List of Archived Posts
2007 Newsgroup Postings (11/23 - 12/05)
- Newsweek article--baby boomers and computers
- Newsweek article--baby boomers and computers
- Newsweek article--baby boomers and computers
- Translation of IBM Basic Assembler to C?
- Translation of IBM Basic Assembler to C?
- Translation of IBM Basic Assembler to C?
- Translation of IBM Basic Assembler to C?
- Identity Theft Prevention tips
- Translation of IBM Basic Assembler to C?
- How the pages tables of each segment is located
- Translation of IBM Basic Assembler to C?
- Translation of IBM Basic Assembler to C?
- Translation of IBM Basic Assembler to C?
- Newsweek article--baby boomers and computers
- Newsweek article--baby boomers and computers
- Newsweek article--baby boomers and computers
- segmentation or lack thereof
- Newsweek article--baby boomers and computers
- Newsweek article--baby boomers and computers
- Translation of IBM Basic Assembler to C?
- UK Retail Giant Breached by Insider
- How the pages tables of each segment is located
- 'Man in the browser' is new threat to online banking
- SMF Under VM
- Translation of IBM Basic Assembler to C?
- Newsweek article--baby boomers and computers
- more fun with new, 40yr old technology
- 'Man in the browser' is new threat to online banking
- 'Man in the browser' is new threat to online banking
- more fun with new, 40yr old technology
- What do YOU call the # sign?
- Newsweek article--baby boomers and computers
- What do YOU call the # sign?
- Newsweek article--baby boomers and computers
- Newsweek article--baby boomers and computers
- Newsweek article--baby boomers and computers
- What do YOU call the # sign?
- Intel memory latencies
- Newsweek article--baby boomers and computers
- important
- Why isn't OMVS command integrated with ISPF?
- Newsweek article--baby boomers and computers
- What do YOU call the # sign?
- Newsweek article--baby boomers and computers
- new 40+ yr old, disruptive technology
- Translation of IBM Basic Assembler to C?
- Newsweek article--baby boomers and computers
- Translation of IBM Basic Assembler to C?
- Data Center Theft
- What do YOU call the # sign?
- Newsweek article--baby boomers and computers
- Newsweek article--baby boomers and computers
- Newsweek article--baby boomers and computers
- Newsweek article--baby boomers and computers
- new 40+ yr old, disruptive technology
- new 40+ yr old, disruptive technology
- Remembering the CDC 6600
- Unsung innovators: 10 people who shaped the computer industry
- Remembering the CDC 6600
- The First 100 Dot Coms Ever Registered
- The First 100 Dot Coms Ever Registered
- Crypto Related Posts
- Remembering the CDC 6600
- Remembering the CDC 6600
- new 40+ yr old, disruptive technology
- Remembering the CDC 6600
- What do YOU call the # sign?
- new 40+ yr old, disruptive technology
- T3 Sues IBM To Break its Mainframe Monopoly
- T3 Sues IBM To Break its Mainframe Monopoly
- Remembering the CDC 6600
- T3 Sues IBM To Break its Mainframe Monopoly
- Remembering the CDC 6600
- Remembering the CDC 6600
- What do YOU call the # sign?
- T3 Sues IBM To Break its Mainframe Monopoly
- T3 Sues IBM To Break its Mainframe Monopoly
- T3 Sues IBM To Break its Mainframe Monopoly
Newsweek article--baby boomers and computers
Refed: **, - **, - **, - **, - **, - **, - **
From: Anne & Lynn Wheeler <lynn@garlic.com>
Subject: Re: Newsweek article--baby boomers and computers
Newsgroups: alt.folklore.computers
Date: Fri, 23 Nov 2007 11:59:27 -0500
Anne & Lynn Wheeler <lynn@garlic.com> writes:
The previous high was $1.42 per gallon in March 1981, which would be
$3.20 per gallon after adjustment for inflation. In comparison, the
average retail price of a litre of petrol in the United Kingdom
(gasoline in American English) was 86.4p on 19 October 2006.[6] This
equates to US$6.13 per U.S. gallon
... snip ...
re:
http://www.garlic.com/~lynn/2007s.html#68 Newsweek article--baby boomers and computers
business news station in real time is talking about lack of investment
in infrastructure aka for quite some time, people have been "living off
the principle" ... aka prior investment but not maintaining spending on
infrastructure to maintain at steady state over extended period of
times. at some time, the society is faced with large bill to compensate
for lack of spending over the past couple decades (implication is $$$
being diverted for other purposes).
one of the specific points mentioned about highway/road/bridge
infrastructure is that gas taxes have remained fixed for quite some time
.... if inflation adjusted price of gas between mar81 and now is about
the same ... then gas tax not being adjusted ... results in tax as
percentage of price/gal declining significantly. I didn't catch 1st part
of show, just commentator saying that some civil engineering
organization rated the state as worse in the nation for percentage of
infrastructure in need of significant repair.
the futher comment is that this is aggravated by (gas tax highway) trust
funds being frequently diverted to other things ... again implying
country has been living off of (ever decreasing) principle (where
established infrastructure is taken as a form of principle that
declines/degrades over time if not sufficiently maintained). this is
circumstance that can take decades (of neglect) to accumulate (large
physical infrastructure, however technology infrastructures can become
obsolete in much shorter timeframes).
recent posts mentioning various infrastructure issue
http://www.garlic.com/~lynn/2007n.html#97 Loads Weighing Heavily on Roads
http://www.garlic.com/~lynn/2007o.html#6 Loads Weighing Heavily on Roads
http://www.garlic.com/~lynn/2007q.html#18 Fixing our fraying Internet infrastructure
http://www.garlic.com/~lynn/2007q.html#19 Fixing our fraying Internet infrastructure
http://www.garlic.com/~lynn/2007q.html#60 Fixing our fraying Internet infrastructure
http://www.garlic.com/~lynn/2007q.html#62 Fixing our fraying Internet infrastructure
http://www.garlic.com/~lynn/2007r.html#25 Fixing our fraying Internet infrastructure
http://www.garlic.com/~lynn/2007r.html#48 Half a Century of Crappy Computing
http://www.garlic.com/~lynn/2007r.html#53 Fixing our fraying Internet infrastructure
http://www.garlic.com/~lynn/2007r.html#58 Fixing our fraying Internet infrastructure
http://www.garlic.com/~lynn/2007r.html#59 Fixing our fraying Internet infrastructure
http://www.garlic.com/~lynn/2007r.html#60 Fixing our fraying Internet infrastructure
http://www.garlic.com/~lynn/2007r.html#70 Latest OECD broadband data puts US in middle of the pack on speed, price
http://www.garlic.com/~lynn/2007s.html#1 Translation of IBM Basic Assembler to C?
http://www.garlic.com/~lynn/2007s.html#25 Translation of IBM Basic Assembler to C?
Newsweek article--baby boomers and computers
Refed: **, - **, - **, - **, - **, - **
From: Anne & Lynn Wheeler <lynn@garlic.com>
Subject: Re: Newsweek article--baby boomers and computers
Newsgroups: alt.folklore.computers
Date: Fri, 23 Nov 2007 16:01:40 -0500
Anne & Lynn Wheeler <lynn@garlic.com> writes:
Federal Managers Think Agencies Aren't Ready For Boomer Exodus
http://www.informationweek.com/news/showArticle.jhtml?articleID=202805954
from the article ...
