [and you could probably get the scoring and acceleration in there if you had coded things the right way in your first try].
*Unless you wait 15-30 minutes for your computer to boot and shutdown;)
But blocks each in a single color, against a black background and some dark gray well walls... nuh-uh. You need a background texture, you need textures for all the pieces. You need to consider having multiple background textures---with and without drop hints, and with different kinds of drop hints.
If you want wells of more than one size, you need a background texture, plus some way of generating drop hint textures from some abstract description and sprites combined to form the real well texture. And maybe a nice low-alpha image of the current block at its fast-dropped position.
I'm doing this in 3d. Really it's 2d, but with a slightly tilted view so one can see the undersides of the blocks. Should the undersides have different textures? How should the camera control work--fixed, auto or manual? Do I need to make special overside textures as well? If you want to turn it into a tetrinet client, you need special textures (maybe overlaid textures) to indicate all the special weapon blocks.
And I need to consider what the background of the menu should be... some sort of demo mode, perhaps? Tetris Holding LLC has a sound trademark on using the song Korobeiniki in a video game. Should I find copyright-expired versions of some of the other songs used as background music for tetris? Should I record some myself? Should I cop out and just run ~/.mytetris/{pre,host}hook from a wrapper script, such that the user can easily load tetris.m3u, but on their own and not as a part of the game?
And that's just for frigging tetris, one of the simplest games imaginable.
Slashdot Mirror
Don't tell Shampoo..
Not telling Shampoo was invented by Shampoo.
Sorry -- this game is temporarily available
It has to be one shitty game if you have to apologize that it's available ;)
I presume one the key applications they had in mind was ingame advertising.
Blizzard's various Battle.net clients (I remember in particular Warcraft 3) have shown ads while you're not playing (e.g. joining or creating a game, chatting, etc.).
Taking up valuable screen real estate by showing ads while playing is probably a big no-no if you want happy players. I think the happy variety pays the most money...
(other than just browsing while your on a loading screen)
That's one hell of a long loading screen if you can do meaningful browsing while it's on. Which games are we talking about here? I want to not buy those.
Seriously, how the fuck could anyone thing DNSSEC could protect anyone from anything if it really were "completely off-line"?
Off-line means "not while it's happening".
As in, the protocol is NOT: get a request, sign something, send a reply (including a signature). The protocol IS: sign something, get a request, send a reply (including a signature).
The "sign something" step can be done on a different CPU, such that the name server doesn't have its CPU load increased. Signing doesn't introduce delays that weren't there in insecure DNS.
Here's how it protects you: you get the reply, and the signature, and then you validate it. If it's invalid, throw it out and goto 1. That way, you're protected against forgeries, assuming that signatures can't be forged.
Was it that unclear that this is what I meant by "off-line"?
you're wrong about basic and simple things.
Please give an example.
You clearly don't have even a basic background in cryptography
It's what I'm doing my phd in. Don't trust my arguments based on that; trust them on their own merit, and give good counterarguments.
This is one:
Caches still have to verify the packets.
Ah, true. Make the keys really big, not insanely big ;) and set a reasonable TTL so that that caches won't have to do this often [IIRC, signatures except NSEC records can be cached in DNSSEC].
This is not one:
DNSSEC was designed by the same people who created the problem. Yet they keep saying "trust us, we've been doing this for a while". DNSCurve was designed by cryptographers who went out to solve an actual problem that people are experiencing.
Here's slant in the other direction: DNSSEC was designed by people who know DNS intimately and know the operating requirements of critical infrastructure. DNSCurve was designed by people who were only considering the cryptographic aspects of security.
I'm not sure it's true, but I am sure that we should judge each solution on merits rather than on who's been designing them.
I'm sure DNSCurve has some good ideas in it. I'm also sure DNSSEC has some good ideas in it. I think we should find out what the good ideas are, which are most important, and then use that to judge each of the proposed solutions on their own merit. Maybe a combination of the best of both worlds is possible to an extent?
