Posts by Pascal Monett

"It is not the right way to regulate,"

Well obviously it doesn't suit Moore, but his arguments don't really suit me.

1) he doesn't know of any law enforcement agency that wants to use the technology for real-time surveillance

The word missing there is "yet". He also states that we don't have the processing power, again missing the word "yet". We will get there, and the police already have a fairly extensive track record of abusing their powers and tools with gay abandon.

2) He says that combined with improvements in the technology, we are rapidly getting to the point where within two-to-three years, the degree of accuracy in facial recognition will be in "high 90s" for all types of people

Come back in two-to-three years then, and we'll talk about it again.

3) it would be harder for a police officer to justify, say, stopping a black man because he thought he looked like a suspect if there was a facial recognition result that said it was only 80 per cent accurate

I think a policeman would take a 4 out of 5 as a perfect reason for stopping the guy, with whatever consequences that may follow.

4) the issue only got a "spotlight on it because facial recognition was in the same sentence."

Well duh, if there hadn't been a camera, the guy wouldn't have felt the need to hide his face. Facial recog was at the very base of the problem, so yeah, it got the spotlight and rightly so.

5) "Guns are a serious problem," he notes. "This technology is there to make better decisions."

Sure, because FR is going to keep someone from pulling a gun. Way to go there, Moore. Let's not address the issue of guns, let's just put a band-aid over it and we can all feel all nice and fuzzy.

6) We have turned down multiple clients where their use of the technology was not aligned with what we wanted to do.

I am so impressed. How lucky we are to have you. Now what are you going to do about your competition ? Are you going to ensure that they act with the same, admirable, attitude ? How ?

It may be that regulation should happen at a federal level, I'm not qualified to have an opinion on that either way.

But I'm pretty sure that,whatever the level, the regulation should give clear guidance as to where FR is acceptable, how the data should be treated, how long it can legally be stored and what procedures should ensure that the data is properly deleted when its expiry date is passed.

Oh, and selling the database should be a federal crime passable of 5-10 years without parole.

The sound of Silence

Appears to be the rustling of lots of bills.

So they could be only 2, and they have managed to completely pwn a bank, control its PCs and get control over ATMs.

Man, they are evil, but that is awesome intelligence applied to a bad use. I wonder if intrusion detection is going to take off in those parts now ?

"Where is your contingency planning for such events?"

Probably in the same place as the budget for it - limbo.

These are hospitals, not luxury resorts. When even Google doesn't have a backup fiber link to its bit barn, you can hardly blame a lowly hospital for not having redundancy and multiple servers.

"Mitigation work is currently underway [..]"

It's called REPAIRS. Mitigation is what you do to get around a problem, but there is no getting around a broken fiber link. It just has to be repaired.

Why is it that today's PR people can't just say it as it is ?

A new OS from Google

Okay, fine. One question : what's the telemetry on that thing ?

This is Google, it exists in order to find out everything about you. So how will this new OS feed it data and what data will it feed on ?

"smart home product manufacturing 101"

Currently, the "smart" home product manufacturing 101 manual is as follows :

1) Find some everyday thing and make it more complicated, and need batteries

2) Definitely do not do any sort of penetration testing whatsoever

3) Hype the shit out of whatever it is and flog it off at the highest possible price

4) Cash in and never change anything until your customers are readying their torches and pitchforks

Security ? They've heard of it.

So, waiting for the fallout now

The dice are rolling - will this release cause any mayhem, or has Redmond finally put a stop to the shenanigans and made an update that doesn't break anything ?

Place your bets.

"trying to come up with new forms of ID card"

The problem is simple : you cannot have individual ID without a corresponding token to prove your ID. Until the plod has a portable, pocket-sized token verifier, the easiest way to prove your ID is with a card.

The problem is therefor not the ID card in itself, it is the fact that UK gov wants IDs and UK citizens wants them to fuck off.

There is no solution to this.

"I could not imagine going back to Windows"

Well how about going "back" to Linux ? Try Mint, it's a rather easy start for an ex-Windows user.

I should know, I'm transitioning at the moment.

However, the problem is the the OS in itself, the problem is the applications you need to use. If you're in the graphics industry you use Apple and there is nothing comparable AFAIK either on Windows or on Linux, so you have to stick with Apple.

Stan, Sid, let's make it simple, okay ?

Instead of trying to find a new name every week, let's just convene that the week's On Call guy is Brian and the week's Who Me guy is, I don't know, George or something.

In other words, just keep the same name every week, that way you can just start the column by "This week's Brian tells us about how . . ."

What do you think ?

"the most obvious technology is blockchain"

The most obvious thing about that statement is that, indeed, you are no expert.

Blockchain does not scale. Implementing a blockchain-based solution on something that has to deal with tens of thousands of "transactions" per day, well let's just say that I would love to see a border control app based on blockchain - well, I would love to see the interminable queues, the travelers bored to tears, the officials wringing their hands and repeatedly leaking to the press that the whole thing is a hopeless mess.

"Once upon a time, Microsoft's cloudy storage was unlimited"

That was the first mistake. Come on, the amount of storage is not something to base your difference on, at least not by that much. Unlimited says what it means, and it is blindingly obvious that it was only a question of time before that offer was tested.

I think the marketing department is to blame there. They brainstormed and had meetings and drinks and . . okay, maybe not cocaine on prostitute butts, but still, they tried to find something to make a difference and they found "unlimited storage". What could possibly go wrong ?

I'm pretty sure every engineer involved was screaming bloody murder at the prospect but hey, marketing rules the roost, right ? That is, until the shit hits the fan, at which point Marketing immediately points to Engineering and says it has nothing to do with the problem.

Riiiight.

"shifts where officers could choose when, and when not, to switch on the cameras"

Um, I would think that, if you have a bodycam and you're on duty, it is on.

Let me be more specific : if you have a bodycam and you're outside the precinct, it is on.

There should be no choice.

"A very strange thing for Parliament to do [..]"

Not really. Today our society is practically based on the Internet. Whatever is not yet there is going there, and whoever is not on it is increasingly being pushed there, sometimes by their own government (online tax declaration, anyone ?).

Those bits traveling over the wire have a specific function, to query some data that will orient the user to a specific site. That cornerstone of the Internet is how we access the web pages we think we want - which means it is the ideal point of control for a government that wants power over what its citizens can see.

It is exactly like the government controlling what is told in the news on TV and the dead tree network, especially back when the Internet did not exist. It's a reflex for any government, let alone one that likes control.

"it is not something you can prepare against"

Nonsense. Now that they know, they will be preparing against. How they will prepare I have no idea, but the first step is rather obvious : control all VPN connections and make sure they're all legit. Then, I'm guessing, go and forbid VPN connections on all computers that shouldn't have it, for example with a firewall or something.

And using the David vs Goliath reference is rather poor form - David won, and David is supposed to be the telcos.

"each company trying its best not to work with the others"

That was fine before this because there was no reason to become compatible. Ease of use does not include being friendly with the competition.

But now, apparently, things have changed. If this new Thread does what it says on the tin, the enterprise market is going to flock to it and the home market will have to follow because manufacturers are not going to bother with one protocol for business and one for home. That would be a useless hassle.

And if that happens, then the upcoming versions of Nest, Ring and Homekit are going to have to be compatible or they will not sell well.

It's as if Apple was forcing the use of TokenRing - yeah, it works, but everyone is using Ethernet these days, so Apple would be restricting itself to a very slim margin of the market. If Thread 1.2 fulfills its promises, then the others will just have to get in line.

And that will be a good thing for everyone.