Sixty-one percent of federal managers say their agencies do not have
knowledge management policies to help prepare for the impending
brain-drain, according to a recent survey.
re:
http://www.garlic.com/~lynn/2007s.html#32 Newsweek article--baby boomers and computers
Top strategic business challenges for 2008
http://www.eetimes.com/news/latest/showArticle.jhtml?articleID=204202103
from above:
Regulatory and compliance risk is the greatest strategic challenge
facing global businesses in 2008, according to a new report from Ernst &
Young. Other top issues include global financial shocks, aging
workforce, and the inability to capitalize on the rise of the emerging
markets.
... snip ...
references:
The Top 10 Risks for Business
http://www.ey.com/global/content.nsf/International/AABS_-_Strategic_Business_Risk_Report_2008
....
the other thread somewhat intertwined is the diversion of spending from
infrastructure maintenance to other purposes ... not mentioned, for
instance:
http://www.garlic.com/~lynn/2007q.html#60 Fixing our fraying Internet Infrastructure
from above:
one of the business channels was just interviewing somebody about
sectors for investment ... he commented that there is currently a one
trillion dollar deficit in infrastructure spending (i.e. money that
should have been spent but wasn't for transportation, water, power, etc)
... and as more and more of these infrastructures have various failures
(some catastrophic), at some point they will have to get around spending
the money on refurbishing/renewing/maintenance/etc
... snip ...
also referenced here
http://www.garlic.com/~lynn/2007t.html#0 Newsweek article--baby boomers and computers
Newsweek article--baby boomers and computers
Refed: **, - **, - **, - **, - **
From: Anne & Lynn Wheeler <lynn@garlic.com>
Subject: Re: Newsweek article--baby boomers and computers
Newsgroups: alt.folklore.computers
Date: Sat, 24 Nov 2007 02:18:50 -0500
Anne & Lynn Wheeler <lynn@garlic.com> writes:
The yen rose significantly against the dollar since the early 70s
... recent posts with reference (from about 300/dollar to around
100/dollar)
re:
http://www.garlic.com/~lynn/2007s.html#67 Newsweek article--baby boomers and computers
Dollar sinks below 108 yen in N.Y. for 1st time since June 2005+
http://www.breitbart.com/article.php?id=D8T3EDK00
re:
http://www.garlic.com/~lynn/2007g.html#34 U.S. Cedes Top Spot in Global IT Competitiveness
from above:
yen hit a "high" against the dollar of 83yen/dollar in 1995 after being
at 358yen/dollar in 1971 ... between 1995 and current, it did manage to
climb back as "low" as 134 in 2002.
... snip ...
Translation of IBM Basic Assembler to C?
Refed: **, - **, - **, - **, - **, - **, - **, - **
From: Anne & Lynn Wheeler <lynn@garlic.com>
Subject: Re: Translation of IBM Basic Assembler to C?
Newsgroups: alt.folklore.computers
Date: Sat, 24 Nov 2007 02:50:27 -0500
Steve O'Hara-Smith <steveo@eircom.net> writes:
At transaction time the individual provides their ID - user
interacts with service provider, service provider sends authentication
token to entity. A little care with signed tokens should make this process
secure (3D-Secure seems to be a good model to follow for this interaction).
but it effectively involves having to reconcile two different
authentication operations (making it much more complex and error prone)
... as opposed to doing simple straight through processing (STP) in a
single round-trip ... ala x9.59 financial standard
http://www.garlic.com/~lynn/x959.html#x959
misc. past posts mentioning 3d secure
http://www.garlic.com/~lynn/aadsm6.htm#terror7 [FYI] Did Encryption Empower These Terrorists?
http://www.garlic.com/~lynn/aadsm6.htm#terror10 [FYI] Did Encryption Empower These Terrorists?
http://www.garlic.com/~lynn/aadsm6.htm#terror13 [FYI] Did Encryption Empower These Terrorists?
http://www.garlic.com/~lynn/aadsm6.htm#pcards The end of P-Cards?
http://www.garlic.com/~lynn/aepay7.htm#3dsecure 3D Secure Vulnerabilities? Photo ID's and Payment Infrastructure
http://www.garlic.com/~lynn/aepay7.htm#3dsecure2 3D Secure Vulnerabilities? Photo ID's and Payment Infrastructure
http://www.garlic.com/~lynn/aepay7.htm#3dsecure4 3D Secure Vulnerabilities? Photo ID's and Payment Infrastructure
http://www.garlic.com/~lynn/aadsm7.htm#pcards5 FW: The end of P-Cards?
http://www.garlic.com/~lynn/aadsm7.htm#3dsecure 3D Secure Vulnerabilities?
http://www.garlic.com/~lynn/aadsm8.htm#3dvulner 3D Secure Vulnerabilities?
http://www.garlic.com/~lynn/aadsm8.htm#softpki16 DNSSEC (RE: Software for PKI)
http://www.garlic.com/~lynn/aadsm8.htm#3dvulner3 3D Secure Vulnerabilities?
http://www.garlic.com/~lynn/aadsm9.htm#3dvulner4 3D Secure Vulnerabilities?
http://www.garlic.com/~lynn/aadsm9.htm#3dvulner5 3D Secure Vulnerabilities?
http://www.garlic.com/~lynn/aepay10.htm#17 Visa 3-D Secure vs MasterCard SPA Whitepaper (forwarded)
http://www.garlic.com/~lynn/aepay10.htm#37 landscape & p-cards
http://www.garlic.com/~lynn/aepay10.htm#76 Invisible Ink, E-signatures slow to broadly catch on (addenda)
http://www.garlic.com/~lynn/aadsm11.htm#19 IBM alternative to PKI?
http://www.garlic.com/~lynn/aadsm11.htm#28 Proposal: A replacement for 3D Secure
http://www.garlic.com/~lynn/aadsm11.htm#29 Proposal: A replacement for 3D Secure
http://www.garlic.com/~lynn/aadsm11.htm#30 Proposal: A replacement for 3D Secure
http://www.garlic.com/~lynn/aadsm11.htm#31 Proposal: A replacement for 3D Secure
http://www.garlic.com/~lynn/aadsm11.htm#37 ALARMED ... Only Mostly Dead ... RIP PKI
http://www.garlic.com/~lynn/aadsm11.htm#38 ALARMED ... Only Mostly Dead ... RIP PKI ... part II
http://www.garlic.com/~lynn/aadsm12.htm#1 3D Secure GUI
http://www.garlic.com/~lynn/aadsm12.htm#2 3D Secure GUI
http://www.garlic.com/~lynn/aadsm12.htm#3 [3d-secure] NEWS: 3D-Secure and Passport
http://www.garlic.com/~lynn/aadsm12.htm#4 NEWS: 3D-Secure and Passport
http://www.garlic.com/~lynn/aadsm12.htm#5 NEWS: 3D-Secure and Passport
http://www.garlic.com/~lynn/aadsm12.htm#6 NEWS: 3D-Secure and Passport
http://www.garlic.com/~lynn/aadsm12.htm#7 NEWS: 3D-Secure and Passport
http://www.garlic.com/~lynn/aadsm12.htm#8 [3d-secure] 3D Secure and EMV
http://www.garlic.com/~lynn/aadsm12.htm#10 [3d-secure] 3D Secure and EMV
http://www.garlic.com/~lynn/aadsm15.htm#5 Is cryptography where security took the wrong branch?
http://www.garlic.com/~lynn/aadsm15.htm#8 Is cryptography where security took the wrong branch?
http://www.garlic.com/~lynn/aadsm15.htm#38 FAQ: e-Signatures and Payments
http://www.garlic.com/~lynn/aadsm15.htm#39 FAQ: e-Signatures and Payments
http://www.garlic.com/~lynn/aadsm17.htm#27 Re:Identity Firewall. l PKI International Consortium
http://www.garlic.com/~lynn/aepay8.htm#epso ePSO-N 10 available on Internet
http://www.garlic.com/~lynn/2005l.html#12 The Worth of Verisign's Brand
http://www.garlic.com/~lynn/2005l.html#21 The Worth of Verisign's Brand
Translation of IBM Basic Assembler to C?
