By msmash from Slashdot's definitely,-maybe department
Microsoft may have plans to bring Windows Hello, one of the headline features of Microsoft's current operating system, to Android and iOS. Windows Hello is a feature that lets people unlock their PC with fingerprint, face, or iris. Paul Thurrott reports: With Windows 10 version 1607, Microsoft has expanded the Windows Hello authentication technologies to include support for companion devices. That we knew. But those companion devices, surprisingly, will include both Android and iPhone handsets. The question is whether those solutions will ever be made available to consumers.[...] On a Ignite 2016 session called Expand Windows Hello Family to companion devices and browser, Microsoft outlined some ideas around this. "When you think about a user and the kind of devices they carry with them," Microsoft senior program manager lead Anoosh Saboori said during the session, "they normally have the phone in their pocket, they [might] have some kind of wearable on their arm, some of them might have the security fobs given to them by their company, and many of us carry a badge with us that is used to gain access to different physical locations. We wanted to leverage these devices as a way to knowing the user."Read Replies (0)
By msmash from Slashdot's we-could-use-more-SSDs department
At its Global SSD Summit, Samsung shared its vision of the current state of SSD market and also outlined the future trends. The company noted that SSDs are steadily displacing HDDs in more applications, but NVMe is shaping up to be the dark horse that may put the venerable HDD to rest. From an article on Tom's Hardware: Samsung loves Google, and not just because it probably buys plenty of its SSDs. Samsung outlined its rather intense focus on Google Analytics for marketing purposes last year, and this year it pointed out that recent Google searches for "SSD upgrades" outweighed searches for "CPU upgrades." The historical trend indicates that this wasn't always the case (of course), but with 40 million searches for SSD upgrades this year, it is clear that SSDs are on the move. Performance stagnation in the CPU market is probably to blame here, as well, and we routinely advise readers to spend their hard-earned dollars on GPU and SSD upgrades before the CPU. The cellphone industry has long served as the prime example of an explosive growth market; it grew 19.1% in the last five years alone. SSDs, by contrast, grew 54%, and the steady downward pricing slope is a key factor. The all-important price-per-GB fell from $1.17 in 2012 to a mere $0.36 in 2016 (69% reduction). This is an average value, you can find SSDs for even less on the retail market. The SSD market grew 6x (to 130,000,000) from 2012 to 2016. Samsung's NAND shipments benefit from both the smartphone and SSD industries, and the company presented a chart that highlighted the changing NAND shipment mix. A higher percentage of flash heads into the SSD and Mobile segments every year as the percentage of UFD (USB Flash Drive), cards, and "others" decline.Read Replies (0)
By msmash from Slashdot's cc-eu-antitrust-folks department
Google is telling its home audio vendors that they won't be allowed to add support for smart assistants by rivals such as Amazon's Alexa if they want to continue to use Google Cast, according to Variety. The Mountain View-based company reportedly conducted a meeting in June with 50 of the biggest names of home audio to discuss the plan. The publication adds that Google's talks with OEMs were at least partially successful, with many of those companies planning to unveil their Google Cast-powered smart speakers as soon as next year. From the report:"Google Cast has become a Trojan horse," said one of the attendees, who wasn't authorized to speak on the record with Variety. Google's overtures to consumer electronics makers come at a time of upheaval for many home audio brands. Premium stereo equipment makers, in particular, have seen their sales diminished in recent years by both changing listening habits and a rapid evolution of technology. The move to streaming audio led music fans to massively embrace headphones and cheap Bluetooth speakers. Then Sonos came along and established itself as the market leader for premium Wifi-connected speakers. And finally, Amazon surprised everyone with the Echo, a device that redefined what a speaker does, thanks to smart voice control that can be used to request songs, news headlines, the weather, and even to order a pizza or an Uber.Weirdly enough, Google, Amazon, Facebook, IBM, and Microsoft announced a partnership this week to conduct research and promoting best practices on AI.Read Replies (0)
By EditorDavid from Slashdot's blaming-C department
"Most software, even critical system software, is insecure Swiss cheese held together with duct tape, bubble wrap, and bobby pins..." writes TechCrunch. An anonymous reader quotes their article:
Everything is terrible because the fundamental tools we use are, still, so flawed that when used they inevitably craft terrible things... Almost all software has been bug-ridden and insecure for so long that we have grown to think that this is the natural state of code. This learned helplessness is not correct. Everything does not have to be terrible...
