davecb writes: At ACM Queue, he asks we not buy into the 299-odd remaining bugs after taking out Heartbleed Instead 'we need a well-designed API, as simple as possible to make it hard for people to use it incorrectly. And we need multiple independent quality implementations of that API, so that if one turns out to be crap, people can switch to a better one in a matter of hours.'
davecb writes: The British Columbia CLA filed a class action on behalf of all Canadians, against our security services' collecting of metadata, because it allows for a profile to be created of the individuals involved.
It's a tough class for a court to certify, but to qualify, the BCCLA needed a class that they knew contained people who were spied upon.
davecb writes: Google’s Android Security chief Adrian Ludwig reported data showing that less than an estimated 0.001% of app installations on Android are able to evade the system’s multi-layered defenses and cause harm to users, seemingly contradicting F-Secure's Android Accounted For 97% of All Mobile Malware In 2013. As you might expect, they're not talking about the same thing.
davecb writes: Charlie Stross reports that the UK national health service's consultants uploaded to Google the hospital records for all the patients in England and Wales, some 47 million people. Oopsie!
davecb writes: The Toronto Star's lead article today is Canada courting U.S. web giants in wake of NSA spy scandal, an effort to convince them their customer data is safer here. This follows related moves like cisco moving R&D to Toronto. Industry Canada will neither confirm nor deny that European and U.S. companies are negotiating to move confidential data away from the U.S. This critically depends on recent blocking legislation to get around cases like U.S. v. Bank of Nova Scotia, where U.S. courts "extradited" Canadian bank records to the U.S. Contrary to Canadian law, you understand...
davecb writes: The Obamacare sign-up site was a classic example of managers saying "not invented here" and doing everything wrong, as described in Poul-Henning Kamp's Center Wheel for Success, at ACM Queue.
davecb writes: Paul E. McKenney, one of the Linux RCU implementors, addresses the problem of synchronization using structured deferral on, what else, Mr Schrodinger's famous cat. Courtesy of deferral/procrastination, the cat can be both alive and dead at the same time.
davecb writes: The Canadian Intellectial Property Office (CIPO) warns patent examiners that..."for example, what appears on its face to be a claim for an “art” or a “process” may, on a proper construction, be a claim for a mathematical formula and therefore not patentable subject matter.” (Courtesy of Paula Bremner at Slaw)
davecb writes: "Prenda Law has commenced three defamation, libel and conspiracy suits against the same people: defence lawyers, defendants and all the blogger and commentators at "Die Troll Die" and "Fight Copyright Trolls". The suits, in different state courts, each attempt to identify anyone who has criticized Prenda, fine them $200,000 each for stating their opinions, and prohibit them from ever criticizing Prenda again."