Schneier on Security

Clive Robinson • September 2, 2023 5:18 PM

@ vas pup, ALL,

Re : AI with agency

In many countries it’s not legal for a veichle on public roads to be autonomous. That is there has to be a human “directing mind” in control so that direct legal liability exists.

The same should obviously be true for all machines with agency, especially where the agency covers the ability to kill or maim or in any way bring harm to humans etc.

But consider this,

If an AI has the ability of human level agency, it also has the ability to fabricate and lie. Thus AI at that level even if it does not have the agency to pull the trigger, will have the agency to provide fake information, so the human with agency makes a wrong decision and pulls the trigger for the AI…

It’s a subject most avoid and it’s a conversation we should be having, before we talk about even thibking of giving AI any kind of battle field capability or agency.

But you can bet that we probably won’t… Because even current near usless AI has so many advantages for the War Hawks they don’t want to do anything other than steam straight ahead and ignore the iceberg warnings.

Look at it this way, modern fighter aircraft have a lot of extra weight and performance limitations because there is a human onboard. It also makes the fighter very expensive for the actual payload capability.

Why spend 1.5billion an a limited capability fighter with a human in it when you can get five or ten higher capability AI driven drones for the same price?

Oh and remember drones will “suicide” without worry…

It’s why we developed “cruise missiles”.

Look on drones as just cheap cruise missiles that can come back home, and you start to see how War Hawks see them, as just the next gen of reusable smart weapons.

Clive Robinson • September 3, 2023 8:41 AM

@ Robin, ALL,

Re : UK NATS out for the count.

“There are some events that just make my head spin in disbelief. How is it possible that a pilot can submit a malformed plan and totally crash such a critical system?”

I can easily believe it, I’ve seen similar happen many times in “large systems” built from smaller systems supplied by unrelated suppliers working to contract / specification.

Firstly though note it did not as such “crash the system” what some will consider was an “over abundance of caution” caused NATS to switch to a “manual process” rather than a much faster “automated process” out of safety concerns, and so the “sticky as glue factor” kicked in.

The fact that flights still happened all be it at lower capacity attests to the fact “Plan B” worked all be it at much less a capacity due to I suspect a lack of personnel (due to managment cutting them back for financial cost reasons, inspired by certain UK politicians).

The system that stopped on incorrect input, stopped for a reason, what it was and the logic behind it we don’t know but it’s probably in the system specification.

This happens so often in reality with desktop software where you get the “Blue Screen of Death” or similar it should actually not be that much of a surprise.

There are generally three reasons for this,

1, Incorrect or no handling of exceptions or output errors.
2, Moving error checking to the left.
3, No ability to roll back erronious input.

I could go one explaining it further as I have a number of times in the past, but it’s drawn very hostile responses from certain people who just don’t “get it”.

But a fun thing for people to think about, imagine using the software you are familiar with, being used for a large database system with very high through put. Ask yourself what would happen if / when the OS driver reports “no more hard drive space”?

It’s a question I ask quite often and generally it gets a “but that can’t happen” type response, even though it can as there is nothing in place to make the assumption even close to true. Oh and you rarely see it in test let alone system specifications produced by “the software industry”. As for roll back and fail over few software developers know how to do it properly, and managment hate it because of the overhead it carries.

Me I’m aware of it as I’ve designed systems that several billions of dollars of petro-chem systems rely on, and if they did fail to work correctly… Look up Piper Alpha, to see why I’m cautious, then look up the various chemical factory disasters. My job used to be to design systems where “That Can Not Happen”.

So I know what effects can cause what looks like an over abundance of caution.

So consider, what every one would be saying if NATS had in effect ignored the problem and an aircraft or two had run out of fuel or similar causing a couple of hundred deaths?

Clive Robinson • September 3, 2023 8:23 PM

@ vas pup, Winter,

Re : AI lie / deception.

“what is the motive of AI to fabricate and lie? Does AI have own agenda in such cases?”

First think on why creatures do things or can be trained to do things, importantly it does not require them to be inteligent just have agency, a reward system, and some kind of memory which alows a system to “hunt back and forth” to optomise a reward.

