kennwhite

@kennwhite@mastodon.social

cryptography • neuro • cloud • biscuits
ORD-DCA-NYC-BCN ✈️

This profile is from a federated server and may be incomplete. Browse more on the original instance.

kennwhite, to random

The Bard team has a lot work to do.

kennwhite,

@Nonya_Bidniss maybe his legs were crossed on the other side of the spacetime continuum

kennwhite, to random

Wired is running a sale - $5 for a year-long subscription, $6 for digital+print. Good chance to support great security journalism by pros like @lhn and @agreenberg.

https://www.wired.com/v2/offers/wir003

mattblaze, to random
@mattblaze@federate.social avatar

Fully half of my professional career has been refuting terrible ideas put forward by people and policymakers who are freaked out by encryption.

kennwhite,

@mattblaze half of my career has been refuting terrible ideas put forward by developers who think they understand encryption.

kennwhite, to random

How about hell no?

kennwhite, to random

It is 25 January this day of our Lord 2024 and Azure Key Vault service still does not support AES keys.

kennwhite, to random

them: aren't you afraid of losing your job to AI?

me: "chatgpt, generate an image of a passenger in a crowded airplane sitting in a middle seat in the last row."

chatgpt:

kennwhite,

@eagerpebble that's the no-frills budget option.

kennwhite, to random

These two very good doggos waited patiently for a little bite of carrot cake. They both turned 4 this week.

small poodle mix sitting patiently looking at camera

kennwhite,

@geekgrrl of course!

kennwhite, to random

my dogs are silly

image/jpeg
image/jpeg

kennwhite, to random

Thinking about Dan Kaminsky's quote this morning about the necessary lies we tell ourselves about computers. Specifically, the myth of boundaries between users. Great write-up by @lhn on the "LeftoverLocals" GPU vuln. Nice work by the @trailofbits team.

https://www.wired.com/story/leftoverlocals-gpu-vulnerability-generative-ai/

wendynather, to random

To celebrate , even though I’m not there, I’ll relate a story from my first time there, which was at least ten years ago …

Everyone was in the typical hacker hoodies and black t-shirts. I decided I’d be a REAL nonconformist and wear business drag. So I went out and wandered around the vendor tables.

One of the dudes at a vendor table asked me hesitantly, “Do you … do security?”

“Fuck it,” I said, and went back to my room and put on a black t-shirt.

— the end —

kennwhite,

@wendynather obligatory:

kennwhite, to random

I spoke with @b_fung at CNN on technical aspects of the recent Beijing campaign to crack down on pro-democracy activists sharing information through iPhone's AirDrop function.

https://www.cnn.com/2024/01/12/tech/china-apple-airdrop-user-encryption-vulnerability-hnk-intl?cid=ios_app

kennwhite,

@dneto @b_fung yep, it was reported to Apple in 2019
https://privatedrop.github.io/

"[W]e define the threat model and discuss that cryptographic hash functions cannot hide their inputs (called preimages) when the input space is small or predictable, such as for phone numbers or email addresses. […] We disclosed the leakage in May 2019... Apple has not yet commented if they plan to address these AirDrop issues."
https://www.usenix.org/system/files/sec21-heinrich.pdf

kennwhite, to random

Periodic reminder: Using a rainbow table is not "breaking encryption". And also, AirDrop is not anonymous, particularly in share-with-Everyone mode.
https://privatedrop.github.io/

kennwhite,

To be clear, the work that Alexander Heinrich and colleagues and other researchers have done on reverse-engineering AirDrop and discovering serious design flaws is terrific research. My comment is aimed towards media in the latest Beijing claims.

wendynather, to random

Folks, please do be careful at and elsewhere. Here’s how I got my two bouts of :

  1. Speaker dinner in DC. I usually don’t do group meals any more, but I was stupid. Some consultant next to le was all up in my face talking about AI for two hours, and I probably got it from him; my friend across the table didn’t get it.

  2. Sitting masked in a doctor’s waiting room for an hour while my kid had an appointment. I was the only masked person there and someone nearby was coughing.

I have now been sick for a total of eight months — just as I was slowly working my way out of , I got hit again and I’m back to extreme fatigue, brain fog, and tachycardia.

Don’t let this happen to you.

kennwhite,

@wendynather I'm so sorry Wendy. You're probably tired of google medical school opinions, but I was pleased to see some really positive outcomes from low dose metformin. Topol did a nice job covering it: https://erictopol.substack.com/p/a-break-from-covid-waves-and-a-breakthrough. But anyway, sending all the good vibes and hugs your way.

kennwhite,

@wendynather 💔

kennwhite, to random

Got really annoyed at my kid for breaking the screen on her iPad but then when I googled the model number to see how bad the repair would be I found “iPad Air 1st Generation 9.7 Inch 2013”. Welp...

joebeone, to random
@joebeone@techpolicy.social avatar

Triple cream brie, enough said.

A picture of the triple cream brie in question, Auguste & fils Le Petit

kennwhite,

@joebeone yes, please.

Nickde, to random
@Nickde@pixelfed.social avatar

The business end of the Audemars Piguet 5134 caliber, updated version of the 2120. 4.31mm of beauty.

kennwhite,

@Nickde gorgeous and so satisfying.

kennwhite, to random

I missed this over the break. Excellent write up by @dangoodin on one of the most complex iPhone hacks in recent memory. https://arstechnica.com/security/2023/12/exploit-used-in-mass-iphone-infection-campaign-targeted-secret-hardware-feature/

kennwhite, to random

As a fellow security person himself (intrusion detection), Sebastian wishes you a happy birthday today too, to all who celebrate.

kennwhite, to random

them: aren't you worried that AI is going to put you out of a job?

me:

  • All
  • Subscribed
  • Moderated
  • Favorites
  • megavids
  • kavyap
  • DreamBathrooms
  • thenastyranch
  • magazineikmin
  • osvaldo12
  • ethstaker
  • Youngstown
  • mdbf
  • slotface
  • rosin
  • everett
  • ngwrru68w68
  • khanakhh
  • JUstTest
  • InstantRegret
  • GTA5RPClips
  • Durango
  • normalnudes
  • cubers
  • tacticalgear
  • cisconetworking
  • tester
  • modclub
  • provamag3
  • anitta
  • Leos
  • lostlight
  • All magazines
    •