RT @lwnnet
Woodruff: Weird architectures weren't supported to begin with https://lwn.net/Articles/847736/rss
- even if perfectly privacy-preserving in the first iteration, the risk of feature creep is high;
- even after solving all of the above, a "single control bit" infrastructure can still be abused with bad policy. 3/3
(CC @epicenter_works)
- combining with (soon-ish) existing privacy positive eID standards like ISO 18013-5 mDL is non-trivial;
- international interoperability seems hard if not standardized through such channels (which take a long time); 2/
Vaccination passports are a hugely difficult topic:
- from a privacy PoV, national, central databases queried for every interaction are a disaster (but currently the favored option in AT 😡);
- health care providers don't actually want to become yet-another-photo-ID-issuer; 1/
---
RT @hdevalence
@matthew_d_green no, that's exactly the concern that I have -- in this case, I think that legitimizing a system of controls on personal movement…
https://twitter.com/hdevalence/status/1366432389375815683
RT @haveibeenpwned
New breach: "Free" VPN services SuperVPN and GeckoVPN had 20M email addresses breached this month. Data also included login history, country of login plus device type, IMSI and serial number. 8% of addresses were already in @haveibeenpwned. Read more: https://cybernews.com/security/one-of-the-biggest-android-vpns-hacked-data-of-21-million-users-from-3-android-vpns-put-for-sale-online/
RT @michenriksen
All the recent talk about supply chain attacks made me investigate what the situation looks like in the Go ecosystem. Here is a blog post on what I found: https://michenriksen.com/blog/finding-evil-go-packages/
RT @bascule
Bitcoin is currently using 56% as much energy as all other datacenters worldwide to provide what is effectively a global 14.4kbps modem's worth of consensus bandwidth with 10 minute latency
https://www.bbc.com/news/science-environment-56215787
RT @ciphergoth
We could all be using OCB now, instead of the inferior GCM, if this had been the decision twenty years ago. The ratio of value destroyed to profit pocketed must be truly eye-watering. https://twitter.com/jedisct1/status/1365598429158780928
RT @sweis
Happy OCB Freedom Day:
Phil Rogaway announces OCB patents are abandoned & freely usable
https://mailarchive.ietf.org/arch/msg/cfrg/qLTveWOdTJcLn4HP3ev-vrj05Vg/
RT @internetofshit
these fuckers throwing the intern under the bus when their entire organization failed to have proper policies or review in place to catch them.
if the intern could make an innocent mistake like this, it is *the executives failure* https://twitter.com/CNN/status/1365445311066480641
RT @KimZetter
I think you all gave me a homework assignment. I'll watch and livetweet tonight at 8pm PST. https://twitter.com/KimZetter/status/1364955854651416587
RT @schneierblog
The Problem with Treating Data as a Commodity https://www.schneier.com/blog/archives/2021/02/the-problem-with-treating-data-as-a-commodity.html
RT @ryanaraine
Read the entire thing http://addxorrol.blogspot.com/2021/02/book-review-this-is-how-they-tell-me.html
At @insjku, we believe that biometric authentication can be done in a privacy-first manner, but we don't yet know exactly how to. This is active research - in 5 years we may have a good answer.
But for the time being, we must not rush into naively deploying face recognition.
https://reclaimyourface.eu/ - @ReclaimYourFace
This is why we do https://digidow.eu, because we are afraid of a world of ubiquitous biometric sensors continuously pushing events into central databases with limited control over privacy and highly personal data.
This is good design for a transition period, and we can learn from such cases. Only a little compromise for 2 extreme positions can find a way for them to be unified.
---
RT @johndmcmaster
So you can USB while you USB
https://twitter.com/johndmcmaster/status/1364380112653676547
Prof. for networks and security @jkulinz/@insjku + dabbling in Android platform security @Google. This account will mostly carry IT security stuff, occasionally politics and other comedy.
Statements are only my own opinion, not my employer's.