×
Encryption

Submission + - Cryptographers Aim to Find New Password Hashing Algorithm (threatpost.com)

Submitted by Trailrunner7
Trailrunner7 writes: Passwords are the keys to our online identities, and as a result, they're also near the top of the target list for attackers. There have been countless breaches in the last few years in which unencrypted passwords have been stolen from a database and leaked online, and security experts often shake their heads at the lack of use of encryption or even hashing for passwords. Now, a group of cryptographers is sponsoring a competition to come up with a new password hash algorithm to help improve the state of the art.

Hashing algorithms are used to secure passwords by taking the plaintext password, passing it through the cryptographic hash algorithm, and then storing the resulting digest, rather than the plaintext password itself. That way, if attackers are able to compromise the database of passwords, what they get are the hashes and not the actual passwords.

However, the algorithms used to hash passwords in most cases are functions such as SHA-1 and MD5, which have known weaknesses that open them up to brute-force attacks. So if an attacker is able to access a database of hashed passwords, he may be able to crack them, given enough time and compute power. When these algorithms were designed years ago, the hardware needed to crack a hash produced by one of them was not commonly available. But now, powerful GPUs and FPGAs are widely available and can be used by an attacker to crack hashes relatively quickly.

"Password hashing is important because it's where we have a problem. NIST has given us some great standard hashing algorithms. The problem is that these hashes aren't necessarily designed for the specific problem of password hashing — where you need something that's fast enough to hash on a server at login time, but slow enough that a GPU can't crack ten million of them," Green said.
Medicine

Submission + - Alcoholism Vaccine Makes Alcohol Intolerable to Drinkers

Submitted by
Hugh Pickens writes
Hugh Pickens writes writes: "Ariel Schwartz reports that researchers are working on an alcoholism vaccine that makes alcohol intolerable to anyone who drinks it. The vaccine builds on what happens naturally in certain people--about 20% of the Japanese, Chinese, and Korean population--with an alcohol intolerance mutation. Normally, the liver breaks down alcohol into an enzyme that’s transformed into the compound acetaldehyde (responsible for that nasty hangover feeling), which in turn is degraded into another enzyme. The acetaldehyde doesn’t usually have time to build up before it’s broken down. But people with the alcohol intolerance mutation lack the ability to produce that second enzyme; acetaldehyde accumulates, and they feel terrible. Dr. Juan Asenjo and his colleagues have come up with a way to stop the synthesis of that second enzyme via a vaccine, mimicking the mutation that sometimes happens naturally. "People have this mutation all over the world. It’s like how some people can’t drink milk," says Asenjo. Addressing the physiological part of alcohol addiction is just one piece of the battle. Addictive tendencies could very well manifest in other ways; instead of alcohol, perhaps former addicts will move on to cigarettes. Asenjo admits as much: "Addiction is a psychological disease, a social disease. Obviously this is only the biological part of it.""
Google

Submission + - Microsoft Could Earn Billions from Office for iOS: Analyst (slashdot.org)

Submitted by
Nerval's Lobster
Nerval's Lobster writes: "Microsoft is leaving billions of dollars on the table by not porting Office to the iPad, according to a new analyst report. That analyst, Morgan Stanley’s Adam Holt, believes that Office for iOS would sell to approximately 30 percent of all iPad users; priced at $60 per copy, that comes to a grand total of $2.5 billion per year—minus Apple’s cut of the revenues, of course. But does Microsoft actually want Office for iOS out there? It’s not necessarily in the company’s best interest to rush such a platform to market, even if billions of dollars potentially hang in the balance—it’s too busy pushing Office as a cloud-based, OS-agnostic platform. And Microsoft has another reason, aside from pushing the cloud version of Office, to de-emphasize the prospect of its productivity software on iOS: In a bid to draw more customers to its new hardware, Microsoft preloaded its Surface RT tablets with Office; offering the software on a rival touch-screen would take a major selling point off the table."

Submission + - CNN/Money Reporter Drives Tesla - Confirms Company's Claims (cnn.com)

Submitted by
karlnyberg
karlnyberg writes: "Putting to rest the conflict between Tesla's Elon Musk and New York Times Reporter John Broder, CNN/Money's Peter Valdes-Dapena drives DC to Boston (primarily to test the SuperCharger network):

As he says in the money quote and byline of the article:

In the end, I made it — and it wasn't that hard.

As for the Supercharger network? Turns out that works, too."
Education

Submission + - 17-year-old Rutvik Oza Solves an Unsolved Problem in Mathematics (yahoo.com)

Submitted by Anonymous Coward
An anonymous reader writes: An Indian teen has recently proposed a solution to an unsolved problem in mathematics. The 17-year-old young achiever, Rutvik Oza, a student of The H. B. Kapadia New High School, from Ahmedabad, Gujarat has now put a full stop to another open problem in the field of maths by providing a closed formula for the problem called Reve's Puzzle (also commonly known as the 4-peg Tower of Hanoi Problem).

When asked about how was he feeling, "Thrilled! I really didn't realize at first that the problem that I had solved was an open problem in mathematics. It was only later that I reckoned after doing some resourcing on the web, that it was an open problem," said Oza. Brought up in a middle class family, the teen dedicates his achievement to his father, Mahesh Oza, "It's all due to my father. He sowed the seeds of mathematics in me from my childhood. I dedicate this to him." he says. "It almost took me a week's time to get to the formula. It involved data analysis and pattern recognition," said Rutvik Oza.

