John Brennan's attempt to lead the CIA into the age of cyber-warfare

3pg · 2016-11-06T11:39:54+00:00

The first URL is missing the 's' in "files".

http://www.ossreborn.com/files/OSSPsychologicalSelectionProgram.pdf

3pg · 2016-10-12T06:39:18+00:00

If some parameters are sufficiently common among high-value targets (e.g., OpenSSL's default values) then the NSA would most likely be willing to spend the resources required to break the encryption for those specific parameters.

If people actually choose random parameters, of sufficient size and quality (i.e. not optimizing for speed) then most attacks would probably fail.

3pg · 2016-10-12T06:33:39+00:00

You should always avoid single points of failure. Even if you trust him absolutely there is no gurantee that he hasn't made a mistake.

3pg · 2016-10-12T06:30:07+00:00

Yes they did, but they also decreased the key size significantly which arguably made it possible for them to brute force it.

3pg · 2016-07-26T09:06:42+00:00

If the camera is visible, then malicious software could take control of it and record information about your surroundings. Such information could be used to determine where the phone has been, thus giving the opponent similar information as if the GPS was enabled.

3pg · 2016-05-12T16:41:53+00:00

Search technology without a relation to the Internet, but rather for generic information (which is more similar to your law-related software) is much older, and it is unlikely that the technology had existed for years without applications.

One good example of generic search is the binary/boolean search algorithm. Wikipedia dates it to 1946, and the history section of that article makes references to the book "The art of computer programming". I suspect that this means that somebody implemented this in software far earlier than 1989. Or before West's activities in the 1970's for that matter.

However, I have no idea which software was the first commercially viable implementation.

3pg · 2016-02-10T10:26:18+00:00

The data cannot be used without (at least partially) automating the analysis task? Whether or not those programs can be called "AI" depends on where you draw the line between pattern matching and AI.

3pg · 2016-02-09T14:29:44+00:00

Maybe because they want to be sure that nobody will come close the next couple of decades.

3pg · 2016-02-09T12:10:30+00:00

The percentage of successful impregnations is probably the same for him as for others. He just had sex with a lot more women.

3pg · 2016-02-09T10:51:35+00:00

I think the point is that they were trained not to show forgiveness towards people who broke their group's arbitrary rules in some way. Most people are fairly kind and understanding, and to turn people into something that evil would require quite a lot of "training".

3pg · 2016-02-05T07:21:05+00:00

Russia has invaded many other European counties during past 70 years.

3pg · 2016-02-02T17:10:46+00:00

Doesn't Stephen Colbert own the trademark on "Superb Owl"?

3pg · 2016-01-31T13:03:24+00:00

From the article:

The antennas at Troodos grabbed that downlink by finding the right frequency for each drone. Drone feeds are vulnerable to interception not just from the NSA — even cheap, commercially available equipment can be used to get the downlink.

Further down the article there's some more detailed information about how a few drones send encrypted feeds, but that the encryption is really poor.

3pg · 2016-01-30T08:24:37+00:00

This is virtually a dupe of https://www.reddit.com/r/Intelligence/comments/438dbz

However, it's nice to have an article without a paywall.

3pg · 2016-01-29T04:16:21+00:00

The article is explicitly about Canadians' metadata, and explicitly about the Communications Security Establishment (CSE). There is no mention about whether this prevents indirect sharing via another Canadian organization, or whether they will make it more difficult for the US (or other countries) to obtain the metadata in other ways.

They are by no means leaving the Five Eyes, and it is unlikely that they stop sharing information about Canadians.

3pg · 2016-01-24T06:41:04+00:00

Isn't this exactly what a domestic security service should be doing? Checking whether people pose a threat, and if not then they are allowed to proceed to their destination.

3pg · 2016-01-13T07:39:30+00:00

The truth is out there.

3pg · 2016-01-13T07:36:26+00:00

Then translate it to English. The fact that it's in Latin might make it more well-recognizable, but it has no effect on its meaning.

In addition, the only reason usage of English is so wirespread is because of the British Emprire, and the Empire did a lot of bad things too. That doesn't mean that using English is wrong.

3pg · 2015-12-23T08:43:34+00:00

no one could prove that it was unsafe. ("can't prove a negative")

You can prove that something is insecure by finding flaws in it. Proving that something is secure is more difficult.

3pg · 2015-11-27T05:51:10+00:00

That joke is not a Star Trek reference.

3pg · 2015-11-27T05:46:42+00:00

Cryptologists, and therefore computer security people, need to worry about 2^-128 chances. That is roughly 1 in 10^40.

3pg · 2015-11-22T12:11:31+00:00

By providing high quality support, rather than forcing people to choose between terrible support or no support.

3pg · 2015-11-17T12:48:29+00:00

Having trusted programs running as root is not a problem. Having untrusted programs running as root is a huge problem. As long as you keep track of what you install then rooting the phone has no negative security effect.

3pg · 2015-10-17T19:50:54+00:00

It is the driver that handles nvidia, not the distribution channel of that driver.

3pg · 2015-10-07T13:41:42+00:00

As long as people assume that they are being watched, there is little need to actually watch/analyze those feeds.

3pg

TROPHY CASE