Well, they could at least have brought a little more evidence to the table than "because we say so".
Or do people trust claims based on the claims rather than based on the evidence?
Dear Lord . . . I actually understand that.
Not well enough, or you'd note that the closing curly brace is not escaped (the opening one is), and that you'd really want newlines (\n) instead of returns (\r) or else the new next is going to overwrite the old text when you cat(1) it...
What's this "out" you speak of?
there's a youtube viral in there somewhere, I can sense it.
It'll get to you if you never give up on it; don't let us down...
Wait, he didn't change his name to non... oh. Oohhhh....
iseewhadudidthar...
I would find it interesting what Microsoft would tell the public in response to that. "We are Microsoft and we define the standards?"
"We're the software company. We don't care."
Microsoft's PC peripheals are second to none
They're the ones making the Kinesis Ergo Elan keyboards and the Logitech Marble Mouse? ;)
On a serious note: how are Microsoft's peripherals better than those two? And for bonus points, find reasons that are not personal value judgments, such as "damages your hands less" or "lets you do your work faster".
[I'm not claiming the things I use are the best, just that it's not clear to me how Microsoft's offerings are better]
If you do some game theory, you might run into the term "Cost of Anarchy".
In some games [which you should really read as "models of economic situations"], if everybody acts in their own best self-interest, you reach a stable state, put the payoff to the citizenry is less than what it could be if the players were regulated.
In particular, I remember this coming up in a game dealing specifically with either building networks, or routing packets on them.
If the economic realities are such that the citizenry is better off when regulated, I want regulation. I want the most people to be the best off, and I won't hold on to an ideal of freedom that doesn't produce that.
Now, _implementing_ it, that's the hard part... maybe we could make all market regulations last for three years and be renewable, all at the same time. Then the government can plan ahead based on experience from the past three years, better economic models and such. Let's call the set of regulations... uh... I dunno... ;) Something about building a windmill?
So it isn't Dr. Evil and Number Two?
Even an amateur cryptographer would tell you that the more you know about the message, the easier it is to break it.
And a professional cryptographer would tell you to use a signature scheme that is provably secure (under standard cryptographic assumptions) against known plaintext signature forgery, and use a key big enough to satisfy you. Heck, you do all the crypto off-line, so you can pick a big one.
Confidentiality protections reduce the amount of knowledge, and thus protect against attacks that are yet unknown.
Prove the security of your signature scheme in the Universal Composability model and it's secure against all attacks, known and unknown.
I don't think you know what you're talking about.
Oh the iro... No, actually, you _do_ know what you're talking about: amateur cryptography.
DNSCurve protects against denial of service attacks [link]
So to back up your claim, you post a link to someone making the same claim. Now I'm convinced...
It requires far less compute-power than DNSSEC.
Yes, but it requires it on-line. It also requires caching keys for your clients unless you want to double your in- and outbound packet load.
Read the page about DNSCurve. It says "DNSCurve and DNSSEC have complementary security goals. If both were widely deployed then each one would provide some security that the other does not provide."
They're, taken at the word, not meant to replace each other.
all you scumbags violating copyright to save a buck provided the excuse
Excuse? I don't think anything has been excused. I certainly won't pardon the listed companies for filing a lawsuit which _should_ be found frivolous.
If not, what's next? The phone company should listen in on your calls to make sure you're not singing copyrighted songs on the conference call?
The used car dealer should be held liable because black-hooded blokes use their cars as escape vehicles after robbing a bank or two?
Only if it has "Beta" written in the corner, and a gradient fill somewhere.
I'd be willing to wager that you've used responsibly designed Flash applets before and simply assumed them to be cleverly implemented Javascript [...]
I bet he didn't even notice pressing the big f/play button to make it run ;)
[FlashBlock firefox extension, a godsend; even worth it when you use noscript, for those video players that start playing straight away despite your wishes].
