Home Blog Page 689

Apache Milagro: A New Security System for the Future of the Web

By
Ian Murphy
-

With 25 billion new devices set to hit the Internet by 2025, the need for a better worldwide cryptosystem for securing information is paramount. That’s why the Apache Milagro project is currently incubating at the Apache Software Foundation. It’s a collaboration between MIRACL and Nippon Telegram and Telegraph (NTT), and Brian Spector, MIRACL CEO and Co-Founder, discussed the project in his keynote at ApacheCon in May.

Spector said the project was born in a bar on the back of a napkin after a brainstorm about how one would rebuild Internet security from the ground up. That sounds like a lot of work, but Spector believes it’s absolutely necessary: the future of the Web is going to be very different from the past.

“Something is going to change, and that something is the proliferation of IoT devices and software applications that will be acting in an app-centric way,” Spector said. “If you believe that we’re going to start moving from a browser model to an IoT and app-centric model, the architecture and hence the requirements are going to be fundamentally different. This is where things get interesting.”

That back of the napkin read something like this:

A modern cryptosystem would:

  • Have distributed trust authorities, not centralized on four or five browser companies offering certificates and all from the United States

  • Have no single point of compromise

  • Use state of the art mathematics so that identities are burned into security keys

  • Fix things like revocation of trust so they actually, you know, worked

  • Be open source and easily auditable, not proprietary

And so Apache Milagro was born.

Spector and his team are building a system with no public key infrastructure (PKI) and therefore no passwords at all; you’re not authenticating yourself to billions of different web servers, so there aren’t as many opportunities for fraud. This system allows you to choose your “trust” providers, each with a piece of your master key, distributed around the world in countries whose governments respect privacy of their citizens.

“Milagro envisions a world where we have a fleet of new service providers come on line that we called distributed trust authorities,” Spector said. Instead of certificate authorities that would digitally sign somebody’s public key, thereby stating that you are the owner of that digital certificate and hence the corresponding private key, you get shares, or fractions of a private key issued to you by these distributed trust authority providers. And the keys have your identity burned into them, so you don’t need to have a certificate.

“These keys are issued to clients and services that will run Milagro applications for authentication or secure channel or have the code embedded inside of them,” Spector said. “So what can you do with the keys that have been issued out of the distributed trust authorities? This is where Milagro gets interesting. With Milagro multi-factor authentication, you can embed this into your web or mobile application in minutes.”

Spector believes Milagro does three things no other platform current does:

  1. It gets rid of the risk of password database breach, in part because it gets rid of the need for passwords all together.

  2. Improves the authentication user experience: Users only need a four-digit pin, with 128-bit security baked in to your master key.

  3. It’s extendable to any number of authentication factors, including biometrics, geolocation, hardware, etc.

Spector said the project is in early stages but has some fairly significant implementations, including the British tax office and the credit agency Experian.

However, the project needs people’s feedback and help, and Spector said he welcomes everyone to have a look at the project and make suggestions.  

Watch the complete presentation below:

https://www.youtube.com/watch?v=bIaA7-Eady0?list=PLGeM09tlguZTvqV5g7KwFhxDlWi4njK6n

linux-com_ctas_apache_052316_452x121.png?itok=eJwyR2ye

Neural Net Computing Explodes

By
Semiconductor Engineering
-

Neural networking with advanced parallel processing is beginning to take root in a number of markets ranging from predicting earthquakes and hurricanes to parsing MRI image datasets in order to identify and classify tumors.

As this approach gets implemented in more places, it is being customized and parsed in ways that many experts never envisioned. And it is driving new research into how else these kinds of compute architectures can be applied.

Fjodor van Veen, deep learning researcher at The Asimov Institute in the Netherlands, has identified 27 distinct neural net architecture types. (See Fig. 1 below). The differences are largely application-specific.

Read more at SemiConductor Engineering

Vint Cerf Warns Humanity: Can Our Data Survive Longer Than A Century?

By
The New Stack
-

Transmission Control Protocol (TCP) co-author Vint Cerf is hailed as “the father of the internet,” but now he’s worried about an even larger communications protocol, on a scale of thousands of years. How will our civilization communicate with people in the future? When it comes to generations yet to come, how will we preserve the glory that is present-day, 21st-century society?

Yes, we’ve got storage media — but for long-lasting durability, does it really compare with centuries past? “We’re going backward,” Cerf argued in his column published inCommunications of the ACM looking fondly back at the history of humankind — and the way bygone eras preserved glimpses of their lives to echo down through the ages. It’s like a tour of humanity’s mediums over the last 17 millennia, offering the breath-taking perspective of a tumble through time.