Refed: **, - **, - **
From: Anne & Lynn Wheeler <lynn@garlic.com>
Subject: Re: Translation of IBM Basic Assembler to C?
Newsgroups: alt.folklore.computers
Date: Sat, 24 Nov 2007 02:57:10 -0500
Anne & Lynn Wheeler <lynn@garlic.com> writes:
a website with an extremely caustic view on how credit backed
securitized instruments have been rated.
Next Phase of the Financial Markets Credit Crunch Crisis: The Great Ratings Debacle
http://www.marketoracle.co.uk/Article2748.html
re:
http://www.garlic.com/~lynn/2007s.html#28 Translation of IBM Basic Assembler to C?
some more detailed discussions
A Financial System under Siege
http://www.globalresearch.ca/index.php?context=va&aid=7333
Hank Paulson's got an Enron-like crisis that could swamp Citigroup (C)
and JPMorgan (JPM)
http://gs.bloggingstocks.com/2007/10/14/hank-paulsons-got-an-enron-like-crisis-that-could-swamp-citigro/
ECB chief wants more control of credit rating agencies
http://news.monstersandcritics.com/business/news/article_1375876.php/ECB_chief_wants_more_control_of_credit_rating_agencies
somewhat related
Has the Dollar Hit Bottom?
http://seekingalpha.com/article/54195-has-the-dollar-hit-bottom
Emerging markets: India and China are the investors' haven
http://www.telegraph.co.uk/money/main.jhtml?xml=/money/2007/11/10/cmindia10.xml
other recent posts mentioning currency valuation
http://www.garlic.com/~lynn/2007g.html#34 U.S. Cedes Top Spot in Global IT Competitiveness
http://www.garlic.com/~lynn/2007g.html#35 U.S. Cedes Top Spot in Global IT Competitiveness
http://www.garlic.com/~lynn/2007j.html#88 IBM Unionization
http://www.garlic.com/~lynn/2007s.html#67 Newsweek article--baby boomers and computers
http://www.garlic.com/~lynn/2007t.html#1 Newsweek article--baby boomers and computers
http://www.garlic.com/~lynn/2007t.html#2 Newsweek article--baby boomers and computers
Translation of IBM Basic Assembler to C?
Refed: **, - **, - **, - **, - **, - **
From: Anne & Lynn Wheeler <lynn@garlic.com>
Subject: Re: Translation of IBM Basic Assembler to C?
Newsgroups: alt.folklore.computers
Date: Sat, 24 Nov 2007 03:18:07 -0500
Steve O'Hara-Smith <steveo@eircom.net> writes:
Individual wishing to be identifiable to some entity provides the
entity with their public ID, which the entity can then use as a key to their
store of privileges for the individual. Now enters the issue of "yes
service providers" - ones that say yes to any ID for selected customers -
but such can be blacklisted when detected.
FSTC
http://www.fstc.org/
did something along this lines in the FAST project ... financially
authentication secure transaction ... riding existing 8583 rails
... except asking for yes/no authentication/authorization for financial
transactions, it proposed doing something similar for other kinds of
questions ... like "greater than 21". basically, single roundtrip,
straight through processing, x9.59-like transaction
http://www.garlic.com/~lynn/x959.html#x959
a couple recent posts mentioning FAST
http://www.garlic.com/~lynn/2007d.html#10 The logic of privacy
http://www.garlic.com/~lynn/2007d.html#12 One Time Identification, a request for comments/testing
http://www.garlic.com/~lynn/2007s.html#15 The new urgency to fix online privacy
disclaimer, were were doing some consulting for one of the individuals
responsible for creating FSTC at the time it was being set up.
recent posts in this subthread
http://www.garlic.com/~lynn/2007r.html#63 Translation of IBM Basic Assembler to C?
http://www.garlic.com/~lynn/2007s.html#10 Translation of IBM Basic Assembler to C?
http://www.garlic.com/~lynn/2007s.html#59 Translation of IBM Basic Assembler to C?
http://www.garlic.com/~lynn/2007s.html#62 Translation of IBM Basic Assembler to C?
http://www.garlic.com/~lynn/2007t.html#3 Translation of IBM Basic Assembler to C?
other older posts mentioning FAST
http://www.garlic.com/~lynn/ansiepay.htm#privacy more on privacy
http://www.garlic.com/~lynn/ansiepay.htm#x959demo X9.59/AADS demos operational
http://www.garlic.com/~lynn/aepay6.htm#userauth MS masters NC mind-set (authentication is the key)
http://www.garlic.com/~lynn/aadsm9.htm#cfppki3 CFP: PKI research workshop
http://www.garlic.com/~lynn/aadsm9.htm#cfppki4 CFP: PKI research workshop
http://www.garlic.com/~lynn/aadsmore.htm#x959demo AADS & X9.59 demos at BAI (annual world-wide retail banking) show in miami next week
http://www.garlic.com/~lynn/aepay10.htm#8 FSTC to Validate WAP 1.2.1 Specification for Mobile Commerce
http://www.garlic.com/~lynn/aepay10.htm#31 some certification & authentication landscape summary from recent threads
http://www.garlic.com/~lynn/aepay11.htm#58 PKI's not working
http://www.garlic.com/~lynn/aepay11.htm#66 Confusing Authentication and Identiification?
http://www.garlic.com/~lynn/aepay11.htm#67 Confusing Authentication and Identiification?
http://www.garlic.com/~lynn/aepay11.htm#70 Confusing Authentication and Identiification? (addenda)
http://www.garlic.com/~lynn/aadsm11.htm#40 ALARMED ... Only Mostly Dead ... RIP PKI ... part II
http://www.garlic.com/~lynn/aadsm11.htm#42 ALARMED ... Only Mostly Dead ... RIP PKI ... part III
http://www.garlic.com/~lynn/aadsm12.htm#3 [3d-secure] NEWS: 3D-Secure and Passport
http://www.garlic.com/~lynn/aadsm12.htm#39 Identification = Payment Transaction?
http://www.garlic.com/~lynn/aadsm12.htm#41 I-D ACTION:draft-ietf-pkix-sim-00.txt
http://www.garlic.com/~lynn/aadsm12.htm#54 TTPs & AADS Was: First Data Unit Says It's Untangling Authentication
http://www.garlic.com/~lynn/aadsm16.htm#5 DOD prepares for credentialing pilot
http://www.garlic.com/~lynn/aadsm17.htm#19 PKI International Consortium
http://www.garlic.com/~lynn/aadsm26.htm#24 News.com: IBM donates new privacy tool to open-source Higgins
http://www.garlic.com/~lynn/aadsm26.htm#29 News.com: IBM donates new privacy tool to open-source Higgins
http://www.garlic.com/~lynn/99.html#171 checks (was S/390 on PowerPC?)
http://www.garlic.com/~lynn/99.html#216 Ask about Certification-less Public Key
http://www.garlic.com/~lynn/99.html#217 AADS/X9.59 demo & standards at BAI (world-wide retail banking) show
http://www.garlic.com/~lynn/2002o.html#57 Certificate Authority: Industry vs. Government
http://www.garlic.com/~lynn/2005l.html#36 More Phishing scams, still no SSL being used
http://www.garlic.com/~lynn/2005l.html#37 More Phishing scams, still no SSL being used
http://www.garlic.com/~lynn/2005l.html#42 More Phishing scams, still no SSL being used
http://www.garlic.com/~lynn/2006f.html#35 X.509 and ssh
Translation of IBM Basic Assembler to C?