Vast experience has shown us that it is unrealistic to expect programmers to write secure code in memory-unsafe languages...as an industry, let's at least set a trajectory. Let's move towards writing system code in better languages, first of all -- this should improve security and speed. Let's move towards formal specifications and verification of mission-critical code.
Their article calls for LangSec testing, and applauds the use of languages like Go and Rust over memory-unsafe languages like C. "Itâ(TM)s not just systemd, not just Linux, not just software; the whole industry is at fault."Read Replies (0)
By EditorDavid from Slashdot's send-in-the-clones department
Long-time Slashdot reader Ichijo
has a question about "(not quite) open source hardware":
One hardware project that calls itself "open source" doesn't want to make its hardware design source files publicly available because doing so would, in their words, "make it very trivial for e.g Chinese companies to start producing cheap clones... we'd be getting support requests for hardware we had no idea of the quality of." This answer was in response to a request by a user who wants to use the design in his own projects.
Have any other open source hardware projects run into support issues from people owning cheap "clones"? Have clones been produced even without the hardware design source files?
Leave your answers in the comments. Should an open source hardware project support clones?Read Replies (0)
By EditorDavid from Slashdot's see-media-for-pic department
"No matter how solid the system is, history reveals that false alarms -- of zombies, nuclear attacks, missing children -- are inevitable," warns an essay at Medium. An anonymous Slashdot reader summarizes the article: New York's police department is hailing emergency alerts as "the future" of government communications to citizens. But could the same system be used by scammers directing millions of people to a malware-installing site, or "a terrorist intent on causing mass panic (i.e., 'Tsunami imminent, evacuate immediately')... If the government can reach us at any time, who else can?"
The article runs through great moments in the history of false alerts -- including a 1971 incident where the national warning system mistakenly sent out the pre-nuclear attack warning, "normal broadcasting will cease immediately," and warnings in 2013 about zombie attacks in Montana, New Mexico, and Michigan. "To tell anybody that an agency is immune to these attacks would be a grave injustice," said the IT overseer at Iowa's Department of Public Safety.Read Replies (0)
By EditorDavid from Slashdot's peace-of-Pi department
"Today is one of the best days in Arduino history," announced Massimo Banzi, Co-Founder of Arduino LLC, calling it "a new beginning" for Ardunio. Slashdot reader ruhri reports:
Massimo Banzi and Federico Musto, co-founders of the Arduino Project, announced they have settled their differences that had resulted in the creation of Arduino LLC and Arduino SRL. A new, unified Arduino Holding and Arduino Foundation will be created.
"Massimo Banzi and Federico Musto took the stage today at the New York Maker Faire to announce the good news," reports a blog post at Arudino.cc. "At the end of 2016, the newly created 'Arduino Holding' will become the single point of contact for the wholesale distribution of all current and future products... In addition, Arduino will form a not-for-profit 'Arduino Foundation' responsible for maintaining the open source Arduino desktop IDE, and continuing to foster the open source movement by providing support for a variety of scholarships, community and developer initiatives."Read Replies (0)
By EditorDavid from Slashdot's just-ahead-of-in-time department
An anonymous Slashdot reader quotes InfoWorld:
Java applications will get faster startup times thanks to a formal proposal to include ahead-of-time compilation in the platform. The draft Java Development Kit proposal, authored by Vladimir Kozlov, principal technical staff member at Oracle, is targeted for inclusion in Java 9, which is expected to be available next summer. "We would love to see this make it into JDK 9, but that will of course depend on the outcome of the OpenJDK process for this JDK Enhancement Proposal," said Georges Saab, vice president of software development in the Java platform group at Oracle, on Thursday. Ahead-of-time compilation has been a stated goal for Java 9 to address the issue of slow startup...
The proposal summary notes that Java classes would be compiled to native code prior to launching the virtual machine. The ultimate goal is to improve the startup time of small or large Java applications while having "at most" a limited impact on peak performance and minimizing changes to the user workflow.
Tests indicates some applications perform better while some actually perform worse, so it's being proposed as an opt-in feature where dissatisfied users "can just rebuild a new JDK without ahead-of-time libraries."Read Replies (0)
By EditorDavid from Slashdot's sky-still-blue department
An anonymous Slashdot reader quotes ZDNet:
Microsoft rolled out this week the seventh Cumulative Update of fixes to Windows 10 Anniversary Update since the Anniversary version of Windows 10 began going to customers on August 2...causing installation issues for some users. I don't know how many are affected -- it's definitely nowhere near "all" -- but reports are coming in on Twitter and in Microsoft support forums from those who can't install the update, resulting (at least for some) in an endless loop of repeated attempts...
