Earlier this week, CEO of Microsoft Greater China, Alain Crozier, told China Daily that the company is ready to roll out a version of Windows 10 with extra security features demanded by China's government. "We have already developed the first version of the Windows 10 government secure system. It has been tested by three large enterprise customers," Crozier said. The Register reports: China used Edward Snowden's revelations to question whether western technology products could compromise its security. Policy responses included source code reviews for foreign vendors and requiring Chinese buyers to shop from an approved list of products. Microsoft, IBM and Intel all refused to submit source code for inspection, but Redmond and Big Blue have found other ways to get their code into China. IBM's route is a partnership with Dalian Wanda to bring its cloud behind the Great Firewall. Microsoft last year revealed its intention to build a version of Windows 10 for Chinese government users in partnership with state-owned company China Electronics Technology Group Corp. There's no reason to believe Crozier's remarks are incorrect, because Microsoft has a massive incentive to deliver a version of Windows 10 that China's government will accept. To understand why, consider that China's military has over two million active service personnel, the nation's railways employ similar numbers and Microsoft's partner China Electronics Technology Group Corp has more than 140,000 people on its books. Not all of those are going to need Windows, but plenty will.
DEAL: For $25 - Add A Second Phone Number To Your Smartphone for life! Use promo code SLASHDOT25. Also, Slashdot's Facebook page has a chat bot now. Message it for stories and more. Check out the new SourceForge HTML5 internet speed test! ×
In what will be the world's biggest solar geoengineering program to date, U.S. scientists part of the $20 million Harvard University project are going to send aerosol injections 20km (~12.4 miles) into the earth's stratosphere "to establish whether the technology can safely simulate the atmospheric cooling effects of a volcanic eruption," The Guardian reports. From the report: Scientists hope to complete two small-scale dispersals of first water and then calcium carbonate particles by 2022. Future tests could involve seeding the sky with aluminum oxide -- or even diamonds. Janos Pasztor, Ban Ki-moon's assistant climate chief at the UN who now leads a geoengineering governance initiative, said that the Harvard scientists would only disperse minimal amounts of compounds in their tests, under strict university controls. Geoengineering advocates stress that any attempt at a solar tech fix is years away and should be viewed as a compliment to -- not a substitute for -- aggressive emissions reductions action. But the Harvard team, in a promotional video for the project, suggest a redirection of one percent of current climate mitigation funds to geoengineering research, and argue that the planet could be covered with a solar shield for as little as $10 billion a year. Some senior UN climate scientists view such developments with alarm, fearing a cash drain from proven mitigation technologies such as wind and solar energy, to ones carrying the potential for unintended disasters. If lab tests are positive, the experiment would then be replicated with a limestone compound which the researchers believe will neither absorb solar or terrestrial radiation, nor deplete the ozone layer.
An anonymous reader quotes a report from Ars Technica: It's game over for an Alabama man who claims his patent on "Carpenter Bee Traps" is being infringed by competing products on eBay. Robert Blazer filed his lawsuit in 2015, saying that his U.S. Patent No. 8,375,624 was being infringed by a variety of products being sold on eBay. Blazer believed the online sales platform should have to pay him damages for infringing his patent. A patent can be infringed when someone sells or "offers to sell" a patented invention. At first, Blazer went through eBay's official channels for reporting infringement, filing a "Notice of Claimed Infringement," or NOCI. At that point, his patent hadn't even been issued yet and was still a pending application, so eBay told him to get back in touch if his patent was granted. On February 19, 2013, Blazer got his patent and ultimately sent multiple NOCI forms to eBay. However, eBay wouldn't take down any items, in keeping with its policy of responding to court orders of infringement and not mere allegations of infringement. In 2015, Blazer sued, saying that eBay had directly infringed his patent and also "induced" others to infringe. That lawsuit can't move forward, following an opinion (PDF) published this week by U.S. District Judge Karon Bowdre. The judge found that eBay lacked any knowledge of actual infringement and rejected Blazer's argument that eBay was "willfully blind" to infringement of Blazer's patent. The opinion was first reported yesterday by The Recorder (registration required).
Sam Levin, writing for The Guardian: Uber is facing yet another discrimination scandal after a manager who was recruiting a female engineer defended the company by saying "sexism is systemic in tech." On 14 March, an engineering manager at Uber tried to recruit Kamilah Taylor, a senior software engineer at another Silicon Valley company, for a developer position at the San Francisco ride-hailing startup, which is struggling to recover from a major sexual harassment controversy. Taylor, who provided copies of her LinkedIn messages with the Guardian, responded by saying: "In light of Uber's questionable business practices and sexism, I have no interest in joining." Taylor was stunned by the reply she received from Uber. The manager, who is a woman, wrote: "I understand your concern. I just want to say that sexism is systemic in tech and other industries. I've met some of the most inspiring people here."
