* 1990: Just put them into a database.
* 1995: You gotta MD5 those bro, plain-text is not good.
* 1996: I heard MD5 is no good anymore, better SHA-1 one those.
* 1997: Better add a sleep delay to slow down brute-forcing through remote connections.
* 1998: Add a salt, bro, beware of dictionary attacks. One per database should be enough.
* 2000: Sorry, I meant a unique salt per password. There is this thing called rainbow tables now.
* 2005: SHA-1 is broken too now, we need to migrate to SHA-256.
* 2010: Forget about SHA-256, we need to deal with GPU crackers now. Let's just key-stretch for now.
* 2014: Our homegrown key-stretching algorithm turned out to be a massive failure. Let's just switch to scrypt.
* 2015: OK, our data at rest is safe (for now) but our user passwords still made it to pastebin because we decrypt everything in RAM and hackers dumped everything from there.
And isn't that a bit hypocritical of the U.S.?
A lot is on the line. The freedom to modify devices you own is a concern, but the proposed rules prohibiting new device firmware would do much more damage. The economic impact would be dire, the security implications would be extreme, and emergency preparedness would be greatly hindered by the proposed restrictions on router firmware. The FCC is taking complaints and suggestions until September 8th.
Leave a comment for the FCC via this link to the Federal Register
Herbert (Bert) Knabe Jr. is a blogger specializing in online security, privacy and intellectual property. He has long been a fan of Apple computers and occasionally writes on their products. He has been online since the mid 1980's. He has been blogging on a variety of topics including U.S. policy and online privacy/security since 2005.
He has twenty years experience in the newspaper industry, initially as a production artist, then as a computer technician supporting content producers. This experience gives him a strong understanding of graphic production for print and web.
Photography has long been a passion of Bert's, and he was honored to have a photo included in the PDF version of the 2011 Plus One Collection. He specializes in cell and smart phone photography. He recently started a blog for the dual purpose of sharing his photos and providing reviews and tips for aspiring cell phone photographers.
Bert lives and goes to church in Lubbock, Texas with his wife of twenty years and their five children.
- Textbroker.comAuthor, 2012 - presentLevel 4 writer on textbroker.com. I write on a variety of topics including technology, the Internet and business.
- Lubbock Avalanche-JournalComputer Technician, 1998 - present
- Lubbock Avalanche-JournalProduction Artist, 1993 - 1998
Positive Attitude? Get One Or Your Health And Performance Will Suffer
When faced with setbacks and challenges, we've all received the well-meaning advice to "stay positive." The greater the challenge, the more
Chris Christie attacks Rand Paul for supporting 'criminal' Edward Snowden
New Jersey Gov. Chris Christie (R) continues to trade barbs with Republican Senators over the...
More on Chris Roberts and Avionics Security - Schneier on Security
But to me, the fascinating part of this story is that a computer was monitoring the Twitter feed and understood the obscure references, aler
You'll Shudder When You See What Google Knows About Your Web Searches
If you don't like the thought of how much information Google is gathering about you, take control of your own data and stop feeding it infor
Choosy gadget users know: Stupid is the new smart | InfoWorld
Sick of your smartphones, smart TVs, and smart doodads leaking personal information? The answer is obvious: Go dumb
Millennials In IT: How To Talk To Old People - InformationWeek
There are certain phrases that are like passwords to the heart of your IT managers. And, no, I'm not talking about, I bought you a fresh box
How and why you should use a VPN to protect your data's final mile
Virtual private networks (VPNs for hire) are cheap and very easy to use on your Mac, iPhone, and iPad.
8 Free Online Courses to Grow Your Tech Skills | CIO
The cost of learning just got cheaper. CIO.com tracked down these eight free ways to grow your technology skill set.
Guy Travels 5,000 Miles to Meet Total Stranger That Facebook Suggested H...
Victor Van Rossem, a 24-year-old man from Belgium, traveled 5,000 miles to meet a total stranger that Facebook displayed as a suggested frie
Following Sony Hack, U.S. Officials Re-engage on CISPA » THE DISTRICT SE...
It died in the 113th Congress, but supporters of controversial cyber-security legislation are hoping to revive it next year, now that a high