Someone from Cisco went on stage to propose weakening TLS 1.3 for "network-based security solutions" (enterprise spyware).
There was a long line at the mic of people pushing back on it... I almost felt bad for the poor speaker 🙂
Well, I guess it's not looking good for privacy and encryption https://it.slashdot.org/story/19/07/23/141222/ag-barr-says-consumers-should-accept-security-risks-of-encryption-backdoors
The darkest of UX patterns. Interrupt what people actually want to see (their feed) with a thing that sounds like it’s good, with a big obvious blue button that will make it go away, while uninformed users are actually “opting in” to invasive, privacy-destroying tracking.
Is this a question? Because it doesn't seem like I'm able to say "no".
Let's Encrypt's ECDSA root certificate is postponed AGAIN?! I've already been waiting for 2 years...
It wouldn't provide much security benefits, but making the certificate chain fits within fewer TCP packets would speedup the handshake dramatically.
[アニメ会社放火 男性１人死亡 死者34人に 警察]
Just found out about this and I'm very into this model of social media! keep up the good work @Gargron
To be clear, I think it's good to have companies care about hardware integrity in addition to software integrity. But if all these attempts of hardware integrity rely on giving all control of the machine to these companies rather than the end user, while all the solutions also being completely proprietary and not auditable, I'm just going to call them bullshit no matter what. Any integrity guarantee without audiatbility and user control is just nonsense.
Former Android Developer / Linux User / Student / Otaku / Manages angry.im / Alias [email protected]
The social network of the future: No ads, no corporate surveillance, ethical design, and decentralization! Own your data with Mastodon!