Refed: **, - **, - **
From: Anne & Lynn Wheeler <lynn@garlic.com>
Subject: Re: Translation of IBM Basic Assembler to C?
Newsgroups: alt.folklore.computers
Date: Sat, 24 Nov 2007 10:11:48 -0500
Bernd Felsche <bernie@innovative.iinet.net.au> writes:
It is possible for the data to be entirely mirrored over several
physical machines; or the data to be distributed over different
security domains; according to the classification of the data. This
facilitates especially-confidential data to be stored appropriately.
we co-authored x9.99 financial industry privacy standard ... and during
the process we had to look at both GLBA and HIPAA (and some of the
staffers involved ... one who had worked on HIPAA provisions going back
to mid-70s) ... as well as some of the EU-DPD.
one of the issues was cross-over I've mentioned when we were called to
come in to help word-smith the cal state (and later federal) electronic
signature legislation.
http://www.garlic.com/~lynn/subpubkey.html#signature
Some of the other organizations involved in the electronic signature act
were also involved in various breach disclosure and personal information
sharing (opt-in/opt-out) legislation. Part of the breach disclosure and
personal information sharing activity involved doing some more detailed
studies of the associated threats and vulnerabilities and more
information regarding all the types of identity theft.
Part of the more detailed look was consumer surveys about privacy coming
up with two major issues were 1) identity theft and 2) denial of service
(by institutions; gov. services, commercial services, jobs, insurance,
etc)
The other part was attempting to do more detailed taxonomy for identity
theft ... where several institutions are looking to differentiate
account fraud (fraudulent transactions against existing accounts) and
identity fraud (frequently opening new accounts using personal
information).
This led is to also looking at security classifications for personal
data and more detailed threat and vulnerability analysis. One of the
things we came up with is rather (and/or in addition) to labeling
personal data with security classifications, labeling personal data as
to the associated threat and vulnerability ... and then establishing
countermeasures based on the threat and vulnerability ... as opposed to
establishing countermeasures based on security classification.
A trivial semantic example we came up with was date-of-birth used in the
insurance industry. The insurance industry uses date-of-birth to
establish age as part of various kinds of insurance. On the other hand,
date-of-birth is frequently used as form of something you know
authentication ... and therefor represents a fraud threat and
vulnerability. So a trivial operation ... rather than supplying
insurance agents with date-of-birth ... provide them with real-time,
online system that automatically converts date-of-birth to age (and
never divulges date-of-birth). This is also somewhat related to
the FSTC FAST proposal mentioned recently in this post:
http://www.garlic.com/~lynn/2007t.html#5 Translation of IBM Basic Assembler to C?
We had earlier done something analogous when working in the x9a10
financial standard working group in the mid-90s (which had been
given the requirement to preserve the integrity of the financial
infrastructure for all retail payments)
http://www.garlic.com/~lynn/x959.html#x959
Some detailed threat and vulnerability studies showed that just knowlege
of account number (with or w/o slightly more additional information that
was normally part of every transaction) would enable an attacker to
perform a fraudulent transaction. The kneejerk reaction was to attempt
to "hide" all that information. However, detailed end-to-end business
process analysis showed that the information was required in a large
number of different business processes possibly that extended over (at
least) several month (or couple yr) time period.
As a result, the x9.59 financial standard approach was to eliminate the
information as a threat/vulnerability; harvesting/skimming/breaching
the transaction information
http://www.garlic.com/~lynn/subintegrity.html#harvest
... attackers would not be enabled to perform fraudulent transactions.
One of the major issues was that preserving much more detailed
vulnerability and threat semantic associations/details
... helps/enables more innovative solutions (which doesn't simply
degenerate to deciding how the information is to be stored ... and/or
encrypted). somewhat related topic drift with posts mentioning the
naked transaction metaphor
http://www.garlic.com/~lynn/subintegrity.html#payments
misc. past posts mentioning working on x9.99 financial industry privacy
standard
http://www.garlic.com/~lynn/aadsm17.htm#21 Identity (was PKI International Consortium)
http://www.garlic.com/~lynn/aadsm17.htm#45 x9.99 financial PIA standard now available from ANSI e-store
http://www.garlic.com/~lynn/aadsm17.htm#47 authentication and authorization ... addenda
http://www.garlic.com/~lynn/aadsm18.htm#28 x9.99 privacy note
http://www.garlic.com/~lynn/aadsm18.htm#32 EMV cards as identity cards
http://www.garlic.com/~lynn/aadsm19.htm#35 de-identification
http://www.garlic.com/~lynn/aadsm20.htm#2 US consumers want companies fined for security breaches
http://www.garlic.com/~lynn/aadsm25.htm#21 Identity v. anonymity -- that is not the question
http://www.garlic.com/~lynn/aadsm25.htm#26 Fraudwatch - how much a Brit costs, how to be a 419-er, Sarbanes-Oxley rises as fraud rises, the real Piracy
http://www.garlic.com/~lynn/aadsm25.htm#33 Mozilla moves on security
http://www.garlic.com/~lynn/aadsm26.htm#57 Our security sucks. Why can't we change? What's wrong with us?
http://www.garlic.com/~lynn/aadsm27.htm#51 Know Your Enemy: Scott McNeally on security theater
http://www.garlic.com/~lynn/2004l.html#8 x9.99 privacy impact assessemnt (PIA) standard
http://www.garlic.com/~lynn/2005l.html#36 More Phishing scams, still no SSL being used
http://www.garlic.com/~lynn/2005t.html#9 phishing web sites using self-signed certs
http://www.garlic.com/~lynn/2005u.html#18 XBOX 360
http://www.garlic.com/~lynn/2005v.html#3 ABN Tape - Found
http://www.garlic.com/~lynn/2006e.html#44 Does the Data Protection Act of 2005 Make Sense
http://www.garlic.com/~lynn/2006o.html#37 the personal data theft pandemic continues
http://www.garlic.com/~lynn/2006q.html#25 garlic.com
http://www.garlic.com/~lynn/2006v.html#39 On sci.crypt: New attacks on the financial PIN processing
http://www.garlic.com/~lynn/2007b.html#61 Securing financial transactions a high priority for 2007
http://www.garlic.com/~lynn/2007c.html#10 Securing financial transactions a high priority for 2007
http://www.garlic.com/~lynn/2007f.html#72 Securing financial transactions a high priority for 2007
http://www.garlic.com/~lynn/2007g.html#15 T.J. Maxx data theft worse than first reported
http://www.garlic.com/~lynn/2007o.html#13 EZPass: Yes, Big Brother IS Watching You!
http://www.garlic.com/~lynn/2007r.html#26 The new urgency to fix online privacy
http://www.garlic.com/~lynn/2007r.html#29 The new urgency to fix online privacy
http://www.garlic.com/~lynn/2007s.html#55 Translation of IBM Basic Assembler to C?
