Posts by Pascal Monett

Well duh, what a surprise

"The techies claim to have experienced a greater rate of accuracy using the game data to train their AI than relying entirely on the real-world stuff from CamVid."

Game data is obviously great for AI training. You have a virtual world created by a computer used as training grounds for another computer. Advantages ? No clutter, no useless noise, and faces are polygons with textures stretched on. No pimples, no puffiness under the eyes, no 5-o'clock beard. The only things shown are the things that have been calculated. No wonder it's easier for a statistical analysis machine (what we currently call AI) to recognize and classify.

Unfortunately, Real Life (TM) is messier than that. Granted, it may be advantageous to train a not-AI on such data before turning it loose on actual, real images, but there's also a chance that we are just fooling ourselves into thinking that we are making this work. It's the Hall of Mirrors effects for the Mentats of Dune.

"there’s no plan [to] combine the two services or make account-holders do anything differently"

Yet.

There is always a grace period after a purchase during which the buyer pretends to not want to touch anything, to reassure the paying customers - and give themselves time to find out how everything actually works.

Then, one day, out of the blue (once they have properly mapped the existing functionality) they will suddenly have a blinding flash of a brainstorm, and changes will be announced.

Always for good, obviously.

"own up to your mistakes"

That right there is one of the hardest things to do. If you look at the history of humans, I'm sure that you will find many, many more instances of people covering up their goofs rather than admitting them and working on fixing the issue.

I think it is a case of misplaced pride. We act as if we are perfect, we strive to impose that image on people around us, and anything that might tar that image must be suppressed.

Before the Internet, you could maintain the illusion because nobody who didn't know you had any way of finding out. That time is over now. Maybe our species is going to learn ?

Science-fiction, here we come

Step by step, minute advancement by minuscule improvement, we will some day attain the lofty 21st Century promised to us by Hollywood fifty years ago.

But right now wireless charging is something that Greenpeace should be as much up in arms about as nuclear power, because with all the energy loss in transmitting in such a fashion, we're going to need more nuclear reactors, and soon.

That sounds like the story of a madhouse

I believe that the state of the IT department is rather representative of the mentality of the company.

With an IT in that state, it's a wonder that the company managed to function over a number of years.

I would agree with only LEAs having full access

Anyone else should make their case to their local LEA which will judge if it is actually justified, then look it up immediately if it is.

But access for anyone else should be made difficult. It is time we made personal data something that is just as valuable for the consumer as it is for FaceBook & co.

Not very reassuring

So, images can be modified in a way that the human eye cannot perceive, but pseudo-AI does and reacts accordingly.

That means that an attack on the system would possibly take a long time to discover if nobody is checking the actual images but just working on post-analysis data.

It is already frightening to imagine that in a medical environment, but since Big Data is digging deep into our societal fabric, the consequences of such actions could really become terrifying.

And nobody will understand because everyone already trusts the machine.

Enough feel-good declarations

It is time that the InfoSec community create an Official Security Charter. Define once and for all the required measures to ensure privacy and data security, and publish it.

Everything else should then be measured against those points, in a checklist manner.

That would even allow for grading a company's promises. So, your latest blah ranks 2 on the Total Security Checklist ? Try again.

You are FaceBook ? Don't even check, just try again.

"an opportunity to invest even more heavily in privacy."

You know, Zuck, in the Real World, you first have to invest in something before you can invest more.

I read through this article just to remind myself of why I don't have a FaceBook account.

Mission accomplished.

Ah, Wall Street analysts

They didn't get what they expected, so IBM gets punished.

It's never the analysts that get told to sharpen their skills, no. It's the company's fault that it didn't perform to expectations.

Alanysts should be graded on the exactitude of their forecasts. That would balance the situation somewhat.

"you have to be aware that someone might steal your tools"

But the NSA was 100% certain their data was secure.

Add administrative complacency to that state of mind and bingo, you have a perfect blind eye environment.

Proper data security is hard. The NSA has demonstrated that even spooks whose job it is to be secure can still goof it up.

But of course it will be for terrorism

Initially, that is.

Then "terrorism" will be applied to journalists they don't like.

Objectively, there are obvious good reasons for this kind of requirement. It's the potential for overreach I don't like.

Plus the fact that we are doing more to damage our liberties than terrorists could hope for in their wildest dreams.

"We’re going to see surveillance video cameras get a whole lot smarter"

I'm guessing we're going to see them get a whole lot bigger as well, then.

Because smarts is based on data these days, not on AI, so they're going to need some sort of data storage. Even SSDs will add some bulk to a camera that doesn't have storage now.

As far as upgrading is concerned . . .

My Android is on Nougat, and I have zero options to upgrade outside of rooting the phone, which I have no intention of bothering with.

On the other hand, after having checked, I found that the security package is dated February of this year - so there's that at least.

"That's not going to have CEO John Legere quaking in his boots"

No, it certainly won't, but the fine is still in the millions, not in the tens of thousands, so there's that.

Then there's the fact that it represents a day and half of not raking in the dough, which always makes the board wince.

Finally, there's the fact that they got fined, and a repeat offense will likely cost more (at least, one can hope).

Personally, I'm just glad that a company screwing its customers got a multi-million dollar fine. There's not enough of that.

Antivirus needs a different approach

Signature-based protection is an after-the-fact approach - you have to have the virus locally before a signature-base AV can scan it, and that means you run the risk of triggering it before the AV can check out the file.

Instead of using signatures, an activity-base approach might be better. On a clean system, the AV creates a record of legitimate programs and kernel programs. After that, anything trying to modify those files is stopped cold, with a warning. Any process trying to access memory it shouldn't is frozen and quarantined. Any new application installed is sandboxed until its activity has been thoroughly analyzed and found acceptable, then it stands a chance of being whitelisted. Any whitelisted program trying to modify the kernel generates a warning for the user before the modification is allowed to complete.

Of course, the problem with this approach is that security is basically user-based, so the user has to know what he is doing.

And with that I realize that I have just shot down my own theory. Bugger.