Forgot your password?

Comment: Re:So, about those changes... (Score 1) 146

by StandardCell (#47205763) Attached to: Auditors Release Verified Repositories of TrueCrypt
That was part of my little joke but of course that's all cynicism on my part at this point.

The only truly reliable idiot-proof encryption method is a one-time pad where you commit the key to memory or parts of it among more than one person. Not that practical compared to a mountable volume or full-disk encryption like the old TrueCrypt, but everything has a price.

Comment: Public statement by the original study author (Score 3, Informative) 747

by StandardCell (#46482557) Attached to: Measles Outbreak In NYC
The best way to handle this is for the original author of the paper that started this anti-vaccination mess, Andrew Wakefield, come out and give a public statement indicating that:

1. Apologize for the fact that his study was flawed, and explain why.

2. That no other study has established any material basis in any respect for a link between autism and vaccines or their components.

3. The original funding for this supposed research was made by lawyers who were attempting to find reason to litigate against vaccine manufacturers.

4. That many people will now die of diseases that were nearly eradicated a mere 15 years ago similar to smallpox a few years before it was eradicated.

Put that as a public service announcement on every major TV and radio channel, and online as well, as widely as possible. Show pictures of what happens when people don't vaccinate, particularly to children, the elderly and immune-compromised individuals (e.g. transplant saved his/her life, now they die). Have him make this appeal over and over again until people get this.

Even if we don't get to 100%, we owe it to everyone around us. The public health costs are staggering, and the stupidity is mind boggling.

Comment: Re:Startups Aren't Really Job-Creators In Practice (Score 4, Insightful) 303

Aggregating $19B in wealth in the hands of 50 people plus a handful of investors is indeed not the way to create jobs. It slows down the flow of money within the broader economy. I'm sure those $20M homes in Woodside and Los Altos Hills and Seacliff are worth every penny.

These megadeals also have the effect of creating a startup lottery environment where anyone can put together a ten page business plan and the "trend du jour" and try to make out like bandits. This is what led to the first dotcom crash and will also eventually lead to the second crash at some point. Anyone who makes an alternative to this content with having the user watch ads in the background every ten app starts will murder Whatsapp because $0 is cheaper than $1.

I think it's also important to note that Eric Schmidt wholeheartedly approves of this deal because I suspect he thinks it's to the ultimate detriment of Facebook, and a blessing \for Google in some ways. Much like unbridled immigration is to existing workers in this country for his business.

Comment: ...and it's come to this, hasn't it? (Score 4, Insightful) 330

by StandardCell (#45201573) Attached to: Ask Slashdot: Can Bruce Schneier Be Trusted?
I guess people's paranoia with the NSA revelations have been difficult to swallow. Now everyone is slowly becoming suspicious of everyone else.

Anything is possible I suppose. To me, it was no surprise really. I do have to say that, having worked with individuals in the security community, the primary focus really is the safety of our way of life at the hands of those who would subvert it.

The problem comes when those of less character use the government apparatus for control, political or other purposes. It's the same reason police and military need to be kept separate - one enforces the rule of law, and one protects against enemies. When those lines are blurred, history has demonstrated repeatedly that individual rights suffer. The degree to which this happens is the degree of the moral compass of those at the helm of this extremely powerful surveillance apparatus.

I'm not sure how many true boy scouts are really left running the show up there, but I do know this: the more paranoid we get, the more we lose. All of this need not come to pass in this way. One of the most important things I learned in my time in this world was "trust, but verify" and it rings true today. You can still trust the message that Bruce Schneier has. We have to, for otherwise we will be consumed by our own paranoia. But to verify is probably the most important point. That's where openness and information sharing in the spirit of open source is paramount and what will lead us to the proper conclusion on this matter.

Comment: Nice effort, but sets a bad precedent (Score 4, Insightful) 95

Obviously the large corporate machinery at Facebook has caught and chewed up some very nice researcher, and the community once again comes in to right the wrong.

The problem is, by third parties paying him, it sets a precedent for rewarding Facebook's bad behavior. Make no mistake - the same idiots that refused the payout and who whitewashed it by claiming a ToS violation will be the same ones watching this effort and wondering how much more they can get away with.

Ultimately, this is bad business practice for Facebook because this strategy will devolve into grey hats and black hats going for the jugular every time, and less white hats trying to do the right thing. Or maybe this just means people will realize on their own what I keep telling them - avoid using Facebook wherever possible. That will, unfortunately, be found out the hard way during the next big publicized data breach.

Comment: Android is a poorly managed ad and content discove (Score 0) 331

by StandardCell (#44466865) Attached to: Why PBS Won't Do Android
I work with all sorts of developers of media apps in the big media companies, and I can tell you that Android media player fragmentation across versions is utterly horrific. The support just for media stacks across versions has changed so much, and the DRM so utterly buggered up, that companies such as VisualOn and Nexstreaming have essentially stepped in and built an entire media stack in software that bolts into any built-in decoders in the hardware, and provides streaming media frameworks as well as optional DRM. PBS, being publicly run, can't afford licensing these frameworks wide-scale app deployment at the app level nor afford the development cost of dealing with every version of Android. Using HTML5 is even worse due to lack of full screen playback standardization and codec chaos. Remember that Android is ultimately an OS that is best for ramming ads and redirecting you to Google and friends content properties. That's the mantra over at Google corporate, just like Windows is at MS. Developers have enough to do their silly pop games and social apps and bringing people into the Google App Store and Google Play with well-integrated Google ad network support. Sadly, I'm too cynical to be surprised about PBS' problems here. iOS is much better - HLS encode the content, send to the CDN origin server, point the API at the m3u8 URL, and you're basically done.