Identity Theft Prevention tips
From: Anne & Lynn Wheeler <lynn@garlic.com>
Subject: Re: Identity Theft Prevention tips
Newsgroups: alt.folklore.computers
Date: Sat, 24 Nov 2007 10:28:22 -0500
jmfbahciv writes:
ROTFL. You do that everytime you buy something with it. What
I do is complete divorce the credit card from all my banking data.
You pay the credit card bills with a piece of paper that has none
of your personal banking numbers on it. That way none of their
data stores has both numbers in the same record.
slightly related discussion of types of personal information protection,
breach disclosures, as well as identity theft differentiated into (at
least) account fraud (fraudulent transactions against existing accounts)
and identity fraud (frequently using personal information to open new
accounts, take out new mortgages, etc).
http://www.garlic.com/~lynn/2007t.html#6 Translation of IBM Basic Assembler to C?
older posts mentioning differentiating identity theft into (at least)
account fraud and identity fraud:
http://www.garlic.com/~lynn/aadsm8.htm#rhose16 when a fraud is a sale, Re: Rubber hose attack
http://www.garlic.com/~lynn/aepay11.htm#3 Ministers to Act on Rise in Identity Theft
http://www.garlic.com/~lynn/aepay11.htm#47 Actual Losses To Identity Fraud Top $1 Billion
http://www.garlic.com/~lynn/aadsm16.htm#0 Identity Fraud costs Austrilia AU$1 billion a year
http://www.garlic.com/~lynn/aadsm20.htm#2 US consumers want companies fined for security breaches
http://www.garlic.com/~lynn/aadsm20.htm#17 the limits of crypto and authentication
http://www.garlic.com/~lynn/aadsm25.htm#21 Identity v. anonymity -- that is not the question
http://www.garlic.com/~lynn/2003m.html#51 public key vs passwd authentication?
http://www.garlic.com/~lynn/2005l.html#36 More Phishing scams, still no SSL being used
http://www.garlic.com/~lynn/2005p.html#24 Hi-tech no panacea for ID theft woes
http://www.garlic.com/~lynn/2006d.html#25 Caller ID "spoofing"
http://www.garlic.com/~lynn/2006d.html#26 Caller ID "spoofing"
http://www.garlic.com/~lynn/2006n.html#40 Identity Management Best Practices
http://www.garlic.com/~lynn/2007c.html#22 Securing financial transactions a high priority for 2007
http://www.garlic.com/~lynn/2007e.html#29 Securing financial transactions a high priority for 2007
http://www.garlic.com/~lynn/2007e.html#58 Securing financial transactions a high priority for 2007
http://www.garlic.com/~lynn/2007i.html#19 John W. Backus, 82, Fortran developer, dies
http://www.garlic.com/~lynn/2007o.html#30 EZPass: Yes, Big Brother IS Watching You!
Translation of IBM Basic Assembler to C?
Refed: **, - **, - **, - **, - **, - **
From: Anne & Lynn Wheeler <lynn@garlic.com>
Subject: Re: Translation of IBM Basic Assembler to C?
Newsgroups: alt.folklore.computers
Date: Sat, 24 Nov 2007 14:09:49 -0500
Steve O'Hara-Smith <steveo@eircom.net> writes:
It's a very simple operation - keyfobs sold with an online
registration URL and perhaps a phone number for registration. The ID is
printed on the back of the keyfob (complete with service provider part).
Registration involves confirming that you have the keyfob (by providing the
number on the display) and providing a password known only to the
individual and the service provider - who hopefully trapdoor encodes it).
other related posts
http://www.garlic.com/~lynn/2007t.html#3 Translation of IBM Basic Assembler to C?
http://www.garlic.com/~lynn/2007t.html#5 Translation of IBM Basic Assembler to C?
as an aside ... we covered large parts of this infrastructure as part of
the person-centric effort ... recent posts/references
http://www.garlic.com/~lynn/2007s.html#59 Translation of IBM Basic Assembler to C?
http://www.garlic.com/~lynn/2007s.html#62 Translation of IBM Basic Assembler to C?
http://www.garlic.com/~lynn/2007s.html#65 Translation of IBM Basic Assembler to C?
... and there were some number of patents that were filed (for which we
have no rights/interest)
http://www.garlic.com/~lynn/x959.html#aads
and
http://www.garlic.com/~lynn/aadssummary.htm
part of the effort was being able to even demonstrate COMMON CRITERIA
evaluation ... not only as part of registration (in support of getting
institutions to accept transition to person-centric tokens)
... but even if necessary on a per transaction basis ... as part of
something referred to as parameterised risk management
(i.e. up-to-date security/integrity assesement of any particular token
could be taken into account in real time with respect to the integrity
requirements needed for any specific transaction).
We raised the issue of real-time parameterised risk management
with some of the people behind the x.509 identity digital certificate
version three extensions.
... while we strongly advocated real-time authentication certificate-less
operations
http://www.garlic.com/~lynn/subpubkey.html#certless
... and that digital certificates should be restricted to the
environment for which they were originally invented, aka the offline
environment where the relying party has no other recourse to
information about first time interactions with total strangers (aka
the letters of credit/introduction from sailing ship days)
... that if digital certificates were going to be used ... then some
additional useful information that might be of interest to relying
parties is the assessed integrity of the associated components (in
public key scenario, the evaluated integrity level surrounding the
private key ... and if a token is involved, the evaluated integrity
level of the token ... including real-time updates as new compromises
are discovered).
for example ... one of the most prevalent internet/web authentication
infrastructures is RADIUS
http://www.garlic.com/~lynn/subpubkey.html#radius
and one of the most common local authentication mechanism (including
basis for windows platform infrastructures) is kerberos
http://www.garlic.com/~lynn/subpubkey.html#kerberos
have extensions for whether or not the authentication involves a
hardware token ... assuming hardware token represents stronger integrity
... but typically don't go further by including security evulations for
different tokens ... again which becomes a person-centric characteristic
(potentially because different person-centric tokens might have
different security characteristics).
past posts mentioning parameterised risk management (even being able
to do near real-time updates and assessment).
http://www.garlic.com/~lynn/aadsmore.htm#bioinfo3 QC Bio-info leak?
