now we know why Joanna is so paranoid...
Posted 01 March 2007 - 05:31 PM
Now look what she's gone and done!
Based on this, maybe Swami was ahead of his time...
Posted 05 March 2007 - 09:40 AM
I have been reluctant to mention her here, but breaking the silence is just what is needed. Please keep in mind that the breach happened on an x86 hardware platform, which to my mind points to its ultimate decrepitude, but also to the inevitability of going to a closed hardware platform for general-purpose computing. Also, it should be noted that had she had any hardware background, mounting her attack would have taken decidely less time than it did.
Given the present situation, going to such a structure will be viewed as having withdrawn some particular advantage to a user, but then how many times has a typical user actually cut a trace or soldered anything to their mainboard these days? It can be done one of two ways: tyranically, as M$ is currently trying to implement with impugnity, or beneficially by Mr X who has yet to show up on the scene, and completely redesign the GP computer from the ground up, learning from the mistakes of the past, as well as looking forward to the future, maybe 20 years out, and anticipating the needs of the one who actually purchases the equipment, makes available a machine that one can actually use for a long time to come, and in a safe manner.
There really isn't any excuse for not having optimal performance and security in the same package: those who would tell you otherwise are either lying, or selling x86 and Windows. TWhat will make the difference is for someone to perceive consumer demand for such a machine and act accordingly, which in view of the M$/Intel propaganda machine has yet to materialise, but this may be changing.
The subject of where we have been and where the computer "industry" is going is fascinating, and very complex, taking in diverse factors which range from design to politics, but thusfar, it is the consumer that is the one who has been consistently left out in the cold. Perhaps this is changing as well, its too early to tell, but for now (and subject to change) it appears that Joanna has driven a stake into the heart of the platform pretty much al of us grew up with. I for one accept her tenets unreservedly.
Posted 04 April 2007 - 11:12 AM
Some corporations have taken to filling in the USB ports with glue in an attempt to protect corporate data from walking out on memory sticks, or malware walking in. As it stands, the only way to completely secure the current PC hardware/OS platform is to 'airwall' it - locked away in a room, connected to nothing and used by no one.
There was one interesting idea that I heard about a few years back that may or may not be in legitimate use - a shim that goes between the kernel and everything else, with the idea being to prevent anything outside of a small set of well defined calls being allowed. Of course, this component could possibly be hacked as well.
Posted 13 April 2007 - 07:37 PM
Unified Network of Instructors and Trained Eliminators - Member since 2007
Rants and other stuff: NoIdea.US
Posted 16 April 2007 - 11:57 AM
The problem of OS security through self-policing/auditing is somewhat like psychology - a compositional problem where a certain amount of 'circuit loading' or Heisenberg's uncertainty principle comes into play. In order for the OS to verify that it has not been compromised, it cannot already be compromised. Hence the argument for auditing by a separate entity.
Posted 17 April 2007 - 12:06 PM
ease of use: microphone replaces kb and mouse for most actions;
universality: the computer will do anything the user wants it to, except attack another computer or allow itself to be compromised;
robustness: MTBF, 10 years min, guaranteed; no planned obsolescence;
15 seconds max from power on to ready-to use;
you own it outright, no licensing schemes or any other crap, except maybe a nominal extended repair warranty;
that's just s thumbnail of what I have been thinking about over the past 6 months or so; there's a lot more to it, but to summarise from a human/consumer pov, the promises of the so-called "digital age" would finally be fulfilled: that would be my goal as the CEO of this mythical company in a nutshell