The Chicago Department of Transportation announced a new policy earlier this week that will increase the "grace period" -- the time between when a traffic light turns red to when a ticket is automatically issued. The decision has been made to increase the time from 0.1 seconds to 0.3 seconds, following recommendations part of a recent study of its red-light cameras. Ars Technica reports: This will bring the Windy City in line with other American metropolises, including New York City and Philadelphia. In a statement, the city agency said that this increase would "maintain the safety benefits of the program while ensuring the program's fairness." On Tuesday, the Chicago Tribune reported that the city would lose $17 million in revenue this year alone as a result of the expanded grace period. Michael Claffey, a CDOT spokesman, confirmed that figure to Ars. "We want to emphasize that extending this enforcement threshold is not an invitation to drivers to try to beat the red light," CDOT Commissioner Rebekah Scheinfeld also said in the statement. "By accepting the recommendation of the academic team, we are giving the benefit of the doubt to well-intentioned drivers while remaining focused on the most reckless behaviors."
An anonymous Slashdot reader writes from a report via BleepingComputer: Google Chrome engineers announced plans to gradually remove trust in old Symantec SSL certificates and intent to reduce the accepted validity period of newly issued Symantec certificates, following repeated slip-ups on the part of Symantec. Google's decision comes after the conclusion of an investigation that started on January 19, which unearthed several problems with Symantec's certificate issuance process, such as 30,000 misused certificates. In September 2015, Google also discovered that Symantec issued SSL certificates for Google.com without authorization. Symantec blamed the incident on three rogue employees, whom it later fired. This move from Google will force all owners of older Symantec certificates to request a new one. Google hopes that by that point, Symantec would have revamped its infrastructure and will be following the rules agreed upon by all the other CAs and browser makers.
An anonymous reader quotes a report from Rolling Stone: Verizon, AT&T, Johnson & Johnson and other major companies have pulled advertisements from YouTube after learning they were paired with videos promoting extremism, terrorism and other offensive topics, The New York Times reports. Among the other companies involved are pharmaceutical giant GSK, HSBC, the Royal Bank of Scotland and L'Oreal, amounting to a potential loss of hundreds of millions of dollars to the Google-owned company. The boycott began last week after a Times of London investigation spurred many major European companies to pull their ads from YouTube. American companies swiftly followed, even after Google promised Tuesday to work harder to block ads on "hateful, offensive and derogatory" videos. Like AT&T, most companies are only pulling their ads from YouTube and will continue to place ads on Google's search platforms, which remain the biggest source of revenue for Google's parent company, Alphabet. Still, the tech giant offered up a slew of promises to assuage marketers and ensure them that they were fixing the problems on YouTube. Due to the massive number of videos on YouTube -- about 400 hours of video is posted each minute -- the site primarily uses an automated system to place ads. While there are some failsafes in place to keep advertisements from appearing alongside offensive content, Google's Chief Business Officer Philipp Schindler wrote in a blog post that the company would hire "significant numbers" of employees to review YouTube videos and mark them as inappropriate for ads. He also said Google's latest advancements in artificial intelligence and machine learning will help the company review and flag large swaths of videos.
An anonymous reader shares an article: It takes money to make money. CSIR-Tech, the commercialisation arm of the Council of Scientific and Industrial Research (CSIR), realised this the hard way when it had to shut down its operations for lack of funds. CSIR has filed more than 13,000 patents -- 4,500 in India and 8,800 abroad -- at a cost of $7.6 million over the last three years. Across years, that's a lot of taxpayers' money, which in turn means that the closing of CSIR-Tech is a tacit admission that its work has been an expensive mistake -- a mistake that we tax-paying citizens have paid for. Recently, CSIR's Director-General Girish Sahni claimed that most of CSIR's patents were "bio-data patents", filed solely to enhance the value of a scientist's resume and that the extensive expenditure of public funds spent in filing and maintaining patents was unviable. CSIR claims to have licensed a percentage of its patents, but has so far failed to show any revenue earned from the licences. This compulsive hoarding of patents has come at a huge cost. If CSIR-Tech was privately run, it would have been shut down long ago. Acquiring Intellectual Property Rights (IPR) comes out of our blind adherence to the idea of patenting as an index of innovation. The private sector commercializes patents through the licensing of technology and the sale of patented products to recover the money spent in R&D. But when the funds for R&D come from public sources, mimicking the private sector may not be the best option.
