Forgot your password?
typodupeerror

Comment: Re:Good (Score 1) 124

by Sloppy (#47945057) Attached to: Next Android To Enable Local Encryption By Default Too, Says Google

Already the industry is realizing what it needs to do.

Yep. In the wake of Snowden, people need to feel better. Performing encryption on a computer that you can't trust, is the best of both worlds and gives everyone what they need.

Users will be put at ease, manufacturers can check the "encryption" bullet point, and thanks to the computer working for someone other than the user, various other parties who "need" the data will be able to quietly get the keys without an unpleasant confrontation with the user. Everybody wins.

Comment: So much power waste (Score 1) 251

by n3r0.m4dski11z (#47942861) Attached to: Slashdot Asks: What's In Your Home Datacenter?

If you look closely at those pictures, in pretty much every rack there are redundant switches with absolutely nothing connected to them, yet they are powered on.

Really? Do you like the blinking lights? I measured my 24 port 3com superstack switch and it was 50 watts. I switched to a 8 port low power gigabit (i have 6 devices these days) and it runs at 8watts.

Calculating the cost savings of the switch, at .07 cents a kwh, 42w = cost per year savings of 25 dollars. Roughly the cost of the gigabit switch i replaced it with!

Comment: Re:Why so much fuss? (Score 1) 144

by mysidia (#47942819) Attached to: Dealership Commentator: Tesla's Going To Win In Every State

Because dealer franchise agreements give individual dealers a defined geographical area in which they are the only sales outlet for that particular model. And that contract language is difficult for manufacturers to break*. Tesla had no such agreements in place.

Well, if it doesn't suit them, they'll likely just revise the language, or allow the agreement to end at its expiration date, and terminate the contracts; if they don't suit the manufacturer.

Comment: Re:So everything is protected by a 4 digit passcod (Score 1) 483

by mysidia (#47942591) Attached to: Apple Will No Longer Unlock Most iPhones, iPads For Police

This. Hardware specific keys are the killer for any forensic attempt. It makes breaking a copied image totally impossible

Apple obviously has an image that is not locked to specific hardware, when you take a backup. As it's possible to restore to a different device!

The law can just send Apple an order to deliver THAT version of the image.

Comment: Re:Procedures only work when you follow them. (Score 1) 483

by mysidia (#47942575) Attached to: Apple Will No Longer Unlock Most iPhones, iPads For Police

You can restore that from iCloud (or wherever you stashed the backup if it ain't an iPhone) one would think, then punch in the passcode once that's done.

Then law enforcement can get a warrant drafted to order Apple to hand over a copy of the backup image and instructions to decrypt it, assuming they discover the passphrase.

So much for "wipe after 10 attempts"

Comment: Re:So everything is protected by a 4 digit passcod (Score 1) 483

by mysidia (#47942541) Attached to: Apple Will No Longer Unlock Most iPhones, iPads For Police

How does a copy of a drive image wipe itself after any number of failed attempts?

Ideally, if the actual key encrypted with the passcode is stored on a tamper-resistant hardware chip, so the "image" will not contain a vital hardware element needed to produce the actual key.

And 10 failed attempts results in the chip memory contents being "zapped"

Comment: They should increase the number of 'canaries' (Score 2) 214

by mysidia (#47942395) Attached to: Apple's "Warrant Canary" Has Died

Instead of providing just one global canary.... more canaries, so the identity of which canaries were withdrawn, could be used to help ascertain the nature of the request(s) received.

They should also provide each user their own 'custom' canary.

For example: an option to receive every month, every quarter, every week, or every day, a personalized canary statement that "Apple has never received an order under Section 215 of the USA Patriot Act which included information related to your account records. We would expect to challenge such an order if served on us."

If you had better tools, you could more effectively demonstrate your total incompetence.

Working...