Comment: IPAWS and Common Alerting Protocol solve this (Score 1) 271

by StandardCell (#37830886) Attached to: Nationwide Test of the Emergency Broadcast System
FEMA and the FCC had a big display for a solution to this problem at this year's National Association of Broadcasters show in Las Vegas. The system is called IPAWS or Integrated Public Alert and Warning System. It augments traditional broadcast-based EAS infrastructure with IP-based infrastructure and mobile using the Common Alerting Protocol. The FEMA guy told me that this is an ongoing effort to integrate all these systems but that it is recognized and it will take a few years, especially on integration with over-the-top content delivery. The press release is here:

Comment: They didn't crack the crypto, just the security (Score 1) 208

by StandardCell (#36244910) Attached to: Apple's iOS 4 Hardware Encryption Cracked
Folks have a hell of a time understanding the difference between security and cryptography, and the misleading sensationalist headlines don't help.

Cryptography is merely the study of hiding and unhiding information. It doesn't secure information. Security is about securing information from unauthorized access. These guys attacked the security of the device, probably through the protocol or through insecure hardware.

If the crypto itself (probably AES-256) had been broken, the NSA would have had some big problems on their hands due to the fact that the same crypto is used in the publicly-available Suite B algorithms.

Comment: Report them to College of Physicians / Dentists (Score 1) 581

by StandardCell (#36243554) Attached to: Doctors To Patients: First, Do No Yelp Harm
Any time someone gets one of these, report the doctor or dentist to their appropriate professional organizations, and claim that you felt coerced to sign this in order to get care. If enough of these are sent, this practice will stop. That, and post a review of that practice to Yelp and give them the requisite goose egg rating.

Also, doctors and dentists are asking patients to sign binding arbitration agreements. Be VERY wary about this, as functionally it is much worse than limiting public commentary.

Comment: Nice idea, but many pitfalls... (Score 3, Insightful) 140

by StandardCell (#35985644) Attached to: Help Build the World's First Community-Funded CPU ASIC
This is a nice idea, but there are a few serious problems with it:

1. If this doesn't catch on and people want it to continue, this could be a significant ongoing cost for running this project above and beyond allocating what people might think are one-time NRE charges. None of this appears to be detailed enough on that site so I'm not sure how far they've thought through this. Who are the target vendors, and have they tendered bids? Costs vary greatly, and I'm not at all ready to throw money when there appears not to be an "open source" plan with sufficient detail to make this real, nor with open listing of the credentials of the individuals involved. If you're gathering up to $250k for a project and you want my money, I had damned well better know that you're able to execute and that you have a real plan and definitely not just an FAQ.

2. How did they define the product? Is it based on market needs? If so, what markets and where is the information on said markets? If it's for hobbyists, I get that, but did anyone do even a rudimentary survey to say how many timers or UARTs might be necessary, whether they should embed an MMU so you can run a more advanced OS, or what the max CPU clock speed should be? If *I* am going to put my money in it, then why not ask *me* what I want? And yeah, I know I can contribute, but how have all of those contributions been managed, organized and synthesized into what is being built AND make it sufficiently relevant for enough time that this would be worth doing before technology moves on? I don't see a single place for that around their site.

3. Frankly, why bother when there are many other vendors such as Microchip who offer 32-bit micros with fully-documented architectures and better capabilities that you can run Linux on? I know, I know, this is what open source is about, but we're not just talking about someone's spare time on a machine they do other things with; this is a real product with real implications. I seriously don't buy how they're going to change the industry since the successful players in the industry guarantee supply to their customers.

I know I'm going to get flamed and down-voted for this post, but the open source hardware world is much tougher than the software world, and ASIC designs are steadily dropping because ASSPs are taking their place. I think people's efforts need to be focused on software, and this is coming from a guy who's been on Slashdot more than a decade with a hardware background (and hence my name) and has switched to the software and systems world...

Comment: Moviegoers want a plain good v. evil happy ending (Score 4, Insightful) 771

by StandardCell (#35233790) Attached to: How <em>Watchmen</em> Killed 'R'-rated Fantasy Movies
This is part of the problem with these R-rated fantasy/comic movies. Watchmen is pretty heavy stuff both from a philosophical and situational perspective. I saw the movie on a plane flying to my vacation and came off of it depressed and with a heavy heart despite the basic outcome. In that respect, the movie did its job. The adult comic genre is really a way for many artists to express themselves on very adult topics without having a huge production budget and just some decent drawing talent.

Watchmen wasn't too dissimilar to the bittersweet ending of Sin City. You liked the characters, but most of the "good" (read: likable) guys actually die. The key is that both of these comics explore the subtlety that what is good versus bad isn't cut and dried. Most people aren't really willing to spend their two hours of escape dealing with these subjects and want to see the bad guy lose because it represents their boss or ex or some other negative character in their lives.

Contrast Watchmen and Sin City with LOTR: ROTK where the ending was again turned into a much happier event than what was in the books. Now look at which of these three movies I discussed made the most money. That's what the studio execs are most interested in. I just hope the genre doesn't completely go away because of straight money concerns. Sometimes producing art for its own sake is a worth cause.

Comment: 25x more dense, not 5x more dense... (Score 4, Insightful) 162

by StandardCell (#33432460) Attached to: New Silicon-Based Memory 5X Denser Than NAND Flash
If a single dimension changes, assuming the NAND cell structure is similar, there would be a 5x reduction in size in each of the X and Y dimensions. Therefore, you would get up to 25x more density than a current NAND. This is why process technologies roughly target the smallest drawn dimension to progressively double gate density every generation (i.e. 45nm has 2x more cells than 32nm).

The big question I have for all of these technologies is whether or not is is mass production worthy and reliable over a normal usage life.

"A mind is a terrible thing to have leaking out your ears." -- The League of Sadistic Telepaths