But a few of those affected have pointed out that when Microsoft first delivered this update to its "Release Preview" ring of Insider testers at the start of this week, some testers reported the installation failure/reboot issue. Despite those reports, Microsoft still pushed this update out to those not in the Insider program... Unsurprisingly, this issue is triggering a round of "What's the point of Insider testing?" questions. It looks to some like Microsoft is just ignoring Insider feedback...
Paul Thurrott reports that the problems are "widespread... Microsoft is pushing the idea that you should always patch your machine on the day the update is released as they often release security patches that fix vulnerabilities. But, until the company can get a handle on their quality control issues...it feels like every time you run Windows update you are rolling the dice."Read Replies (0)
By EditorDavid from Slashdot's see-you-in-court department
"Last December, the FAA rushed an arbitrary and ineffectual recreational drone-owners' registry into effect, mere days before Christmas and just in time to criminalize the flying of toys by thousands of children and hobbyists," argued The Daily Signal. Now Slashdot reader jenningsthecat reports on a promising legal challenge filed by a drone hobbyist who's also a lawyer, who is now "receiving financial help with his suit from the D.C. area Drone User Group (DC DUG).
In his Petitioner's Brief, John Taylor maintains that "(f)or the first century of American aviation and beyond, the federal government made no attempt whatsoever to regulate recreational model aircraft", and that "(t)he FAA seeks to revise history (PDF) when it argues its failure to register model aircraft, or otherwise treat them in any manner as 'aircraft,' in the past was the exercise of an 'enforcement discretion.'"
On a fund-raising page for the challenge, the group calls the federal registry "deeply concerning to users and prospective users of small unmanned aircraft."Read Replies (0)
By BeauHD from Slashdot's conservative-estimate department
An anonymous reader quotes a report from Business Insider: The actual tally of stolen user accounts from the hack Yahoo experienced could be much larger than 500 million, according to a former Yahoo executive familiar with its security practices. The former Yahoo insider says the architecture of Yahoo's back-end systems is organized in such a way that the type of breach that was reported would have exposed a much larger group of user account information. To be sure, Yahoo has said that the breach affected at least 500 million users. But the former Yahoo exec estimated the number of accounts that could have potentially been stolen could be anywhere between 1 billion and 3 billion. According to this executive, all of Yahoo's products use one main user database, or UDB, to authenticate users. So people who log into products such as Yahoo Mail, Finance, or Sports all enter their usernames and passwords, which then goes to this one central place to ensure they are legitimate, allowing them access. That database is huge, the executive said. At the time of the hack in 2014, inside were credentials for roughly 700 million to 1 billion active users accessing Yahoo products every month, along with many other inactive accounts that hadn't been deleted. In late 2013, Yahoo CEO Marissa Mayer said the company had 800 million monthly active users globally. It currently has more than 1 billion.Read Replies (0)
By BeauHD from Slashdot's something-smells-fishy department
An anonymous reader quotes a report from The Washington Post: The long-running feud between Elon Musk's space company and its fierce competitor United Launch Alliance took a bizarre twist this month when a SpaceX employee visited its facilities at Cape Canaveral, Fla., and asked for access to the roof of one of ULA's buildings. About two weeks earlier, one of SpaceX's rockets blew up on a launchpad while it was awaiting an engine test. As part of the investigation, SpaceX officials had come across something suspicious they wanted to check out, according to three industry officials with knowledge of the episode. SpaceX had still images from video that appeared to show an odd shadow, then a white spot on the roof of a nearby building belonging to ULA, a joint venture between Lockheed Martin and Boeing. The SpaceX representative explained to the ULA officials on site that it was trying to run down all possible leads in what was a cordial, not accusatory, encounter, according to the industry sources, who spoke on the condition of anonymity because of the ongoing investigation. The building, which had been used to refurbish rocket motors known as the SMARF, is just more than a mile away from the launchpad and has a clear line of sight to it. A representative from ULA ultimately denied the SpaceX employee access to the roof and instead called Air Force investigators, who inspected the roof and didn't find anything connecting it to the rocket explosion, the officials said. This week, ten members of Congress sent a four-page letter to several government agencies about the SpaceX explosion, raising the question as to whether or not SpaceX should be leading the investigation. Elon Musk said the investigation into what went wrong is the company's "absolute top priority." He added, "We've eliminated all of the obvious possibilities for what occurred there. So what remains are the less probable answers." SpaceX aims to resume flights in November.Read Replies (0)