Security quotes of the week
The bankers also fret that "future research, which may potentially be more
damaging, may also be published in this level of detail". Indeed. Omar is
one of my coauthors on a new Chip-and-PIN paper that's been accepted for
Financial Cryptography
2011. So here is our Christmas present to the
bankers: it means you all have to come to this conference to hear what we
have to say!
-- Ross
Anderson after a bankers' trade association tried to quash some
Chip-and-PIN research
Of course, in addition to the "green" advantages of this technology, there
are privacy implications. Even without your consent, the electric company
and the water company are permitted to continuously measure your use of
electricity and water; taken to the extreme, this monitoring alone could
tell them exactly when you use each and every device in your house.
-- Andrew
Appel on research that can identify the signatures of electronic and
water-based (e.g. sink, toilet) devices
Did you notice that? A two-terabyte rainbow table. A few years ago, that
kind of storage was largely theoretical. Now it's both cheap and portable.
-- Bruce
Schneier on GSM decryption