http://www.schneier.com/blog/ A blog covering security and security technology. Copyright 2013 Bruce Schneier Thu, 23 May 2013 09:18:26 -0500 http://www.movabletype.org/?v=4.38 http://blogs.law.harvard.edu/tech/rss This post by Aleatha Parker-Wood is very applicable to the things I wrote in Liars & Outliers: A lot of fundamental social problems can be modeled as a disconnection between people who believe (correctly or incorrectly) that they are playing a non-iterated game (in the game theory sense of the word), and people who believe that (correctly or incorrectly) that... http://www.schneier.com/blog/archives/2013/05/one-shot_vs_ite.html http://www.schneier.com/blog/archives/2013/05/one-shot_vs_ite.html Thu, 23 May 2013 09:18:26 -0500 This 127-page report was just published by the UK Defence Academy. I have not read it yet, but it looks really interesting. Executive Summary: This report presents a systematic way of thinking about cyberpower and its use by a variety of global players. The urgency of addressing cyberpower in this way is a consequence of the very high value of... http://www.schneier.com/blog/archives/2013/05/the_global_cybe.html http://www.schneier.com/blog/archives/2013/05/the_global_cybe.html Wed, 22 May 2013 12:05:54 -0500 For a while now, I have been thinking about what civil disobedience looks like in the Internet Age. Certainly DDOS attacks, and politically motivated hacking in general, is a part of that. This is one of the reasons I found Molly Sauter's recent thesis, "Distributed Denial of Service Actions and the Challenge of Civil Disobedience on the Internet," so interesting:... http://www.schneier.com/blog/archives/2013/05/ddos_as_civil_d.html http://www.schneier.com/blog/archives/2013/05/ddos_as_civil_d.html Wed, 22 May 2013 06:24:45 -0500 The Internet has turned into a massive surveillance tool. We're constantly monitored on the Internet by hundreds of companies -- both familiar and unfamiliar. Everything we do there is recorded, collected, and collated -- sometimes by corporations wanting to sell us stuff and sometimes by governments wanting to keep an eye on us. Ephemeral conversation is over. Wholesale surveillance is... http://www.schneier.com/blog/archives/2013/05/the_eyes_and_ea.html http://www.schneier.com/blog/archives/2013/05/the_eyes_and_ea.html Tue, 21 May 2013 06:15:11 -0500 All of the anti-counterfeiting features of the new Canadian $100 bill are resulting in people not bothering to verify them. The fanfare about the security features on the bills, may be part of the problem, said RCMP Sgt. Duncan Pound. "Because the polymer series' notes are so secure ... there's almost an overconfidence among retailers and the public in terms... http://www.schneier.com/blog/archives/2013/05/security_risks_8.html http://www.schneier.com/blog/archives/2013/05/security_risks_8.html Mon, 20 May 2013 06:34:17 -0500 Technically, it's a cuttlefish and not a squid. But it's still nice art. I posted a photo of a real striped pyjama squid way back in 2006. As usual, you can also use this squid post to talk about the security stories in the news that I haven't covered.... http://www.schneier.com/blog/archives/2013/05/friday_squid_bl_376.html http://www.schneier.com/blog/archives/2013/05/friday_squid_bl_376.html Fri, 17 May 2013 16:57:09 -0500 In the episode that aired on May 9th, about eight or nine minutes in, there's a scene with a copy of Applied Cryptography prominently displayed on the coffee table. This isn't the first time that my books have appeared on that TV show.... http://www.schneier.com/blog/archives/2013/05/applied_cryptog.html http://www.schneier.com/blog/archives/2013/05/applied_cryptog.html Fri, 17 May 2013 14:59:37 -0500 Here is a new lock that you can control via Bluetooth and an iPhone app. That's pretty cool, and I can imagine all sorts of reasons to get one of those. But I'm sure there are all sorts of unforeseen security vulnerabilities in this system. And even worse, a single vulnerability can affect all the locks. Remember that vulnerability found... http://www.schneier.com/blog/archives/2013/05/bluetooth-contr.html http://www.schneier.com/blog/archives/2013/05/bluetooth-contr.html Thu, 16 May 2013 08:45:20 -0500 As part of the fallout of the Boston bombings, we're probably going to get some new laws that give the FBI additional investigative powers. As with the Patriot Act after 9/11, the debate over whether these new laws are helpful will be minimal, but the effects on civil liberties could be large. Even though most people are skeptical about sacrificing... http://www.schneier.com/blog/archives/2013/05/transparency_an.html http://www.schneier.com/blog/archives/2013/05/transparency_an.html Tue, 14 May 2013 05:48:13 -0500 Mildly interesting.... http://www.schneier.com/blog/archives/2013/05/2007_nsa_manual.html http://www.schneier.com/blog/archives/2013/05/2007_nsa_manual.html Mon, 13 May 2013 08:15:20 -0500 It's at the end of May. Note that it's being put on by the Calamari Entertainment Group. As usual, you can also use this squid post to talk about the security stories in the news that I haven't covered.... http://www.schneier.com/blog/archives/2013/05/friday_squid_bl_375.html http://www.schneier.com/blog/archives/2013/05/friday_squid_bl_375.html Fri, 10 May 2013 16:26:12 -0500 Wise advice: At Chase Bank, we recognize the value of online banking­ -- it’s quick, convenient, and available any time you need it. Unfortunately, though, the threats posed by malware and identity theft are very real and all too common nowadays. That’s why, when you’re finished with your online banking session, we recommend three simple steps to protect your personal... http://www.schneier.com/blog/archives/2013/05/the_onion_on_br.html http://www.schneier.com/blog/archives/2013/05/the_onion_on_br.html Fri, 10 May 2013 13:49:42 -0500