News about Technologies: September 2011

Wednesday 7 September 2011

US Will Consider Data Privacy Legislation

After information breaches and tracking cookies have been discovered by the community and the government, they both began to worry about the privacy implications coming with the issue. That was the reason why Director of the Consumer Privacy Project at the Center for Democracy & Technology in Washington discussed a proposed privacy reform.

For nearly a decade now the government has been ignoring this problem, until a spate of legislation was introduced, specifically designed to offer consumers their rights over how their data should be gathered and shared.

The House of Representatives has introduced two separate comprehensive bills, while the Senate also proposed the Commercial Privacy Bill of Rights pursuing similar goals. At the same time, the Senate Commerce Committee held a hearing over privacy issue, followed by the Energy and Commerce Committee, which also discussed the topic next week. As you can see, there were a lot of good signs from both parties.

The interest of Congress upon the issue can be easily explained: Turkey and the United States appeared to be the only developed countries lacking comprehensive legislation that would protect consumer privacy. For example, the United States has a couple of sector-specific laws regarding sensitive data over health and finance, but for everything else, there are no rules for the corporations except “don’t lie about how you share information.”

While the Federal Trade Commission is doing what it can to enforce such prohibition, risk-averse lawyers admit that the only way to not violate the above mentioned rule is simply to not make explicit privacy promises at all. However, it’s unclear what would happen to the corporate privacy policies – today the corporations do reserve the right to use, sell or share your data, and you are unable to really find out what they do with your privacy information. The reason is that the current legislation encourages corporations not to make concrete disclosures.

In fact, the problem wasn’t so deep within the past decade. But now, in our digital era, social networking and data storage pose much higher risks. Compared to a few years ago, when just a couple major sites could drop a cookie to “anonymously” track your activities, now one might be the owner of hundreds of trackers knowing their offline identity. So, where all the data go?

Protection by Command Prompt

Protection by Command Prompt and Changing DNS Server

The web is full of descriptions on how to bypass the Internet censoring suggested by the US government. Since many users and industry observers like Drew Wilson agree that people should have a right to protect themselves from probably unconstitutional legislation, below are a couple more methods you can use to circumvent the website filtering.

Command Prompt

This works in Windows operating system. There you can open up command prompt (if you don’t know that is that and where to find the tool, refer to Windows Help) and type in “ping [required domain name]”. By doing this you will easily obtain a server IP address to use it in future, even if the domain name is blocked.

As you can understand, it requires no installation or downloading of any content, since command prompt is integrated into Windows, so you will use software you already have on your PC. This method can be called the fastest way to protect yourself from censorship. It is also the easiest one – technically, you will need just one command to obtain what you are looking for. On the other hand, there are a few disadvantages of using this tool. First of all, you have to obtain the data you are after through command prompt before the domain in question is filtered. In addition, you can only obtain one IP address at a time when using this method. Finally, if the site in question changes IP address for its server, you will consequently lose access to the website unless you obtain the new address as well.

Changing DNS Server

Since censoring DNS servers is the main part of the suggested PROTECT IP Act, you may come to a conclusion that only DNS servers residing in the United States will be affected. Therefore, you can always use a DNS server from abroad, like ones used by overseas Internet service providers. After changing your DNS server, you will be no longer relying on a server which can be blocked by the American government or corporate interests.

This method also requires no additional installation or downloading of any software, since everything you will need is on your PC already. The solution is a few menu clicks away and can always be changed again in future without too much hassle. However, using this method can cause a security risk to your PC if you don’t perform things properly. In addition, it is currently difficult to obtain DNS server IP addresses surely available for the nearest future. Nor there’s any guarantee that broadband providers won’t start blocking such activity of their subscribers.

ISP Will Have to Ban NewzBin2

While the largest entertainment companies are doing their best at censoring the web in the US through the suggested PROTECT IP Act, corporate-sponsored filtering has already come into life in the United Kingdom due to what might become to as a landmark court case.

Now it can be said legally that the web got a little more censored. The British media reported that Hollywood had recently won a major court case in which they were able to compel Internet service providers to block access to virtually any website they want in the name of fighting copyright violation. In this case there was general access to online service known as NewzBin2, which offered an index of NZB files. The matter is that the NZB files point to a file uploaded to file-sharing network UseNet. It is a little like a .torrent file, but it isn’t stored on other people’s PCs, but rather on a server or several of them.

So, by granting the entertainment industry the right to block access to NewzBin2, the only thing the court ruling really does is enable international corporations to censor the web in the United Kingdom. In fact, blocking the service won’t amount to anything in the end except a temporary minor inconvenience for some Internet users.

