Martin Holst Swende maintains a free/open tool for testing software that uses the (notoriously flawed) Iclass Software, which is used by Inside Secure for its RFID-based access systems.
Now, Inside has sent Swende a legal threat, asserting that it holds a patent on the (again, flawed) Iclass algorithms, and that by implementing them in a test suite (and embarrassing Inside), he has violated the patent. They want him to erase the evidence of their incompetence.
In the world of “internet security”, where the sky is falling every other month, there is hardly much controversy any longer about full-disclosure email lists, exploitation frameworks and reverse engineering. Nowadays vendors, institutes and organizations offers bug bounties and competitions, and there is a high level of transparency regarding flaws and fixes, using a common rating system for vulnerabilities.
In “internet security”, all parties know that systems suffer from vulnerabilities, and if vendors are being forthcoming about vulnerabilities, users can take necessary steps to protect themselves from unnecessary risks. Controversy nowadays is generated by the sale of 0-days to private (and government) actors, since users are left as sitting ducks to those with enough money and resources.
In “internet security”, a vendor is given credit not for providing fail-safe invulnerable systems, but for responsible, accurate and timely security patches and advisories.
By contrast, the “physical security” scene appears about a decade behind, and I don’t believe this to benefit neither the customers, nor, in the long run, the vendors themselves.
Legal woes [Martin Holst Swende]
In my latest podcast (MP3), I read my Green European Journal short story about the terrible European Copyright Directive which passed last March, False Flag. Published in December 2018, the story highlights the ways in which this badly considered law creates unlimited opportunities for abuse, especially censorship by corporations who've been embarassed by whistleblowers and […]
Canada's Conservative Party is terrible, and it has terrible policies, and it will be terrible for Canada if they are elected. I already voted against them with my mail-in ballot. That said, the CBC is 100% wrong to sue the Tories for copyright infringement over the inclusion of short debate clips in Conservative campaign websites […]
Greg from the Free Software Foundation writes, "Celebrate Saturday's International Day Against DRM with this shareable "dead tree" book dust jacket!"
Still using elbow grease to clean the sinks, tubs and other grimy surfaces around your house? Save your elbows, and some time. If you’ve got a power drill, the RevoClean® 4-in-1 Drill Brush Cleaning Kit will instantly turn it into a professional scrubber that can tackle any stain on any surface. Attach the 4″ nylon […]
Need data storage? Join the club. It may still seem like the wild west out there, and for many companies, it’s a tough choice between security and accessibility. Luckily, there’s a platform that gives you a lot of both: Polar Backup Cloud Storage. Whether you’re a busy private citizen or managing valuable company data, Polar […]
There are a lot of different language apps out there because nobody learns anything the same exact way – especially not something as complex as a new language. For some people, the best way is to dive in and start talking, but that’s easier said than done if you’re not around those natives you aspire […]