Forgot your password?
typodupeerror

Comment: How do they validate the security of the client? (Score 1) 259

by vik (#45876035) Attached to: University Developing Technology To Vote On Your Tablet, Smartphone

Not much bleeding point in having the most secure voting software in the universe if the client's OS or GUI is compromised. This is what TOR users found out when the NSA broke not the TOR network, but simply hacked the user's browsers and got them to betray themselves.

Comment: Open Source car firmware pls (Score 1) 160

by vik (#45084659) Attached to: Auto Makers To Standardize On Open Source

Forget the infotainment/bugging crap - we have that already and it's called a smartphone. What we need is Open Source and Open Standard systems for controlling the car and - new kid on the block - battery management.

Real hardware and software already exist in projects like Tumanako which even have the foresight to integrate with distributed power generation systems. But no, big auto manufacturers still focusing on bling that will date faster than a Miley Cyrus video.

+ - Why Not Replace SSL Certificates With PGP Keys? 9

Submitted by vik
vik (17857) writes "The whole SSL process has been infiltrated by the NSA, GCSB and other n'er-do-wells. If governments want a man-in-the-middle certificate they simply issue a secret gagging order to the CA to make them issue one. Consequently "certified" SSL certificates can no longer be trusted. Ironically self-issued certificates are more secure, but not easily verified.

However, PGP/GPG keys can be trusted and independently verified. They are as secure as we can get for now. Why not replace the broken SSL CA system with GPG/PGP encryption keys? Make the NSA-infiltrated stuff obsolete, and rely on a real-world web of trust?"

Comment: Distributed solutions the way to go (Score 3, Informative) 83

by vik (#43933289) Attached to: Saudi Arabia Blocks Viber Messaging Service

Not just a Saudi problem - Obama thinks snooping on messages is just fine and dandy as long as it is not done to members of his Master Race. So far. May I once more bring people's attention to the Open and Free SMS encryption via the Textsecure Android app, and the disaster- (and government-) resistant mesh networking of Project Byzantium which now runs on a Raspberry Pi. They are becoming more and more relevant, and soon we shall have to switch to darknets to do anything non-commercial. Get with the program early, folks.

What the large print giveth, the small print taketh away.

Working...