It’s actually fairly easy to design a servo system where when you adjust an input the output follows, over shoots, under shoots and so on minimising the ringing (usually exponential decay or percentage of a percentage). The frequency of the ringing is based around the “loop response time” or delay.

Now consider three servos effectively wired in a ring with the input of the first driven by the output of the last. The arangment will oscillate stably. If you put a series tuned circuit in between any two servos then whilst the ring will start oscillating at any frequency it will generally settle at the resonant frequency as in effect this gives a maximum signal around the ring. If the tuned circuit frequency is changed then the loop will follow.

That is without any kind of inteligence involved the loop will hunt out the maximum signal frequency. That is it acts like a reward process. A similar trick can be seen with two pendulums that are at similar frequencies and weakly coupled. They will become synchronized (loose locked oscillators).

Many dynamic systems exhibit this sort of “reward process” and it can get quite sophisticated, such as some plants turning their leaves to follow a light source and single cell organisms headong towards the light, or away from acids etc.

So you can have other systems with two or more reward processes. If the reward process has a nonlinear response then apparently chaotic behaviour can result (you can see a chaotic system with a doubly jointed pendulum).

How ever you can make “Dynamic filters” using summing circuits, delay lines and feedback.

As I’ve mentioned before these “Signal Processing” circuits when sufficiently complex can form certain types of simple “neural networks”.

Thus if they can “self adjust” at some point they become a basic AI ML system that selects it’s own “reward”.

This kind of behaviour was exhibited back in the 1990’s when they got randomly driven inputs to neural nets to form oscillators.

You might remember when two ML systems developed their own –weak– crypto system?

Well people have taken it further. So “non inteligent” systems can develop information hiding / obscuring techniques which brings us onto @Winters points.

Clive Robinson • September 4, 2023 9:50 AM

@ ALL,

Re : Web App v. Native App.

The Register has published an article based on a paper[1] from “Vrije Universiteit”(VU) in the Netherlands,

“So you want to save energy? Ditch web apps and go native, boffins say”

https://www.theregister.com/2023/09/04/web_native_apps/

Researchers analyzed the energy usage of 10 internet platforms that offer content access through both native Android apps and the web.

Perhaps unsuprisingly the native apps genetaly need less energy and resources, as you would expectvthem to be both “closer to the metal” and “better optimised”.

But… As we all know it’s not just resource utilisation we should consider, there is Privacy and Security as well.

So when you find the following paragraph,

“While web apps use more energy than native apps, they also send and receive less network traffic. The researchers posit this may be a consequence of web devs being incentivized to reduce bandwidth usage because web apps often have to be reloaded on startup.”

You should ask yourself the question,

“Why would the native app have more network traffic?”

They don’t say “which way” so it might just be “beautification” on the web pages…

But call me suspicious or even paranoid, but we know “Native Apps” can reach further into your Private Information on a device than Web Apps can.

Further I know from long experience, any one foolish enough to trust LinkedIn is going to have their privacy violated. As LinkedIn have a very long history of doing so and something tells me they will never change their spots.

[1] The researchers at VU pre-print paper,

“Native vs Web Apps: Comparing the Energy Consumption and Performance of Android Apps and their Web Counterparts”

by,

Ruben Horn, Abdellah Lahnaoui, Edgardo Reinoso, Sicheng Peng, Vadim Isakov, Tanjina Islam, and Ivano Malavolta.

https://arxiv.org/abs/2308.16734

Clive Robinson • September 5, 2023 7:06 PM

@ Bruce, and the usual suspects,

One of the down sides of increasing security in one area, is it makes security less in other areas.

The classic is when things get “blocked” by security software, the user does not get to see “trouble” and learn to runrecognize it.

But more fun is when the blocking is imperfect for some reason…

https://techxplore.com/news/2023-09-scammers-abuse-flaws-email-forwarding.html

Clive Robinson • September 7, 2023 10:23 PM

@ SpaceLifeForm, ALL,

Re : Microsoft is apparently trying.

It’s not “apparently” microsoft are “very trying” at the best of times, especially when tjey make security mistakes that were condidered dumb / rookie two decades ago or more.

