paleshadows - Slashdot User

Submission + - VM-based rootkits proved easily detectable (stanford.edu)

Submitted by paleshadows on Sunday September 30, 2007 @11:55PM

paleshadows writes: A year and a half has passed since SubVirt, the first VMM (virtual machine monitor) based rootkit, was introduced. The idea spawned two lively slashdot discussions: the first, which followed the initial report about SubVirt, and the second, which was conducted after Joanna Rutkowska has recycled the idea (apparently without giving credit to the initial authors). Conversely, in this year's HotOS workshop, researchers from Stanford, CMU, VMware, and XenSource have published a paper titled " Compatibility Is Not Transparency: VMM Detection Myths and Realities" which shows that VMM-based rootkits are actually easily detectable. The introduction of the paper explains that

"While commodity VMMs conform to the PC architecture, virtual implementations of this architecture differ substantially from physical implementations. These differences are not incidental: performance demands and practical engineering limitations necessitate divergences (sometimes radical ones) from native hardware, both in semantics and performance. Consequently, we believe the potential for preventing VMM detection under close scrutiny is illusory — and fundamentally in conflict with the technical limitations of virtualized platforms."

The paper concludes by saying that

"Perhaps the most concise argument against the utility of VMBRs (VM-based rootkits) is: "Why bother?" VMBRs change the malware defender's problem from a very difficult one (discovering whether the trusted computing base of a system has been compromised), to the much easier problem of detecting a VMM."

Submission + - Cure for cancer may be ready in two years (newscientist.com)

Submitted by GnarlyDoug on Thursday September 20, 2007 @03:02PM

GnarlyDoug writes: Dr Zheng Cui has, through a stroke of luck, found that the granulocytes from some mice are up to 50 times better at fighting cancer than others. He has cured mice with simple transfusions of granulocytes. These cells seem to recognize almost all cancer lines, are extremely effective even in advanced cases, and and the resistance seems to last for the life of the mouse. So not only does this treatment cure many cancers, but it also provides resistance to future cancers as well.

Evidence suggests that this should hold true for humans as well. Because this is based on blood transfusions, a technology already long established, this could be ready to so very soon. The go-ahead for a human trial has already been given, and if it pans out then this could be available in as little as two years time. Some simple tests to find people with the resistant strain of blood and then a system of transfusions is all that is needed to get this started.

If it pans out, we may be looking at a general cure for cancer within a few years time.

Submission + - Memory a thousand times faster 1

Submitted by paleshadows on Thursday September 20, 2007 @01:37PM

paleshadows writes: Researchers from the University of Pennsylvania developed a memory device that is more energy efficient and a thousand times faster than existing portable memory devices (such as Flash memory and micro-drives) and that can store data for 100,000 years. At the heart of the new device are nanowires that are 30-50 nanometers (100 atoms) in diameter and 10 micrometers in length, fabricated on silicon substrates. With very low per-bit power consumption during data encoding (0.7mW) and data writing/erasing/retrieval at 50 nanoseconds (1000 times faster than conventional memory devices), the announcement made by Penn University says that "this new form of memory has the potential to revolutionize the way we share information, transfer data, and even download entertainment as consumers."

Submission + - Algorithm Rates Trustworthiness of Wikipedia Pages

Submitted by paleshadows on Thursday August 30, 2007 @11:57AM

paleshadows writes: Researchers at UCSC developed a tool that measures the trustworthiness of each wikipedia page. Roughly speaking, the algorithm analyzes the entire 7-year user-editing-history and utilzes the longevity of the content to learn which contributors are the most reliable: If your contribution lasts, you gain "reputation", whereas if it's edited out, your reputation falls. The trustworthiness of a newly inserted text is a function of the reputation of all its authors, a heuristic that turned out to be successful in identifying poor content. The interested reader can take a look at this demo (random page with white/orange background marking trusted/untrusted text, respectively; note "random page" link at the left for more demo pages), this presentation (pdf), and this paper (pdf).

Submission + - Sign the No Microsoft OOXML Petition (noooxml.org)

Submitted by

Chris Chiasson

on Thursday August 30, 2007 @05:51AM

Chris Chiasson writes: "Take 20 seconds and express your dissent about Microsoft's Office Open XML format becoming an ISO standard ahead of the vote on September 2nd."

Submission + - Microsoft admits buying Swedish OOXML votes (nyteknik.se)

Submitted by ath on Thursday August 30, 2007 @03:58AM

ath writes: In an interview with the swedish magazine NyTeknik , a Microsoft representative admits to "recommending" business partners to vote on OOXML.
Translated quotes from the article:
-We have been informing our business partners about the process at SIS. What is going on, what the time plan is and that Microsoft thinks it is good if OOXML becomes a standard
-In a letter from Microsoft, our business partners were informed that they were 'expected' to participate in the SIS meeting and vote yes. As a compensation they would get 'market benefits' and extra support in terms of microsoft resources.
-This was a mistake and the letter was sent by a single employee on his own initiative without sanctions from Microsoft. He also quickly realised his mistake and tried to recall the letter
-I can understand the critique about coup like voting. But I claim the voters knew the issue well and had their own interest in OOXML becoming an ISO standard
(Interviewer) -Has this harmed Microsoft?
-Time will tell. But almost all customers we have been talking to thinks it would be good if OOXML became an ISO standard.