But then maybe that is the problem with Microsoft management, that it is full of shrewd corporate ladder-climbing types instead of inspired artists and engineers.
It's a problem when people are more concerned about getting the higher-up job than about doing their own job, 100% agreed.
But management positions should be held by managers, not artists or engineers. They should be familiar with the process they're managing (so ex-artists and -engineers are a good idea), but they should also have a good set of management skills. Learning only from your experiences is probably not the best way to go.
Having someone teach you insights of the past, what to think about and how to think usefully about it (i.e. a formal education) is probably a good start, and in my book, if you get a management position, that makes you a manager and an ex-whatever.
[maybe that's what you meant...]
have sex [...] Last i checked that was frowned at work, but I guess it depends on the industry.
For some of my contractors, that is their work ;)
if you wanna be a super huge gaping asshole
There's this website you might have heard of...
Until we can build a system capable of parallelism on that level, we will not have a "conscious" machine.
In practice, that's probably true. But in theory there's nothing stopping us from building a very fast non-parallel computer that does all the same computations sequentially. Wouldn't that be just as good, as long as it computes the same results?
hidden on the back page behind a sign reading "beware of the penguin"
Hey, don't omit the crucial fact that it's in a disused lavatory in the cellar with no lights and no stairs.
It's next in line. What did you expect?
That there would be support for existing and widely deployed platforms that are going to stay alive and well for a considerable amount of time?
That NVidia wanted to reach a fairly large market segment? That NVidia would understand their gamer audience who might want to stay on XP for performance reasons?
Just some thoughts...
Of course, it's also tricky to do correctly, very few games are there at the moment
Come on, it's not that difficult to rotate the palette of the monsters. Or you can just give the same monsters a load of more hit points as you progress from normal to nightmare and hell. ;)
Another interesting idea is to create combinatorial mechanics. For instance, in One Must Fall, you can choose between 10 pilots and 10 robots, giving you 100 unique fighting styles for the cost of 20 pieces of artwork.
And there's of course the possibility of player-generated content in the style of Spore. I imagine it'd also be reasonably simple to construct a random species for some easy computer-generated content [again, as a combination of legs, mouthes and bodies of different types].
There are ways to cut down on the content work and still get some good results.
If you've never made a game yourself, you'd be amazed at how much work it is to create content.
Oh yes!
In two or three working nights*, you can go from no OpenGL programming experience to having a working, near-complete version of tetris [and you could probably get the scoring and acceleration in there if you had coded things the right way in your first try].
*Unless you wait 15-30 minutes for your computer to boot and shutdown ;)
But blocks each in a single color, against a black background and some dark gray well walls... nuh-uh. You need a background texture, you need textures for all the pieces. You need to consider having multiple background textures---with and without drop hints, and with different kinds of drop hints.
If you want wells of more than one size, you need a background texture, plus some way of generating drop hint textures from some abstract description and sprites combined to form the real well texture. And maybe a nice low-alpha image of the current block at its fast-dropped position.
I'm doing this in 3d. Really it's 2d, but with a slightly tilted view so one can see the undersides of the blocks. Should the undersides have different textures? How should the camera control work--fixed, auto or manual? Do I need to make special overside textures as well? If you want to turn it into a tetrinet client, you need special textures (maybe overlaid textures) to indicate all the special weapon blocks.
And I need to consider what the background of the menu should be... some sort of demo mode, perhaps? Tetris Holding LLC has a sound trademark on using the song Korobeiniki in a video game. Should I find copyright-expired versions of some of the other songs used as background music for tetris? Should I record some myself? Should I cop out and just run ~/.mytetris/{pre,host}hook from a wrapper script, such that the user can easily load tetris.m3u, but on their own and not as a part of the game?
And that's just for frigging tetris, one of the simplest games imaginable.
suggest that 'triggerfish' technology can legally be used to
There's a word missing. It doesn't lower the evidentiary bar, it's just a possible way to commit unconstitutional spying.