sanketh boosted

Why paper-based election are great? Because the critical path is easy enough to understand and check by everyone:

1. You get your election paper and your ID is checked so you are allowed to vote
2. You check that all parties are listed
3. You check that no one is shoulder-surfing you while voting
4. You put it into the right box
5. You watch the election committee counting and reporting the correct numbers.

For electronic elections, let me ask one question: How does a kernel work?

sanketh boosted

Over on that other microblogging platform, John Baez points out how easy it is for mathematical physics crackpottery to get published in a prestigious-sounding pay-to-publish journal from an actually-prestigious publisher, Nature Scientific Reports: twitter.com/johncarlosbaez/sta

In the ensuing discussion, Flavio Nogueira reports that editors rejected papers only to see them published anyway: twitter.com/F_S_Nogueira/statu

Should we start treating Nature as a predatory publisher?

sanketh boosted

Open Privacy has released Cwtch Alpha 0.3.1.

It looks like you can now create and use multiple user profiles, which can optionally be password-protected. Interesting!

openprivacy.ca/blog/2019/12/17

@wi1lson I'm too lazy to fire up hashcat, but if you're using scrypt then I think XKCD passwords are still secure. Even with password managers, one still needs to remember passwords (for example, the master password for the password manager), and if one's using scrypt, then one might be able to get away with 4-word XKCD passwords.

sanketh boosted

@R10T I'm curious now, why isn't S/MIME more popular in organizations? Isn't it rather easy to implement internally?

Infosec Exchange

A Mastodon instance for info/cyber security-minded people.