http://www.garlic.com/~lynn/aadsmore.htm#biosigs biometrics and electronic signatures
http://www.garlic.com/~lynn/aepay3.htm#x959risk1 Risk Management in AA / draft X9.59
http://www.garlic.com/~lynn/aadsm3.htm#cstech4 cardtech/securetech & CA PKI
http://www.garlic.com/~lynn/aadsm3.htm#cstech9 cardtech/securetech & CA PKI
http://www.garlic.com/~lynn/aadsm3.htm#kiss2 Common misconceptions, was Re: KISS for PKIX. (Was: RE: ASN.1 vs XML (used to be RE: I-D ACTION :draft-ietf-pkix-scvp-00.txt))
http://www.garlic.com/~lynn/aepay6.htm#x959b X9.59 Electronic Payment standard issue
http://www.garlic.com/~lynn/aadsm12.htm#17 Overcoming the potential downside of TCPA
http://www.garlic.com/~lynn/aadsm19.htm#15 Loss Expectancy in NPV calculations
http://www.garlic.com/~lynn/aadsm19.htm#44 massive data theft at MasterCard processor
http://www.garlic.com/~lynn/aadsm19.htm#46 the limits of crypto and authentication
http://www.garlic.com/~lynn/aadsm21.htm#5 Is there any future for smartcards?
http://www.garlic.com/~lynn/aadsm21.htm#8 simple (&secure??) PW-based web login (was Re: Another entry in the internet security hall of shame....)
http://www.garlic.com/~lynn/aadsm23.htm#1 RSA Adaptive Authentication
http://www.garlic.com/~lynn/aadsm23.htm#27 Chip-and-Pin terminals were replaced by "repairworkers"?
http://www.garlic.com/~lynn/aadsm25.htm#1 Crypto to defend chip IP: snake oil or good idea?
http://www.garlic.com/~lynn/aadsm25.htm#2 Crypto to defend chip IP: snake oil or good idea?
http://www.garlic.com/~lynn/aadsm26.htm#35 Failure of PKI in messaging
http://www.garlic.com/~lynn/aadsm3.htm#cstech3 cardtech/securetech & CA PKI
http://www.garlic.com/~lynn/99.html#235 Attacks on a PKI
http://www.garlic.com/~lynn/99.html#238 Attacks on a PKI
http://www.garlic.com/~lynn/2000.html#46 question about PKI...
http://www.garlic.com/~lynn/2000.html#57 RealNames hacked. Firewall issues.
http://www.garlic.com/~lynn/2005k.html#23 More on garbage
http://www.garlic.com/~lynn/2006g.html#40 Why are smart cards so dumb?
http://www.garlic.com/~lynn/2006o.html#20 Gen 2 EPC Protocol Approved as ISO 18000-6C
misc posts mentioning common criteria, protection profiles, security
evaluations, etc
http://www.garlic.com/~lynn/aepay4.htm#x9flb12 LB#12 Protection Profiles
http://www.garlic.com/~lynn/aadsm5.htm#asrn4 assurance, X9.59, etc
http://www.garlic.com/~lynn/aadsm12.htm#13 anybody seen (EAL5) semi-formal specification for FIPS186-2/x9.62 ecdsa?
http://www.garlic.com/~lynn/aadsm12.htm#14 Challenge to TCPA/Palladium detractors
http://www.garlic.com/~lynn/aadsm12.htm#19 TCPA not virtualizable during ownership change (Re: Overcoming the potential downside of TCPA)
http://www.garlic.com/~lynn/aadsm13.htm#20 surrogate/agent addenda (long)
http://www.garlic.com/~lynn/aadsm14.htm#32 An attack on paypal
http://www.garlic.com/~lynn/aadsm15.htm#23 NCipher Takes Hardware Security To Network Level
http://www.garlic.com/~lynn/aadsm16.htm#1 FAQ: e-Signatures and Payments
http://www.garlic.com/~lynn/aadsm16.htm#8 example: secure computing kernel needed
http://www.garlic.com/~lynn/aadsm17.htm#26 privacy, authentication, identification, authorization
http://www.garlic.com/~lynn/aadsm18.htm#41 Adding reliability and trust to smartcards
http://www.garlic.com/~lynn/aadsm18.htm#47 Dell to Add Security Chip to PCs
http://www.garlic.com/~lynn/aadsm18.htm#48 Dell to Add Security Chip to PCs
http://www.garlic.com/~lynn/aadsm21.htm#4 Another entry in the internet security hall of shame
http://www.garlic.com/~lynn/aadsm24.htm#23 Use of TPM chip for RNG?
http://www.garlic.com/~lynn/aadsm24.htm#26 Naked Payments IV - let's all go naked
http://www.garlic.com/~lynn/aadsm25.htm#1 Crypto to defend chip IP: snake oil or good idea?
http://www.garlic.com/~lynn/aadsm25.htm#40 Why security training is really important (and it ain't anything to do with security!)
http://www.garlic.com/~lynn/aadsm27.htm#10 K6 again, again and again. Therefore, H6.4 -- Compromise on Security before Delivery
http://www.garlic.com/~lynn/aadsm27.htm#37 The bank fraud blame game
http://www.garlic.com/~lynn/aadsm27.htm#48 If your CSO lacks an MBA, fire one of you
http://www.garlic.com/~lynn/2001.html#50 What exactly is the status of the Common Criteria
http://www.garlic.com/~lynn/2001b.html#47 what is interrupt mask register?
http://www.garlic.com/~lynn/2001i.html#55 Computer security: The Future
http://www.garlic.com/~lynn/2001l.html#15 Security Classifications? (Where to Find Info)
http://www.garlic.com/~lynn/2002c.html#15 Opinion on smartcard security requested
http://www.garlic.com/~lynn/2002e.html#17 Smart Cards
http://www.garlic.com/~lynn/2002f.html#23 Computers in Science Fiction
http://www.garlic.com/~lynn/2002h.html#71 history of CMS
http://www.garlic.com/~lynn/2002h.html#84 history of CMS
http://www.garlic.com/~lynn/2002j.html#40 Beginner question on Security
http://www.garlic.com/~lynn/2002j.html#84 formal fips186-2/x9.62 definition for eal 5/6 evaluation
http://www.garlic.com/~lynn/2002j.html#86 formal fips186-2/x9.62 definition for eal 5/6 evaluation
http://www.garlic.com/~lynn/2002k.html#11 Serious vulnerablity in several common SSL implementations?
http://www.garlic.com/~lynn/2002k.html#35 ... certification
http://www.garlic.com/~lynn/2002l.html#42 Thirty Years Later: Lessons from the Multics Security Evaluation
http://www.garlic.com/~lynn/2002l.html#44 Thirty Years Later: Lessons from the Multics Security Evaluation
http://www.garlic.com/~lynn/2002l.html#45 Thirty Years Later: Lessons from the Multics Security Evaluation
http://www.garlic.com/~lynn/2002m.html#8 Backdoor in AES ?
http://www.garlic.com/~lynn/2002m.html#10 Backdoor in AES ?
http://www.garlic.com/~lynn/2002m.html#44 Beware, Intel to embed digital certificates in Banias
http://www.garlic.com/~lynn/2002m.html#58 The next big things that weren't
http://www.garlic.com/~lynn/2002m.html#72 Whatever happened to C2 "Orange Book" Windows security?
http://www.garlic.com/~lynn/2002n.html#13 Help! Good protocol for national ID card?
http://www.garlic.com/~lynn/2002n.html#16 Help! Good protocol for national ID card?
http://www.garlic.com/~lynn/2002o.html#78 Newsgroup cliques?
http://www.garlic.com/~lynn/2002p.html#6 unix permissions
http://www.garlic.com/~lynn/2003b.html#0 Disk drives as commodities. Was Re: Yamhill
http://www.garlic.com/~lynn/2003c.html#39 DOD 5200.28-STD capable OS?