The most interesting in the judge’s ruling was his words that the UK Internet service provider BT had actual knowledge of subscribers using its service in order to infringe copyright. In other words, it knew that the Internet users and Newbin2 owners infringed copyright on a large scale. Even when BT had argued that the service in question also linked to legitimate content, the court said it was far outweighed by pirated content. So, the judge suggested that Internet service providers knew what everyone on their network was doing, like the operators of a major subway network knew precisely where everyone in the network was going. Meanwhile, even scarier was the suggestion that legitimate material was no excuse to stop the filtering of a site.

The bizarre part of the story is that the censorship of NewzBin2 will be enforced only in a few months. This will undoubtedly give the service lots of time to find out how to bypass the measure for its British users. In future, activities like this may affect users willing to use the web for legitimate purposes, but it is very unlikely that it’ll manage to even come close to putting a dent on file-sharing.

Hackers Tested New DDoS Attack Tool

The war isn’t in decline: Anonymous is currently sharpening their claws on PasteBin, testing an innovative DDoS attack instrument to replace the old one.

Instead of being frightened of all the anti-hacking campaigns, Anonymous is getting bigger, developing a new weapon to replace their current DDoS instrument. The innovating attack algorithm, referred to as #RefRef, is being developed in time for the Blackhat conference in Nevada. The new tool was tasted on the currently unhappy Pastebin site a few days ago.

As for the old DDoS attack tool, which has been used by the hacking until today, it was called the Low Orbit Ion Cannon (LOIC), named after a weapon from Command & Conquer. Although the previous tool has been effective in past campaigns, it failed to show a high enough detection protection for the Anonymous members, and this weakness has led to lots of global arrests within the last year.

Now, a new #RefRef tool is being introduced to start annoying private businesses and governments as soon as this fall. It is known about the new tool that it’s designed in JavaScript and is able to exploit a server as long as the target supports JavaScript and SQL. Moreover, the speculations are that the new weapon exploits the target’s own processing power against itself and takes the server down by creating resource exhaustion.

One of the Anonymous members has said in an interview that the new tool can be compared to giving a large beast a simple carrot, and then watching the beast choke itself to death. Appealing, isn’t it? Meanwhile, it might be interesting for some to note that the new weapon is platform independent and therefore can be used on anything supporting JavaScript, even mobile phones and gaming consoles. In addition, the #RefRef developers were also doing their best to make it so the script could be hosted anywhere, thus enabling it possible to start attacks from places like libraries or Internet cafés.

Last Friday, the new weapon was tested on PasteBin, better known as the hacker press release dump service. The test lasted for 17 second, but caused 42 minutes of downtime. The DDoS attack was confirmed by the site’s twitter feed. So, the hacker group Anonymous has just been nominated for a Pwnie award, or in other words the hacker Oscars, which is taking place at the Las Vegas Black Hat in August

Facebook Acquired Digital Publishing Company

Facebook, the worldwide-known social networking giant, has purchased a digital publishing company named Push Pop Press. Surprisingly enough, this doesn’t mean that Facebook is getting into the publishing business. In fact, it’s precisely the opposite: Push Pop Press is getting out! The company in question is engaged in developing technology in order to help make interactive books optimized for Apple devices like iPad.

The statement, released by Facebook, said that the company was thrilled to confirm their acquisition of Push Pop Press, which they call “a startup whose groundbreaking software changes the way we publish and consume digital works”. In fact, the publishing company Push Pop Press was co-founded by two former Apple employees: Mike Matas and Kimon Tsinteris.

In addition, Facebook had teamed up with ex-US vice president Al Gore in order to create a digital version of his book titled “Our Choice: A Plan to Solve the Climate Crisis”. As for the publishing company, Push Pop Press also released a statement to say that although Facebook is not planning to begin publishing digital books, the ideas and technology behind the publishing company will be integrated with social network, thus providing people with even richer ways to share their stories.

Indeed, taking into account the fact that millions of people are publishing to Facebook on a daily basis, the social networking giant will be a great home for Push Pop Press. Meanwhile, financial terms of the deal weren’t disclosed by the co-operating companies. Earlier this year, Facebook purchased a number of other entities, including group messaging app Beluga, software design company Sofa, and the talent behind the recruiting network Pursuit.

At the same time, some in the industry started to complain about the deal, saying that instead of an independent born-digital press and publishing next-generation multimedia novels, Facebook will just get marginally better iOS applications, while the industry desperately needs independent innovation in digital publishing. People point out that the country needs talented people willing to try things, while all of the money, attention and technological skill is going in the opposite direction. Nowadays, major part of big media entities having capital and deep technical talent can see no reasons to innovate or invest in books.