Submission + - What's the ideal title length for /. scoops?

Submitted by paleshadows on Friday August 24, 2007 @01:00AM

paleshadows writes:
10 characters should be enough

the smaller the better

40 characters

currently it's just right (50)

60 characters

70 characters

max length of a kernel line (80)

strlen(CowboyNeal)*

*it may seem like the first and last options are identical; they're not.

Submission + - Intel's vision on the future of multicores

Submitted by paleshadows on Wednesday August 15, 2007 @07:23PM

paleshadows writes: In the company's blog, Sean Koehl, technology strategist for Intel, said that eight technical papers would be released this week, describing key findings from the company's work on future programmable multicore architectures. Koehl then provides a short preview: One of the papers discusses "data center-on-a-chip" (tera-scale processor composed of 32-core, each with 4-SMT, amounting to 128 threads of execution), proposing a new high-bandwidth L4 cache optimized by a cache quality of service discipline that will determine how multiple threads share cache space. Two other papers are about how to obtain parallel scalability for multimedia and search/mining applications. Another paper argues Intel would be required to build the memory directly on top of the die to obtain high-enough bandwidth to keep all threads busy. A related paper explores how caches would be shared between cores with an on-die interconnect mesh. Finally, two more papers discuss how Intel plans to simplify parallel programming using special runtime environments of tera-scale platforms and accelerator cores.

Submission + - OpenSourceDevLab & FreeStdGroup merger: A succ

Submitted by paleshadows on Monday July 30, 2007 @11:15PM

paleshadows writes: In an interview with Computerworld during the Ubuntu Live Conference, Linux Foundation executive director Jim Zemlin said the merger of the Open Source Development Lab and the Free Standards Group (two of the most established Linux and open-source advocacy groups) has been a success. From the article: "Since 2001 and IBM's big Linux-for-the-enterprise splash, Linux has been brought into more and more corporate IT systems and can really no longer be seen as "new." What does that mean for Linux now? I think we're at the beginning of the second phase for Linux, where now the difference between "open" and "closed" software has to be highlighted even more."

Submission + - Amazon's infrastructure: a scientific paper

Submitted by paleshadows on Thursday July 26, 2007 @04:17PM

paleshadows writes: Following Google's tradition to publish scientific papers describing their computing infrastructure (GFS, Bigtable, Chubby, ...), a paper by Amazon titled "Dynamo: Amazon's Highly Available Key-Value Store" was accepted for publication in this year's symposium on operating system principles, the No. 1 venue in systems' research. Werner Vogels, Amazon's CTO, announced that the paper would be available not before August 9, but this report about a talk he recently gave in the Seattle Conference on Scalability highlights the main story. From the report: "consider that billions of your body's cells commit suicide in a day and yet you continue to function uninhibited. This process is essential for the health and stability of the overall organism and can be usefully applied in distributed systems."

Submission + - BlueGene/L ranked 1st in top500 for the 4th time

Submitted by paleshadows on Friday July 20, 2007 @05:42PM

paleshadows writes: The top500 list ranks the top 500 most powerful supercomputers in the world. It is published semiannually since 1993. The new list indicates that, for the fourth straight time, IBM's BlueGene/L of LLNL claimed the No. 1 spot at ~281 TerFlops per second. But while the No. 1 is still unchallenged, the list shows a lot of shuffling and the largest turnover among list entries in the history of the top500 project. This graph enumerates the number of systems each vendor has within the list, indicating that IBM is the dominant player, but that HP rapidly closes the gap. Of the top 10, the first 8 are situated in the U.S., while No. 9 and 10 are populated by Spain and Germany, respectively. Japan's first entry is at No. 14 with the EarthSimulator, which ranked first until 2004 when it was knocked off the top by the first blue BlueGene/L system.

Submission + - OpenMosix dies

Submitted by paleshadows on Tuesday July 17, 2007 @02:19AM

paleshadows writes: OpenMosix dies. The MOSIX project (which more or less makes a Linux cluster resemble an SMP system) was started at the early 1980s and is still going strong. A few years ago it was GPLed for a short while, but in late 2001 it went proprietary again. Moshe Bar, a former student of Prof. Amnon Barak (which heads the MOSIX project) decided to keep the GPLed version alive, and dubbed it OpenMosix. The latter become quite popular and (according to its homepage) "enjoyed tens of thousands of installation". On July 15, 2007, Bar announced plans to end the OpenMosix project effective March 1, 2008, stating that "the increasing power and availability of low cost multi-core processors is rapidly making single-system image (SSI) clustering less of a factor in computing."

Submission + - Harry Potter 7 Leaked!

Submitted by Anonymous Coward on Tuesday July 17, 2007 @12:35AM

An anonymous reader writes: Well, it's out. I can only find Canadian sites listing the leak. I found the Full book online after the partial book was posted earlier. Someone got an actual book and posted camera shots in jpg format of the book itself. This is no hoax. I've read the ending cause I'm a weenie and didn't want it ruined for me. Good story. I'll still be in line at midnight to buy my 2 copies. Thanks JK, love it. http://www.canada.com/nationalpost/news/story.html ?id=782b5d71-685a-4566-9d14-e81a3246e7b8&k=22091

Slashdot Top Deals