http://www.garlic.com/~lynn/2003i.html#35 electronic-ID and key-generation
http://www.garlic.com/~lynn/2003i.html#36 electronic-ID and key-generation
http://www.garlic.com/~lynn/2003i.html#59 grey-haired assembler programmers (Ritchie's C)
http://www.garlic.com/~lynn/2003j.html#4 A Dark Day
http://www.garlic.com/~lynn/2003j.html#36 CC vs. NIST/TCSEC - Which do you prefer?
http://www.garlic.com/~lynn/2003k.html#3 Ping: Anne & Lynn Wheeler
http://www.garlic.com/~lynn/2003k.html#48 Who said DAT?
http://www.garlic.com/~lynn/2003k.html#51 Linux gets sensitive government use approval
http://www.garlic.com/~lynn/2003l.html#19 Secure OS Thoughts
http://www.garlic.com/~lynn/2003l.html#64 Can you use ECC to produce digital signatures? It doesn't see
http://www.garlic.com/~lynn/2003m.html#1 Password / access rights check
http://www.garlic.com/~lynn/2003m.html#18 Threat Analysis and Threat Trees
http://www.garlic.com/~lynn/2003o.html#5 perfomance vs. key size
http://www.garlic.com/~lynn/2004b.html#48 Automating secure transactions
http://www.garlic.com/~lynn/2004b.html#51 Using Old OS for Security
http://www.garlic.com/~lynn/2004f.html#20 Why does Windows allow Worms?
http://www.garlic.com/~lynn/2004h.html#2 Adventure game (was:PL/? History (was Hercules))
http://www.garlic.com/~lynn/2004h.html#30 ECC Encryption
http://www.garlic.com/~lynn/2004i.html#27 New Method for Authenticated Public Key Exchange without Digital Certificates
http://www.garlic.com/~lynn/2004j.html#2 Authenticated Public Key Exchange without Digital Certificates?
http://www.garlic.com/~lynn/2004j.html#29 Vintage computers are better than modern crap !
http://www.garlic.com/~lynn/2004j.html#41 Vintage computers are better than modern crap !
http://www.garlic.com/~lynn/2004l.html#21 "Perfect" or "Provable" security both crypto and non-crypto?
http://www.garlic.com/~lynn/2004m.html#25 Shipwrecks
http://www.garlic.com/~lynn/2004m.html#41 EAL5
http://www.garlic.com/~lynn/2004m.html#49 EAL5
http://www.garlic.com/~lynn/2004m.html#50 EAL5
http://www.garlic.com/~lynn/2004m.html#53 4GHz is the glass ceiling?
http://www.garlic.com/~lynn/2004n.html#41 Multi-processor timing issue
http://www.garlic.com/~lynn/2004o.html#20 RISCs too close to hardware?
http://www.garlic.com/~lynn/2004o.html#57 Integer types for 128-bit addressing
http://www.garlic.com/~lynn/2004p.html#42 chip inside smart card is firmware?
http://www.garlic.com/~lynn/2004q.html#2 [Lit.] Buffer overruns
http://www.garlic.com/~lynn/2004q.html#3 [Lit.] Buffer overruns
http://www.garlic.com/~lynn/2005b.html#5 Relocating application architecture and compiler support
http://www.garlic.com/~lynn/2005c.html#6 [Lit.] Buffer overruns
http://www.garlic.com/~lynn/2005c.html#67 intel's Vanderpool and virtualization in general
http://www.garlic.com/~lynn/2005d.html#33 Thou shalt have no other gods before the ANSI C standard
http://www.garlic.com/~lynn/2005d.html#38 Thou shalt have no other gods before the ANSI C standard
http://www.garlic.com/~lynn/2005d.html#59 Misuse of word "microcode"
http://www.garlic.com/~lynn/2005g.html#40 MVS secure configuration standard
http://www.garlic.com/~lynn/2005h.html#13 Today's mainframe--anything to new?
http://www.garlic.com/~lynn/2005j.html#46 Public disclosure of discovered vulnerabilities
http://www.garlic.com/~lynn/2005k.html#30 Public disclosure of discovered vulnerabilities
http://www.garlic.com/~lynn/2005k.html#43 Determining processor status without IPIs
http://www.garlic.com/~lynn/2005m.html#12 IBM's mini computers--lack thereof
http://www.garlic.com/~lynn/2006e.html#15 About TLB in lower-level caches
http://www.garlic.com/~lynn/2006i.html#0 The Pankian Metaphor
http://www.garlic.com/~lynn/2006j.html#27 virtual memory
http://www.garlic.com/~lynn/2006k.html#37 PDP-1
http://www.garlic.com/~lynn/2006p.html#13 What part of z/OS is the OS?
http://www.garlic.com/~lynn/2006p.html#42 old hypervisor email
http://www.garlic.com/~lynn/2006q.html#36 Was FORTRAN buggy?
http://www.garlic.com/~lynn/2006r.html#11 Was FORTRAN buggy?
http://www.garlic.com/~lynn/2006t.html#38 Vulnerability Assessment of a EAL 4 system
http://www.garlic.com/~lynn/2006v.html#38 vmshare
http://www.garlic.com/~lynn/2007b.html#12 Special characters in passwords was Re: RACF - Password rules
http://www.garlic.com/~lynn/2007b.html#30 How many 36-bit Unix ports in the old days?
http://www.garlic.com/~lynn/2007b.html#47 newbie need help (ECC and wireless)
http://www.garlic.com/~lynn/2007b.html#55 IBMLink 2000 Finding ESO levels
http://www.garlic.com/~lynn/2007f.html#73 Is computer history taught now?
http://www.garlic.com/~lynn/2007k.html#26 user level TCP implementation
http://www.garlic.com/~lynn/2007l.html#39 My Dream PC -- Chip-Based
http://www.garlic.com/~lynn/2007l.html#53 Drums: Memory or Peripheral?
http://www.garlic.com/~lynn/2007l.html#55 Scholars needed to build a computer history bibliography
http://www.garlic.com/~lynn/2007m.html#58 Is Parallel Programming Just Too Hard?
http://www.garlic.com/~lynn/2007o.html#50 64 gig memory
http://www.garlic.com/~lynn/2007o.html#67 1401 simulator for OS/360
http://www.garlic.com/~lynn/2007q.html#32 what does xp do when system is copying
http://www.garlic.com/~lynn/2007q.html#34 what does xp do when system is copying
http://www.garlic.com/~lynn/2007s.html#17 Oddly good news week: Google announces a Caps library for Javascript
http://www.garlic.com/~lynn/2007s.html#31 multics source is now open
How the pages tables of each segment is located
From: Anne & Lynn Wheeler <lynn@garlic.com>
Subject: Re: How the pages tables of each segment is located
Newsgroups: comp.arch,alt.os.development,comp.os.linux.development.system,comp.os.linux.misc
Date: Sat, 24 Nov 2007 21:03:16 -0500
johnl@iecc.com (John L) writes:
No, it shouldn't. This is a Von Neumann architecture, not a Harvard
architecture.
Although it is possible to set up 386 segments so that the code and
data map to different places, nobody does so. On the 286 you had to
do separate code and data segments because few programs could fit all
of the code and data into a single 64K segment. On the 386 a single
segment can map the entire 32 bit linear address space, so that's what
we do.