BitTorrent Announced Release of Paid µTorrent Client

The most well-known company in the field of peer-to-peer applications, BitTorrent Inc., announced a few days ago the launch of µTorrent Plus, a premium edition of one of the most popular file-sharing applications worldwide – µTorrent. µTorrent Plus was promised to be released within 2011, with some changes.

BitTorrent-Prepares-a-Paid-Version-of-%C2%B5Torrent-Client-%C2%B5Torrent-Plus.jpg

After the announcement, the fears have already emerged that the free version will now be neglected by the company. However, BitTorrent Inc. released an additional statement to assure their numerous users that the company will still engage the “same level of commitment and development” into their favourite free client as they’ve done so far. Indeed, the current free µTorrent application of is at version 3.0, and just a few weeks ago, the BitTorrent introduced over 20 new features for it.

Meanwhile, BitTorrent Inc. didn’t disclose any additional information about the new client, like pricing and terms. The company posted a statement on its blog, saying that while they were not yet ready to make all the details public, they still could say from the very beginning that an upgraded version of µTorrent was particularly designed for Internet users looking for a single solution to search for, obtain and play material wherever they want, on whatever device they want. In other words, the time came now to realize that hassles with codec and conversion issues, as well as struggles with device shifting and other annoying problems should become a thing of the past.

The application developers admitted that they consider the paid version more as diversifying revenue source. Taking into account that some of the new features of the client will involve the company to pay licensing fees, it can’t be thought of as a pure profit business for BitTorrent Inc. However, given its scale, the company would be able to negotiate good terms and pass on to its users a great value.

BitTorrent Inc. promised more info to come. Meanwhile, the company offered everyone who would like to stay up-to-date on the latest news and take part in invite-only betas (in other words, everyone willing to reserve their spot to get the fresh µTorrent Plus first and with a discount) to sign up on their website. A paid version of the client was confirmed by some company representatives to be launched as soon as this fall

PROTECT IP Act Made Useless

Famous industry observer Drew Wilson started writing a series of guides to explain just how easy it is to bypass the suggested DNS censorship. In fact, the proposed PROTECT IP Act generally exploits DNS censorship among other things. While the rest continue debating philosophically on why the new legislation will do virtually nothing to deter copyright violation, Mr. Wilson went further and decided to make bypassing the law easier.

Actually, things like hiding IP address, using a proxy or the onion router, and obtaining an IP address to a site in order to make it such way that you don’t have to rely on a public DNS server – all of these might appear very intimidating for the unprepared. So probably the newcomers are better to relate to some moderately informed users on these topics.

Undoubtedly, remaining anonymous on the Internet is something that many people can benefit from, particularly those who are being marginalized by their own government in different ways. However, majority of the users have never felt that motivated to exploit any of those tools, because it was an unnecessary layer of security for activities like browsing news and listening to Creative Commons music. But now the suggested PROTECT-IP Act has given them enough motivation to find out how the bypassing methods work mostly due to the arbitrary nature of it all. When Hollywood doesn’t like someone editing a short clip, the entertainment industry can make that whole site disappear. Accordingly, if the Recording Industry Association of America believes that some website doesn’t need to be seen by anyone else, it is also able to erase easy access to that website merely with the snap of their fingers.

That’s how the PROTECT IP Act works: at a technical level, domain name servers are ordered to blacklist the alleged sites. At the same time, despite the fact that the sites remain reachable by IP address, links directing to them appear broken. As for the search engines like already protesting Google, they would be demanded to delete links in their index of the suspected website. Finally, rights owners are given the right to apply for court injunctions to have websites’ domains blacklisted. Therefore, the worst part of this is that DNS servers are affected by the process, because it affects every user using that given server. This gave the opposers of the Act enough motivation to figure out how to make DNS censorship useless and publish the methods online, like we do.

Intel Core i7-2600K, i5-2500K

The Sandy Bridge Review: Intel Core i7-2600K, i5-2500K and Core i3-2100 Tested

Intel never quite reached 4GHz with the Pentium 4. Despite being on a dedicated quest for gigahertz the company stopped short and the best we ever got was 3.8GHz. Within a year the clock (no pun intended) was reset and we were all running Core 2 Duos at under 3GHz. With each subsequent generation Intel inched those clock speeds higher, but preferred to gain performance through efficiency rather than frequency.

