Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!


Forgot your password?

Comment: Reversal of Fortune (Score 1) 51

by SuperKendall (#48941281) Attached to: Reverse Engineering the Nike+ FuelBand's Communications Protocol

Good god man, with the protocol fully in the hands of hackers they can reverse the bluetooth polarity flow - either shifting it to red through acceleration to burn your wrist, or even worse with the reversed flow affecting the heart rate monitor the hackers have full control of your heart rate!

Think everyone wearing a FuelBand as now living either a Logan's Run or Running Man scenario...

Comment: The markets will now force the opposite (Score 1) 84

by davecb (#48941131) Attached to: Tech Companies Worried Over China's New Rules For Selling To Banks

Libraries and library systems are a major, long-term target of the security services and politicians. Those guys want to know if you read "Steal This Book", or in an older age, "Lady Chatterly's Lover", so they can blackmail you. The library community soon learned that it was smart to meet the most stringent privacy standards set by law. After all, you also can't afford to cheese off Germany and the EU and get tossed out of their market.

Countries who would prefer to have back-doors have a hard time making a case for them, as they don't want be seen publicly trying to convince a company to break a good law.

The same logic applied to all software: China has just encouraged all countries to demand open or at least auditable source, and builds that can be proven to be from those sources, so customers can be sure that the backdoors aren't in.

Smart customers will insists on open source, so they can check themselves.

Comment: I wonder if Google has made themselves vulnerable (Score 1) 236

by SuperKendall (#48937311) Attached to: Microsoft To Invest In Rogue Android Startup Cyanogen

Google had problems with getting updates out to devices, so they decided to move many functions of Android the OS, into a Google Services library that could be upgraded when the core OS could not...

But doesn't that leave Google kind of vulnerable? In theory a different company could create their own variant of that library, take things the way they want...

I'm surprised Samsung at least has not done that, perhaps Microsoft is considering it.

Comment: Define "Crappy" (Score 4, Insightful) 428

This is exactly the reason why Internet access in the U.S. is so expensive and so crappy relative to other first-world nations.

I'm sorry, but to my mind any definition of "crappy" must include the freedom to access any website, which many other first world nations (like the UK) do not enjoy.

To label it a slower is fine, but just to say "crappy" is ignoring the tradeoff from one kind of crap to another.

Comment: Re:Encryption chips? Broken! (Score 1) 355

by davecb (#48931743) Attached to: Why ATM Bombs May Be Coming Soon To the United States

Chip and pin has been broken in Europe since soon after it was introduced: see https://www.lightbluetouchpape...

The US is looking at chip-and-signature, which is safer for the customer , who go screwed by UK banks claiming that chip and pin was perfect, therefor any losses were the customer's fault.

Courtesy of Ross Anderson, one of the serious researchers in the sucurity world.

Comment: When did CSE become "the bad guys"? (Score 1) 103

by davecb (#48930863) Attached to: Snowden Documents: CSE Tracks Millions of Downloads Daily

My libertarian friend Max and I dealt with CSE in the early 1980s, before the election of Mr. Mulroney's Progressive Conservatives. They were a small group, very interested in the security of PC-class machines (this was the 286 era), and especially of machines sold to External Affairs and other customers who might be the subject of spying by foreign intelligence services.

At the time, TEMPEST was a huge concern, and they helped Max measure the emissions from his machines, and advised us on many other confidentiality concerns. This was understandable: we built ruggedized machines that External Affairs used in embassies around the world!

Looking at what they were concerned about, it was pretty obvious at that time that they didn't think we were living in a panopticon: the big bugbear was insiders, and they wanted to see the Orange Book used everywhere (:-))

Therefor: the rot started no earlier than Mr Mulroney's election in 1984, and probably much later. The budget is probably the best indicator. It was small and static until 2001, then doubled and redoubled in Mr Harper's era, from 2006 onwards.

From Sharp minds come... pointed heads. -- Bryan Sparrowhawk