At The Economist, Glenn Fleishman writes about a fundamental flaw in the industry standard security system for websites, SSL, familiar to all of us as the little lock icon that appears for 'secure' websites. Recently, a cracker was able to issue himself security certificates for domains at Skype and elsewhere, making clear the problem of assigning trust to certificating authorities just because.
The secure web infrastructure was designed in part to defend against this. The browser may be tricked into connecting to a server designed to extract your identity or intercept communications, but the browser will see the wolf under the sheep's clothing. It will alert the user and hinder him from connecting to a server that lacks a certificate, issued by some CA, for the domain it claims to be representing. But if a valid certificate can be obtained, neither the user nor the browser have any idea that they have been hijacked.
A big part of the problem seems to be the willingness of browser- and OS-makers to turn a blind eye to sleazy CAs.
The web's trust issues [The Economist]
The public bathroom at Beijing’s Temple of Heaven Park now has a toilet paper dispenser outfitted with a camera and facial recognition technology to prevent toilet paper theft. From the New York Times: Before entering restrooms in the park, visitors must now stare into a computer mounted on the wall for three seconds before a […]
Poking a golden tortoise beetle (“goldbug”) triggers the insect’s color to change from gold to a red-orange. Inspired by the natural system underlying that insectoid superpower, MIT researchers have developed flexible sensors circuits that can be 3-D printed. Eventually, the technology could lead to sensor-laden skin for robots. From MIT News: “In nature, networks of […]
MNTNT’s Albert Clock is a clock that presents the hours and minutes as simple math problems. Is it annoying or engaging? Or…. both! In standard mode, the queries change every minute. They are completely random, so even the query for the hours change, even if the result stays the same. You can speed up this […]
You know the drill. You go to the dentist and they ask you how often you floss. You lie through your teeth and say, “every day!” (Bonus points if you have some cilantro or chives stuck in your gums from lunch). You don’t want to keep up the charade any longer, but rubbing that tiny strand […]
The Raspberry Pi Foundation has done outstanding work packing a fully capable desktop computer into a package the size of a deck cards—especially one that only costs $35. But if you already have a working laptop, why should you care? Oh, how much you have to learn. Besides operating well as a compact digital media hub, […]
Custom coffee vessels are the perfect piece of office flair, but it’s just a matter of time before your VOTE FOR PEDRO mug will start to lose its relevant wit. Why not have a new one every day, with whatever silly nonsense you want sticking off the sides? You can save big on your novelty […]