An anonymous reader quotes a report from Ars Technica: In new filings, prosecutors told a court in Washington, DC that within the coming weeks, they expect to extract all data from the seized cellphones of more than 100 allegedly violent protesters arrested during the inauguration of President Donald Trump. Prosecutors also said that this search is validated by recently issued warrants. The court filing, which was first reported Wednesday by BuzzFeed News, states that approximately half of the protestors prosecuted with rioting or inciting a riot had their phones taken by authorities. Prosecutors hope to uncover any evidence relevant to the case. Under normal judicial procedures, the feds have vowed to share such data with defense attorneys and to delete all irrelevant data. "All of the Rioter Cell Phones were locked, which requires more time-sensitive efforts to try to obtain the data," Jennifer Kerkhoff, an assistant United States attorney, wrote. Such phone extraction is common by law enforcement nationwide using hardware and software created by Cellebrite and other similar firms. Pulling data off phones is likely more difficult under fully updated iPhones and Android devices.
According to a recent indictment from the U.S. Department of Justice, a 48-year-old Lithuanian scammer named Evaldas Rimasauskas managed to trick two American technology companies into wiring him $100 million. He was able to perform this feat "by masquerading as a prominent Asian hardware manufacturer," reports The Verge, citing court documents, "and tricking employees into depositing tens of millions of dollars into bank accounts in Latvia, Cyprus, and numerous other countries." From the report: What makes this remarkable is not Rimasauskas' particular phishing scam, which sounds rather standard in the grand scheme of wire fraud and cybersecurity exploits. Rather, it's the amount of money he managed to score and the industry from which he stole it. The indictment specifically describes the companies in vague terms. The first company is "multinational technology company, specializing in internet-related services and products, with headquarters in the United States," the documents read. The second company is a "multinational corporation providing online social media and networking services." Both apparently worked with the same "Asia-based manufacturer of computer hardware," a supplier that the documents indicate was founded some time in the late '80s. What's more important is that representatives at both companies with the power to wire vast sums of money were still tricked by fraudulent email accounts. Rimasauskas even went so far as to create fake contracts on forged company letterhead, fake bank invoices, and various other official-looking documents to convince employees of the two companies to send him money. Rimasauskas has been charged with one count of wire fraud, three counts of money laundering, and aggravated identity theft. In other words, he faces serious prison time of convicted -- each charge of wire fraud and laundering carries a max sentence of 20 years. The court documents don't reveal the names of the two companies. Though, one could surely think of a few candidates that would fit the descriptions provided in the court documents.
The World Wide Web Consortium (W3C) has formally put forward highly controversial digital rights management as a new web standard. "Dubbed Encrypted Media Extensions (EME), this anti-piracy mechanism was crafted by engineers from Google, Microsoft, and Netflix, and has been in development for some time," reports The Register. "The DRM is supposed to thwart copyright infringement by stopping people from ripping video and other content from encrypted high-quality streams." From the report: The latest draft was published last week and formally put forward as a proposed standard soon after. Under W3C rules, a decision over whether to officially adopt EME will depend on a poll of its members. That survey was sent out yesterday and member organizations, who pay an annual fee that varies from $2,250 for the smallest non-profits to $77,000 for larger corporations, will have until April 19 to register their opinions. If EME gets the consortium's rubber stamp of approval, it will lock down the standard for web browsers and video streamers to implement and roll out. The proposed standard is expected to succeed, especially after web founder and W3C director Sir Tim Berners-Lee personally endorsed the measure, arguing that the standard simply reflects modern realities and would allow for greater interoperability and improve online privacy. But EME still faces considerable opposition. One of its most persistent vocal opponents, Cory Doctorow of the Electronic Frontier Foundation, argues that EME "would give corporations the new right to sue people who engaged in legal activity." He is referring to the most recent controversy where the W3C has tried to strike a balance between legitimate security researchers investigating vulnerabilities in digital rights management software, and hackers trying to circumvent content protection. The W3C notes that the EME specification includes sections on security and privacy, but concedes "the lack of consensus to protect security researchers remains an issue." Its proposed solution remains "establishing best practices for responsible vulnerability disclosure." It also notes that issues of accessibility were ruled to be outside the scope of the EME, although there is an entire webpage dedicated to those issues and finding solutions to them.
