Catch up on stories from the past week (and beyond) at the Slashdot story archive

 



Forgot your password?
typodupeerror

Comment Re: Sure you can. (Score 1) 417 417

There is no car, there are Escorts and Fusions and Cavaliers and all sorts of versions of cars; way too confusing for your average customer.

And yet we buy them, because they all basically do the same thing.

Its really quite astounding to me that people think the unified iPhone / Windows approach to computing is better than the everyone-pick-what-suits-you method like vehicles, houses, etc.

Comment Re: Homegrown (Score 1) 111 111

Spoken out of true ignorance.

Obscurity doesn't work for *any* form of security; someone will figure it out and then it will be broken.

Good security can be published and peer reviewed and is *still* secure.

The only thing that should be obscure is your encryption key.

Comment Re: Homegrown (Score 1) 111 111

QFT ... that's all.

And I'm not just talking about creating new ciphers. Even when I go to them with novel requirements that seem to demand some sort of new construction using existing algorithms and techniques, the very first thing they do is go to the literature to see what has been done, how long it's been in use, how widely it's been reviewed and analyzed, etc. The less knowledgeable (like me, frankly, though I'm getting better) tend to start by cooking up some new scheme. Real experts avoid that if at all possible, and if they have to do something new they look really hard at how they can prove its security by reducing it to known constructions.

I reiterate: No one who knows what they're doing creates new crypto for production work.

Comment Re: Waiting for the killer app ... (Score 1) 390 390

The vast majority of IPv6 addresses being assigned aren't routable anyway -- do you really think those random local addresses you gave on your LAN at home can be globally routed from anywhere? Sure, if you get an assignment from your ISP, but do you really want your home alarm system, clock radio and fridge globally routable in the first place?

Comment Re:Know what's worse? Cleartext. (Score 1) 132 132

That's nonsense.

Weak encryption is *worse* than no encryption because it gives people a false sense of security they shouldn't have. It makes them feel safe to say or do things they wouldn't do if they realized how bad the encryption they're using really is.

The last person that quit or was fired will be held responsible for everything that goes wrong -- until the next person quits or is fired.

Working...