Read more at The New Stack 

An Open Source Font System for Everyone

By
Google Open Source Blog
-



A big challenge in sharing digital information around the world is “tofu”—the blank boxes that appear when a computer or website isn’t able to display text: ⯐. Tofu can create confusion, a breakdown in communication, and a poor user experience.



Five years ago we set out to address this problem via the Noto—aka “No more tofu”—font project. Today, Google’s open source Noto font family provides a beautiful and consistent digital type for every symbol in the Unicode standard, covering more than 800 languages and 110,000 characters.

Read more at Google Open Source Blog

No SDN Kubernetes

By
Justin Garrison
-

Kubernetes networking has a few requirements. They are:

  • Pods are routable on a flat network
  • Pods should see their own routable IP address
  • Nodes can communicate with all containers

How these requirements are implemented is up to the operator. In many cases this means using a software defined network “SDN” also called an overlay network (e.g. flannelweavecalico) or underlay network (MACvlan, IPvlan). The SDNs all accomplish the same three goals but usually with different implementation and often unique features.

Read more at Justin Garrison’s Blog

The Power of Open Source Is Customer Freedom

By
OpenSource.com
-

The open source community is a diverse and fractious collection of individuals and organizations. In its infancy, in many ways it could be compared to the hippie movements of the ’60s: a lot of passion, a lot of fun, a lot of weirdness, and not a lot of organization. Over the last decade or so, it has evolved into a respected software development force that relies on the support of its members.

As it’s grown and diversified over the last decade, it has gotten more mainstream in the sense that there are now many different players that are making quite a bit of money based on open source principles. It has more prestige and a lot more respectability. As they say, money changes everything.

Read more at OpenSource.com

How to Take Screenshots on Ubuntu 16.04 with ScreenCloud

By
Falko Timme
-

Screenshots come in handy in many situations. For example, while making tutorials, discussing problems, or sharing information. What I mean to say is that it’s a very common activity, so much so that there’s a dedicated keyboard button to take screenshots. However still, there are many screenshot taking applications available in the market, and their selling point is the list of useful features they offer, including the ability to store captured images on cloud in some cases. If you are looking for such an application, look no further, as in this tutorial we’ll be discussing a useful screenshot taking app dubbed ScreenCloud.

Read complete article

Legends of Linux Part 4: Jim Zemlin

By
The Inquirer
-

LINUXCON IS over for another year, but while we were there we got some time with friend of the INQ Jim Zemlin, head honcho of the Linux Foundation, and took the opportunity to ask him our Legends of Linux questions to celebrate 25 years of the operating system.

What’s your first memory of Linux?

My memory is going to be funny because I worked at a hosted software company before I worked in open source. I was working at a company called Acorio. We were hosting enterprise software and we were dragged into an office and asked what our Linux strategy was.

At the time everything was running on Solaris and such and the ironic thing was that at the time everyone laughed and asked: ‘Who on Earth ran anything worthwhile on Linux?’. And that is actually my first memory of Linux in any kind of business context.

Read more at The Inquirer

RDO Newton Overcloud HA Deployment via instack-virt-setup on CentOS 7.2 VIRTHOST

By
Boris Derzhavets
-

Draft below may be considered as POC awaiting release of TripleoO QuickStart
along with flexible templates managed by ansible and KSM patching.
Follow http://lxer.com/module/newswire/view/234586/index.html   setting up instack VM and configuring “centos7-newton/current-passed-ci” based delorean repos on VIRTHOST and INSTACK . After log into “instack VM” (undercloud VM) create 4GB swap file and restart “instack VM”

Complete text may be seen here http://dbaxps.blogspot.com/2016/10/rdo-newton-overcloud-ha-deployment-via.html

Ansible: Getting Started

By
Swapnil Jain
-

What is Ansible?

Ansible was originally written by Michael DeHaan in Python with its first release on February 20, 2012. It was later acquired by Red Hat. Ansible is an open source configuration management and orchestration utility. It helps to automate deployment or softwares and configurations of multiple remote hosts. Instead of writing custom, unmanaged, long and individual bash scripts, system administrators can write playbooks in Ansible. Ansible is also supported by DevOps tools, such as Vagrant and Jenkins.

  • Playbook is a YAML (YAML Ain’t Markup Language) file which consists a list of Plays
  • Play in a playbook is a list of Tasks.
  • Task in a play contains Modules and its arguments.
  • Where as Module are the ones that do the actual work in ansible.

How Ansible Works?

The greatest benefit of Ansible that I see is, unlike Puppet it is agent less. The only requirement on remote host (know as Managed Host) is Python 2.4 or later. If you are running less than Python 2.5 on the remotes, you will also need python-simplejson. Ansible is installed on a central host (know as Control Host) where Playbooks are created. Playbooks are pushed to Managed Host thru SSH as a Python code and executed locally on Managed Host.

Learn More….

1...688689690...10,743Page 689 of 10,743