When asked about his favorite maths giant, he said, "Newton, Ramanujan, Gauss and a long list of others to follow. There are many. It gives me goosebumps when I think about those greats.

"Mathematics interests me a lot. May it be any area of it — arithmetic, algebra or geometry. I love them all. It strengthens the faculties of originality, creativity and novelty in one's brain. Memorizing it won't help. That's the way it's taught in our schools here. I criticize that method of teaching fervently. Hardly any real mathematics is taught at the schools. I do not consider the schools responsible for it but yes, the entire system is definitely at fault," he added. When asked for a message that he wished to give his fellow teenagers, he said, "Do what you love! Follow your dreams. Expect for no support from anybody and overcome all obstacles that hinder you. No other mantra."

Submission + - Webmail and online banks targeted by phishing proxies (netcraft.com)

Submitted by Anonymous Coward
An anonymous reader writes: Netcraft confirms a recent increase in the number of malicious proxy auto-config (PAC) scripts being used to sneakily route webmail and online banking traffic through rogue proxy servers. The scripts are designed to only proxy traffic destined for certain websites, while all other traffic is allowed to go direct. If the proxy can force the user to keep using HTTP instead of HTTPS, the fraudsters running these attacks can steal usernames, passwords, session cookies and other sensitive information from online banking sessions.
Idle

Submission + - Meteorite crashes in Russia

Submitted by mvar
mvar writes: Details are sparse now, but apparently several meteorites crashed into Russia earlier today, setting off giant explosions and forcing nearby schools and office buildings to be evacuated. The meteorites, or whatever they were, reportedly landed in the Chelyabinsk region of Russia, where witness said the explosions shattered the window of nearby buildings. The regional Emergency Ministry said the flashes and explosions were caused by a meteorite shower, but locals think it might be the result of a jet crash or a missile. There's even a cool video from a passing driver's dashcam.

Submission + - WebKit as broken as older IE versions? (cnet.com)

Submitted by Anonymous Coward
An anonymous reader writes: It's not everyday that we get to hear about the potential downsides of using WebKit, but that's just what has happened as Dave Methvin, president of the jQuery foundation and a member of the core programming team that builds the widely used Web programming tool, lamented in a blog post yesterday. While most are happy to cheer for IE's demise, perhaps having 3 main browser engines is still a good thing. For those that work in the space, does the story ring true? Are we perhaps swearing at the wrong browser when implementing "workarounds" for Firefox or IE?
Government

Submission + - President Obama Calls For New 'Space Race' Funding (theverge.com)

Submitted by dmfinn
dmfinn writes: While his union address covered a wide range of topics, President Obama made sure not to skip over the U.S.'s space program. The talking point was nearly identical to the one he gave in 2009, in which he called for space R&D spending to be increased past the levels seen during the the original cold war space race. Now, 4 years after that speach, it appears things have gone the opposite way. Since 2009 NASA has seen some serious cuts. Not only has the space-shuttle program been deactivated, but the agency was forced to endure harsh funding cuts during the presidents latter term. Despite an ominous history, it now seems that Obama is back on the space objective, pushing congress to increase non-defensive R&D spending to 3% of the U.S. GDP. It's important to keep in mind that not all of this money goes directly to space related programs, though under the proposed budget the National Science Foundation, Department of Energy Office of Science, and the National Institute of Standards and Technology Laboratories will have their budgets doubled.There will also be an increase in tax credits towards companies and organizations working on these R&D projects.

Should the U.S. go back to its 'Let's put a man on the moon" ideology, or is the federal government fighting an uphill battle against newly emerging private space expeditions? Either way, the question remains whether or not Obama will act on any of the propositions.
Government

Submission + - NIST issues a Request for Information concerning the Cybersecurity Framework (nist.gov)

Submitted by
Presto Vivace
Presto Vivace writes: "NIST has issued a RIF for Cybersecurity Framework(PDF), which will soon be published in the Federal Register. The Information Technology Laboratory of NIST has created a web site for Cybersecurity Framework.

Clearly, much depends upon how this is implemented. I would encourage all those who are interested to participate in the process. Now is the time to speak out, before the Executive Order is implemented."
Science

Submission + - Australian Federal Court rules for patent over breast cancer gene (smh.com.au)

Submitted by Bulldust
Bulldust writes: Federal Court in Australia has ruled in favour of US biotechnology company Myriad Genetics enabling them to continue to hold the patent over the so-called breast cancer gene BRCA1. The same patent is also being reconsidered by the US Supreme Court in the current session.

Submission + - NY Times' Broder Responds to Tesla's Elon Musk (nytimes.com)

Submitted by
DocJohn
DocJohn writes: "NY Times' John Broder responded to Elon Musk's blog entry, responding to accusations with deft and reasonable replies. Accused of driving around a parking lot for no reason, for instance, Broder notes he was simply looking for the poorly marked charging station. Worse of all, much of Broder's behavior can be attributed directly to advice he received from Tesla representatives — something Musk fails to mention."

Submission + - Congress takes up online sales tax (internetretailer.com)

Submitted by
head_dunce
head_dunce writes: "A bill introduced Thursday by a bipartisan group of U.S. lawmakers seeks to make it easier for states to collect sales taxes stemming from online purchases. Amazon is among the e-retailers supporting the proposal, while a lobbying group representing eBay and Overstock.com stands opposed."

Slashdot Top Deals