“Out-of-band helps because the private key would not have been in a crash dump.”

The problem with crash dumps and “root of trust” secirity values such as crypto keys was well known in the *nix community back in the 1980’s. So Microsoft are fourty years late to the party.

Last century I investigated quite a few ways to make “in memory secrets” worthless to direct (memory freezing) and indirect (software tools) attacks. I even mebtioned them on this blog (try searcging for “snake eating its tail).

I even explained in depth the idea behind “data shadows” that effectively encrypted the security value with the equivalent of a One Time Pad that changed continuously.

@RobertT explained a similar idea bassed around –if I remember courtctly– Lorenz chaotoc/ strange attractors.

In effect the “root of trust” is stream encrypted with a known length of key that is considerably longer than the “root of trust” thus decrypting it requires the attacker to know several things that remain hidden in the CPU registers that change at the rate of a “fast interupt”.

In say a “block cipher” the “root of trust” is mostly considered to be the “Encryption key”. However in reality in software it is actually the “round sub-keys”. These get stored in what is in effect an array in the algorithm, so you do not need the “encryption key” just the contents of the array, which a crash dump will give you.

The way around this is to “whiten the array values in use”. That is what ever the array value is it gets XORed by a “stream cipher” value immediately prior to use. Then the array value gets XORed into a different value, thus all the stored in the array sub-keys continuously evolve.

Clive Robinson • September 8, 2023 7:59 AM

@ Winter,

The question for some about YouTube is,

“Does it drive or just enable?”

From my experience people asking the question forget to ask the important question of,

“Do channels change with time?”

To which the question is yes.

I did not used to have anything to do with YouTube but a relative does, and they used to point me to Space related Items (it is an area I do engineering design in after all).

Because of the engineering side I also have an interest in Amateur Radio and Radio Astronomy in various areas. So I set up an independent way to view a limited amount of YouTube

Now one thing I found is that there are several types of channels. Outside of entertainment and commercial organisations and the likes of toxic MSM like Fox News and similar and those pushing politics religion and lets call it non mainstream lifestyles there are the individuals. Of which there are those that push product in various way, those the push the presenter, and those that provide information about their hobbies, crafts, and ways of doing certain types of work (including how to extend your home underground safely by digging tunnels and caverns).

The problem is that some presenters included their “life” in and thus indirectly gave vent to politics and religion. As life dealt them increasing misfortune as it does to many they sort of got more radical and moved across from being a useful educational / information source into one or two steps back from “Angry Man”.

If you look up say K6UDA he was once an entertaining and informative watch, well respected and refered to by many others. Then for various reasons he got fed up with being in California and started getting political in various ways. He indicated that he was once part of US Guard Labour and he started moving over into what some call 2A issues and YouTube pulled him up on some of his vids. Now he hardly doew anything on YouTube but does advertise his 2A talks etc on Rumble that is rather more tollerant of that.

There are a number of others that have gone from being “your helpfull informative neighbour” to other alternative religion, politics, life style, and in turn links to other channels further down that curve get formed.

Thus people do follow them down the rabbit hole, the question is how far before the pull up and go elsewhere.

Because YouTube has a feedback mechanism… You can find out which of your channels vids are most watched, earn the most cents etc. Which can distort the chanbel owners view on which direction to go.

As an example WC2F a couple of years ago did some “Ham Radio” stuff, but… Today he appears to have gone totally “out the tree” as a quick look at the torrent of “shorts” he makes spews out often with several a day, every day… I suspect this is due to YouTube trying to compete with the TickTock mentality and moving channel payments accordingly.

Dave of the EEVblog from time to time pops up a video on how YouTube is increasingly less and less rewarding to actual real content creators and has done comparisons with other outlets he uses. But he is not the only one who has complained at YouTube managment idiocy and their changes in algorithms.

Thus the overall result is yes there is increasing dare I say radicalised religion and politics on YouTube, and whilst YouTubes “recomend” algorithm may not be to blaim for getting “new viewers” into radical viewing, their other algorithms are definitely causing changes in the radical direction by channels.