An anonymous reader quotes a report from Digital Journal: Reddit has announced it has begun trialling a radical new profile page design that's reminiscent of Facebook and Twitter. It will evolve the discussion board site towards being a social network by enabling users to post directly to their new profile page. At present, posts on Reddit have to be directed into a specific sub-Reddit community. You can't simply write a post and have it appear across the network which can make it difficult to get your voice heard. Unless you've got some reputation in a relevant sub-Reddit, your posts may end up going unnoticed. That could soon change. Last night, Reddit announced it's working on a drastic revision of its user profile page experience. The site has commenced testing of an early version of the design. According to a report from Reuters, just three "high-profile" users currently have access to the feature. When the new pages are eventually opened up to all, they'll showcase the user's profile picture and description. Below the header, posts from the user will be publicly displayed. The user will be able to add new posts to their page, without submitting to a sub-Reddit. Users will be able to follow each other to stay informed of new posts, effectively creating a social network atmosphere above the discussion boards.
The Grim Reefer quotes a report from The Washington Post: Is Pluto a planet? It's not a question scientists ask in polite company. "It's like religion and politics," said Kirby Runyon, a planetary scientist at Johns Hopkins University. "People get worked up over it. I've gotten worked up over it." For years, astronomers, planetary scientists and other space researchers have fought about what to call the small, icy world at the edge of our solar system. Is it a planet, as scientists believed for nearly seven decades? Or must a planet be something bigger, something more dominant, as was decided by vote at the International Astronomical Union (IAU) in 2006? The issue can bring conversations to a screeching halt, or turn them into shouting matches. "Sometimes," Runyon said, "it's just easier not to bring it up." But Runyon will ignore his own advice this week when he attends the annual Lunar and Planetary Science Conference in Houston. In a giant exhibit hall crowded with his colleagues, he's attempting to reignite the debate about Pluto's status with an audacious new definition for planet -- one that includes not just Pluto, but several of its neighbors, objects in the asteroid belt, and a number of moons. By his count, 102 new planets could be added to our solar system under the new criteria. USA Today reports: "In the mind of the public, the word 'planet' carries a significance lacking in other words used to describe planetary bodies," the proposal states. "In the decade following the supposed 'demotion' of Pluto by the International Astronomical Union, many members of the public, in our experience, assume that alleged 'non-planets' cease to be interesting enough to warrant scientific exploration."
An anonymous reader quotes a report from Bloomberg: Wal-Mart Stores Inc. is creating a technology-startup incubator in Silicon Valley to identify changes that will reshape the retail experience, including virtual reality, autonomous vehicle and drone delivery and personalized shopping. The incubator will be called Store No. 8, a reference to a Wal-Mart location where the company experimented with new store layouts. Marc Lore, chief executive officer of Wal-Mart's e-commerce operations, announced the incubator Monday at the ShopTalk conference in Las Vegas. The world's biggest retailer has been overhauling its online team to better challenge Amazon.com Inc. with greater selection and lower prices. Lore founded Jet.com, which Wal-Mart purchased in September for about $3.3 billion in pursuit of Amazon in the e-commerce race. Lore said Wal-Mart has an advantage over "pure play" e-commerce companies because of its large network of stores that attract shoppers for such items as fresh food. The incubator will partner with startups, venture capitalists and academics to promote innovation in robotics, virtual and augmented reality, machine learning and artificial intelligence, according to Wal-Mart. The goal is to have a fast-moving, separate entity to identify emerging technologies that can be developed and used across Wal-Mart.
An anonymous reader quotes a report from NBC News: President Donald Trump signed a law on Tuesday authorizing funding for a crewed NASA mission to Mars. The new bill (S.442) adds a crewed mission to the red planet as a key NASA objective and authorizes the space agency to direct test human space flight programs that will enable more crewed exploration in deep space. The space agency has $19.5 billion in funding for the 2018 fiscal year, which starts this October. Trump had allocated $19.1 billion for NASA in his budget, which is slightly down from the current year, but still an improvement from the past decade, which saw the end of the space shuttle program. The commander in chief signed the bill surrounded by astronauts and his former Republican rivals, Senator Ted Cruz of Texas and Senator Marco Rubio of Florida, who both sponsored the bill. Getting to Mars, though, isn't expected to happen during the Trump presidency. NASA has its sights set on getting to the red planet in the 2030s. In the near term, NASA plans to test its Orion spacecraft and Space Launch System rocket, in addition to visiting an asteroid and redirecting a chunk of it into orbit around the moon. Astronauts could later visit the boulder and use the mission to test some of the tools needed for a Mars mission.