Posts by diodesign

Oh, lighten up

I'm sure they, being Eastern European, can take a joke.

C.

Infosec bluster

Yeah, normally we try not to let infosec companies hype up problems they conveniently have the solution to, and we sat on this article for a few days thinking about whether it was worth doing.

But we figured it would be worth bringing io_uring to a wider attention, it appears to be a contentious feature, and this might be a nail in the coffin for it.

We publish a lot of work; some of it is less Earth shattering and more just whatever we felt people would find mildly interesting.

C.

We do but

FWIW RSAC is entirely separate from RSA Security these days.

C.

To be clear...

It's 2GB per billion parameters. So a 10B model needs about 20GB.

C.

Dumas's musketeers

I actually read the book at the end of last year and brave, chivalrous and honorable are not exactly what I would call them.

Stubborn, self-absorbed, and arrogant springs to mind more.

C.

Re: Color me confused

Thanks for the nudge; we've added some links too for people who need or want more info.

C.

Childish much?

Yup, that's us.

C.

Twenty years in the can

I wanted Photoshop on macOS, but I compromised. I installed GIMP on Debian. I wanted to use Figma, but I compromised. I drew ASCII diagrams in Vim. You see where I'm goin'?

SEC

Is more about material impact to a business than specifically cybersecurity incidents but we can mention it in there.

cheers,

C.

Re: I had to look these up

They're just names of benchmarks - you're not expected to know what they stand for, just that they are individual tests.

"A Massive Multi-discipline Multimodal Understanding" doesn't tell you a whole lot more about it; it's just a benchmark called MMMU.

It's not like we're using something like LoRA and not spelling it out. What I have done is link through to the things, which gives you more idea of what they do.

C.

Oh.

That makes us sad because we try to make things clear. Sophgo is central to the story, so it's not noise.

Here are the main claims: TSMC was given a chip design to fabricate (TSMC makes chips for others, it doesn't design them) by a Chinese company, Sophgo.

TSMC thought that chip looked a lot like one of Huawei's and that Huawei had given its design to another company to give to TSMC to manufacture, with the resulting chips being funneled back to Huawei. US sanctions prevent TSMC from making chips for Huawei.

TSMC let the US know about it. In response, the US wants to penalize TSMC.

Does that make sense? I've revisited the article to clear it up best I can. If TSMC being punished seems confusing, well, that's the situation.

Also if something doesn't make sense, feel free to email corrections@ with your feedback so we can jump on it right away.

C.

Good translation

The translation is correct - we don't just use machine translation, we have Mandarin speakers on the team.

It's claimed to have INT8 performance of 8 TOPS, that's eight trillion 8-bit operations a second. As GJC said, INT8 is good enough for AI inference and chips can scream through 8-bit ops efficiently.

C.

OEMs

Ah, I disagree: I'm with Doublelayer on this one. When I think OEM, I think a computer maker that buys someone else's hard drives, processors, etc, and sells the complete thing to me. I've tweaked that sentence a little now to make it clearer for all cases.

C.

You're welcome!

Thanks for reading and taking an interest :-)

Book, Paige

Oh, yoink!

Re: Where is the detailed list of things Apple has to do

It's because you're looking for a list-like structure, I guess, but list is just our flippant way of describing it. It's (as the article states) a set of so-called specification decisions, which is typical obfuscated Euro-jargon. Hence why media is calling it a list.

I've added a direct link to the specs but we did summarize them in the piece, and the linked announcements also point to them.

C.

Just in case

...you're being serious, no in this instance, we mean older products.

C.

a native born foreigner and the other one is a non-man

Oh, here we go

Finding solutions to differential equations

It can help explain how to solve those sorts of equations; it can also suggest formula to use for a given situation. It can teach you trigonometry if you trust its output, for instance.

But if it can't even do 420*69 or something simple like that by itself, I'm not expecting it to come up with answers to differential equations. That said, it can walk you through the steps of solving these sorts of equations by yourself as it's ingested so many textbooks on the subject, etc.

LLMs are by their very nature lossy information retrieval and prediction, not mathematical packages.

C.

Re: All the advice tells you to return to factory settings

Yeah, sure - I've added that now.

C.

Congrats

Everyone knows Rupert's eleventy billion years old*. In fact, he just celebrated his birthday on March 11. Many happy returns, chief.

C.

* 94.

(I confess, I've worked for Viscount Rothermere. I've worked for Sly Bailey. But I've never worked for Murdoch, though I was quoted in the final NOTW as a friend was doing news desk shifts for them and needed to fill some space, and I had a story in The Sun ages ago about university security guards gawking at students through their bedroom windows using well-placed CCTV cameras.)