Today, Intel quietly finishes what it started nearly a decade ago. When running a single threaded application, the Core i7-2600K will power gate three of its four cores and turbo the fourth core as high as 3.8GHz. Even with two cores active, the 32nm chip can run them both up to 3.7GHz. The only thing keeping us from 4GHz is a lack of competition to be honest. Relying on single-click motherboard auto-overclocking alone, the 2600K is easily at 4.4GHz. For those of you who want more, 4.6-4.8GHz is within reason. All on air, without any exotic cooling

Unlike Lynnfield, Sandy Bridge isn’t just about turbo (although Sandy Bridge’s turbo modes are quite awesome). Architecturally it’s the biggest change we’ve seen since Conroe, although looking at a high level block diagram you wouldn’t be able to tell. Architecture width hasn’t changed, but internally SNB features a complete redesign of the Out of Order execution engine, a more efficient front end (courtesy of the decoded µop cache) and a very high bandwidth ring bus. The L3 cache is also lower and the memory controller is much faster. I’ve gone through the architectural improvements in detail here. The end result is better performance all around. For the same money as you would’ve spent last year, you can expect anywhere from 10-50% more performance in existing applications and games from Sandy Bridge.

I mentioned Lynnfield because the performance mainstream quad-core segment hasn’t seen an update from Intel since its introduction in 2009. Sandy Bridge is here to fix that. The architecture will be available, at least initially, in both dual and quad-core flavors for mobile and desktop (our full look at mobile Sandy Bridge is here). By the end of the year we’ll have a six core version as well for the high-end desktop market, not to mention countless Xeon branded SKUs for servers.

The quad-core desktop Sandy Bridge die clocks in at 995 million transistors. We’ll have to wait for Ivy Bridge to break a billion in the mainstream. Encompassed within that transistor count are 114 million transistors dedicated to what Intel now calls Processor Graphics. Internally it’s referred to as the Gen 6.0 Processor Graphics Controller or GT for short. This is a DX10 graphics core that shares little in common with its predecessor. Like the SNB CPU architecture, the GT core architecture has been revamped and optimized to increase IPC. As we mentioned in our Sandy Bridge Preview article, Intel’s new integrated graphics is enough to make $40-$50 discrete GPUs redundant. For the first time since the i740, Intel is taking 3D graphics performance seriously.

CPU Specification Comparison
CPU	Manufacturing Process	Cores	Transistor Count	Die Size
AMD Thuban 6C	45nm	6	904M	346mm²
AMD Deneb 4C	45nm	4	758M	258mm²
Intel Gulftown 6C	32nm	6	1.17B	240mm²
Intel Nehalem/Bloomfield 4C	45nm	4	731M	263mm²
Intel Sandy Bridge 4C	32nm	4	995M	216mm²
Intel Lynnfield 4C	45nm	4	774M	296mm²
Intel Clarkdale 2C	32nm	2	384M	81mm²
Intel Sandy Bridge 2C (GT1)	32nm	2	504M	131mm²
Intel Sandy Bridge 2C (GT2)	32nm	2	624M	149mm²

It’s not all about hardware either. Game testing and driver validation actually has real money behind it at Intel. We’ll see how this progresses over time, but graphics at Intel today very different than it has ever been.

Despite the heavy spending on an on-die GPU, the focus of Sandy Bridge is still improving CPU performance: each core requires 55 million transistors. A complete quad-core Sandy Bridge die measures 216mm², only 2mm² larger than the old Core 2 Quad 9000 series (but much, much faster).

As a concession to advancements in GPU computing rather than build SNB’s GPU into a general purpose compute monster Intel outfitted the chip with a small amount of fixed function hardware to enable hardware video transcoding. The marketing folks at Intel call this Quick Sync technology. And for the first time I’ll say that the marketing name doesn’t do the technology justice: Quick Sync puts all previous attempts at GPU accelerated video transcoding to shame. It’s that fast.

There’s also the overclocking controversy. Sandy Bridge is all about integration and thus the clock generator has been moved off of the motherboard and on to the chipset, where its frequency is almost completely locked. BCLK overclocking is dead. Thankfully for some of the chips we care about, Intel will offer fully unlocked versions for the enthusiast community. And these are likely the ones you’ll want to buy. Here’s a preview of what’s to come:

The lower end chips are fully locked. We had difficulty recommending most of the Clarkdale lineup and I wouldn’t be surprised if we have that same problem going forward at the very low-end of the SNB family. AMD will be free to compete for marketshare down there just as it is today.

With the CPU comes a new platform as well. In order to maintain its healthy profit margins Intel breaks backwards compatibility (and thus avoids validation) with existing LGA-1156 motherboards, Sandy Bridge requires a new LGA-1155 motherboard equipped with a 6-series chipset. You can re-use your old heatsinks however