See the original CVE description for the OpenSSL bug, it affects all padding modes as the leak is happening before any padding operations.
1140 publicly visible posts • joined 31 May 2011
Penny wise pund foolish?
> Uses QKD that had implementations broken multiple times
> Doesn't use Kerberos that is just as secure against quantum computers and has survived the test of time (literally decades)
I guess yet another proof that just because you have the money doesn't mean you have the brains.
Re: @khjohansen - actually....
1. It's illegal to post incorrect information about your spacecraft
2. For a country like China is trivial do random checks of published information
would have been much bigger egg on face for both SpaceX and the US to be caught publishing false info than anything else, it's just not a way of thinking that the CCP is even capable at this point
Because people that benefit from it (users) don't want to pay more for software to get it.
Just like you need regulation to force people to buy cars with catalytic converters so the same people have better air to breathe, you need to force people to buy software developed with good practices so that we don't have a new headline every month about yet another data breach.
Re: Hurrah for Brexit
> Legislation would be unnecessary if this *really* worked, because this is the holy grail.
How many projects (both open source and not) actually measure the quality of the test coverage they have?
And let me repeat: measure not even strive to improve, just measure. Stuff like path coverage, mutation score? Few and far in between.
Stuff that's already well known and proven to reduce defects in software. Stuff that's already legally mandated for safety critical software (in avionics or systems like ABS in cars).
But, as the Fine Article states, eliminating bugs reduces the cost of the use of the software (which is external to the developer), not the development cost (which is internal).
So, what will happen, is that EU users will be forced to pay more upfront for higher quality software, while UK users will continue to use subpar software (because it is cheaper) and suffer the consequences (because the PII data leaks get a slap on the wrist for the corporations that actually are responsible for them, so the cost is external to them too).
Re: Tempered enthusiam
I thought that it will be the compute dies that will be in chiplets, turns out that it's not the case.
It's the cache that is in chiplets, I don't expect much issues from this, or requiring vastly different behaviour from drivers.
Still, will wait for independent benchmarks before pulling the trigger.
Re: CDC 6600 had this 50 years ago
And IBM has pioneered the process isolation, system isolation, image isolation and application specific accelerators in the mainframe space that we got only recently or are getting just now in the x86_64 space.
Yes, we should remember the history of the inventions, but an idea without an implementation isn't really useful.
Re: Good! Give the money to Starlink!
Sure, the government could also migrate to Celsius and metric system. Right after passing policing reforms to get rid of the institutionalized racism.
Subsidies do work and at least are something that the obstructionist fascists can't block so do cut them some slack.