Re: How does that work?

AIUI, if the intermediate CA expires, the chain of trust is broken. Software -- standard cryptography libraries used by today's apps -- looks up the chain and sees the dead signing CA and rejects the signed device cert.

Per-device key-pair certificate --> signed by intermediate CA --> signed by a trusted root CA.

If the intermediate CA expires, the chain's toast, the device cert is invalid, and the device isn't trusted by the client app. It's not that the cryptography suddenly magically stops working mathematically, it's a decision by the client apps (specifically the libraries they use) to reject certificates that have an invalid chain of trust.

Hence why one of the workarounds is to push out apps patched to overlook the certificate expiry or hard code an acceptance of the last-known good certs.

C.

Or given today's relations with Russia

Skynyet

(Needs work)

Nothing is ever new

Yeah no doubt, but it's not like we can never speak of the FAA's IT again because it's already known to be wobbly in the past. This is the state of the situation here and now.

For fun, I've added a link to a 2000-era Reg piece on FAA systems.

C.

It's the modified AGPLv3

The issue, from the point of view of Suhy, is that v3.5 was released under a license that is basically the AGPLv3 with the CC tacked on. The AGPLv3, it's argued, says you can remove added restrictions, so that's what Suhy did. Took off the CC, leaving the AGPLv3, giving him, in his mind, the right to distribute a fork and make money from it.

Neo4j disagrees.

C.

This always happens around Nvidia earnings days

Calendar years and fiscal years aren't necessarily aligned; Nvidia's isn't aligned to the calendar.

As we said, "the fourth quarter of its 2025 fiscal year, the 12 months to January 26." Nvidia's fiscal 2025 runs from January to January a year head of the calendar year. So it's already in fiscal 2026.

C.

Grease is the word.

\0x00

Transcripts

Ah, we're kinda damned if we do, damned if we don't here - when we do (say) video interviews, we're asked for full transcripts; and when we provide full transcripts, it's a pain for some people.

We've done our best to make it readable but sometimes, when some of our vultures have a lot of other work on, we have to ship what we've got - and in this case, we shipped this as a full-length interview. There is a summary at the start if you can't read it all.

Also if there is anything confusing in it, feel free to drop us a note to corrections@theregister.com and we'll fix it up best we can. Cheers,

C.

Re: Constructive debate

We've written a whole about Rust over C but, yeah, we'll separately cover what it costs/takes to move a codebase over to Rust.

C.

Ghostly

Hi - welcome to the site. Yeah, I guess the white on red vulture does look a bit ghostly. Never thought of it that way!

C.

Balance

Hi - did you by the way miss our years of Snowden-NSA-Vault7-CIA coverage? Well, good news is that it's all there in the archive.

How about this one that got us a friendly visit from British intelligence representatives?

Also, we cover technology. We're not Foreign Affairs magazine.

C.

Re: What are "crypto devs" writing in JavaScript?

Oh yea, they do use JS for Web 3.0 cryptocurrency apps. There are SDKs and such for them

C.

Why is this OPINION article so openly biased?!

It's an opinion article. It's going to be opinionated. I thought you folks liked free speech? This is Rupert's – feel free to agree or disagree.

C.

The word classified doesn’t really mean anything sinister

This is gold-standard mental gymnastics. Why not make all classified info public right now, then, hmm?

C.

Re: One of them hasn't even lasted a day

Irritatingly that just came through after we finished this piece, so... stay tuned. Edit: Done.

C.

Apologies

The person responsible for adding Elon's pic was earlier removed by DOGE. An AI has now replaced them and inserted a suitable photo.

Thank you.

C.

Re: Say what?

We're not saying they are necessarily connected. If they were connected, we would have said so. We're saying that around the time the Linux kernel project was opening the door to Rust, the Azure CTO was remarking how good the language is for security and reliability.

From that you can infer Rust was at the time getting more recognition and support.

C.

Re: Usaid

It's a bit nuanced but we've added that as a break-out box. USAID was being probed by its own watchdog (its IG) regarding...

"how (1) the Government of Ukraine used the USAID-provided Starlink terminals, and (2) USAID monitored the Government of Ukraine’s use of USAID-provided Starlink terminals."

To me that speaks more to USAID's management of the situation, but the conflict of interest is great enough in any case that IMHO Elon should have stayed out of the agency's pending demise.

C.

'the excuse that Fujitsu innocently bought ICL unaware'

I don't think anyone's saying that. But happy to make the history of Horizon, ICL, and Fujitsu clearer going forward.

C.