As someone else noted, the way we keep code and data separate is to
put them at different addresses, and we can use page protection to
(mostly) prohibit broken programs from writing into their code.
and the newer no-execute ... countermeasure for (buffer overflow)
attacks that polute data areas with executable instructions and then
attempt to get execution transferred there.
Researcher: CPU No-Execute Bit Is No Big Security Deal
http://www.techweb.com/wire/security/166403451
'No Execute' Flag Waves Off Buffer Attacks
http://www.washingtonpost.com/wp-dyn/articles/A55209-2005Feb26.html
What's the new /NoExecute switch that's added to the boot.ini file
http://www.windowsitpro.com/Article/ArticleID/46302/46302.html
CPU-Based Security: The NX Bit
http://hardware.earthweb.com/chips/article.php/3358421
A detailed description of the Data Execution Prevention (DEP) feature in
Windows XP Service Pack 2, Windows XP Tablet PC Edition 2005, and
Windows Server 2003
http://support.microsoft.com/kb/875352
misc. past posts mentioning buffer overflow
http://www.garlic.com/~lynn/subintegrity.html#overflow
Translation of IBM Basic Assembler to C?
From: Anne & Lynn Wheeler <lynn@garlic.com>
Subject: Re: Translation of IBM Basic Assembler to C?
Newsgroups: alt.folklore.computers
Date: Sat, 24 Nov 2007 22:26:33 -0500
Bernd Felsche <bernie@innovative.iinet.net.au> writes:
And that chip will be unreadable in a lot of situations; either
because not every first-aider carries a chip-reader, or because such
a device may be unusable by environmental effects or component
failure.
The chip is not an appropriate technology.
original straying into this subject wasn't so much that the chip was
not appropriate technology ... but that the assumptions about
requirements for chip in emergency medical care didn't stand up.
http://www.garlic.com/~lynn/2007s.html#51 Translation of IBM Basic Assembler to C?
the early chip proposal was that substantial medical records were
stored in the chip and were carried by individual so that at scene of
emergency, EMT/paramedic/firstresponder could utilize the information
to help direct/decide medical care.
assumptions were that EMT/paramedic/firstresponder had time, resources
and training to process significant medical records (from the chip)
and use the information to direct emergency medical care AND didn't
have online access to realtime information and/or professional medical
personel (i.e. sort of implies being able to provide sophisticated
medical care with out needing a doctor's authorization)
the counterargument was that the situation where all assumptions held
true would be so rare as to make it highly improbable, if not fantasy.
for additional topic drift
Commonly Held Misconceptions About Disasters
http://books.nap.edu/openbook.php?record_id=11629&page=193
some wiki references
Triage
http://en.wikipedia.org/wiki/Triage
First Responders
http://en.wikipedia.org/wiki/Certified_first_responder
Emergency medical technician
http://en.wikipedia.org/wiki/Emergency_medical_technician
Paramedic
http://en.wikipedia.org/wiki/Paramedic
So this is a long winded reference regarding quality improvement
for emergency medical services systems
http://www.nhtsa.dot.gov/people/injury/ems/leaderguide/
within this framework, the "chip" assertion for accident/emergency
scene treatment by EMT/paramedic/firstresponder would substantially
improve treatment outcomes (in order to justify the significant
expenditure for chips, chip processing equipment, and additional
personal training hrs.) Furthermore, given limited fund assumptions,
the treatment outcome improvements (for personal "chip" medical
records for the whole population) per dollar spent, needs to be
superior to other alternatives for improving treatment outcomes (this
is sort of an organizational analogy to triage).
Translation of IBM Basic Assembler to C?
From: Anne & Lynn Wheeler <lynn@garlic.com>
Subject: Re: Translation of IBM Basic Assembler to C?
Newsgroups: alt.folklore.computers
Date: Sat, 24 Nov 2007 23:33:10 -0500
Bernd Felsche <bernie@innovative.iinet.net.au> writes:
Well; somebody in ER had bloody well better know because the wrong
treatment will kill; and their inability to interpret the relevant
details off the bracelet is equivalent to incompetence.
Keep in mind that people can be many hours away from an ER when they
require treatment. The low-tech bracelet is the only recognized way
to convey the necessary information about an unconscious patient.
re:
http://www.garlic.com/~lynn/2007s.html#51 Translation of IBM Basic Assembler to C?
http://www.garlic.com/~lynn/2007t.html#10 Translation of IBM Basic Assembler to C?
this reference claims that there were approx. 192,000 EMTs and
paramedics in 2004.
http://www.bls.gov/oco/ocos101.htm
say there are only 100 people with some condition ... the training
cost/issue isn't the number of people with the condition ... the
training cost/issue is the number of people that have to be trained
(192,000) ... once it has been decided that it is necessary to train
them about the condition/treatment (independent of the number of people
with the condition).
for some additional topic drift
How Many Paramedics Does It Take To...?
http://www.emsresponder.com/print/Firehouse-Magazine---EMS-Features/How-Many-Paramedics-Does-It-Take-To/3$2307
and for even more topic drift:
2,000 Hours to train a Paramedic?
http://www.fd-doc.com/2000Hours.htm
the above article makes a case that paramedic 2000hr training
requirement could be reduced to 200hrs ... and then train ten times as
many people ... giving a much better bang-for-the-buck
Translation of IBM Basic Assembler to C?
Refed: **, - **, - **, - **, - **, - **, - **, - **
From: Anne & Lynn Wheeler <lynn@garlic.com>
Subject: Re: Translation of IBM Basic Assembler to C?
Newsgroups: alt.folklore.computers
Date: Sun, 25 Nov 2007 08:15:02 -0500
Anne & Lynn Wheeler <lynn@garlic.com> writes:
A Financial System under Siege
http://www.globalresearch.ca/index.php?context=va&aid=7333
Hank Paulson's got an Enron-like crisis that could swamp Citigroup (C)
and JPMorgan (JPM)
http://gs.bloggingstocks.com/2007/10/14/hank-paulsons-got-an-enron-like-crisis-that-could-swamp-citigro/
ECB chief wants more control of credit rating agencies
http://news.monstersandcritics.com/business/news/article_1375876.php/ECB_chief_wants_more_control_of_credit_rating_agencies
re:
http://www.garlic.com/~lynn/2007s.html#28 Translation of IBM Basic Assembler to C?
http://www.garlic.com/~lynn/2007t.html#4 Translation of IBM Basic Assembler to C?
and
SMBs and the Subprime Catastrophe: Service Makes the Difference
http://www.crmbuyer.com/story/60448.html
somewhat alludes to local community banks keeping control of their
mortgage loans and not letting things get out of hand.
and in this periodically referenced, long-winded, old post
http://www.garlic.com/~lynn/aepay3.htm#riskm Thread Between Risk Management and Information Security
part of the discussion was regarding information transparency/trust in
the quality/rating of the credit backed securities.
with a little x-over from these sub-threads
http://www.garlic.com/~lynn/2007s.html#55 Translation of IBM Basic Assembler to C?
http://www.garlic.com/~lynn/2007s.html#56 Translation of IBM Basic Assembler to C?
http://www.garlic.com/~lynn/2007t.html#3 Translation of IBM Basic Assembler to C?
http://www.garlic.com/~lynn/2007t.html#6 Translation of IBM Basic Assembler to C?
http://www.garlic.com/~lynn/2007t.html#8 Translation of IBM Basic Assembler to C?
with reference to electronic signature ... the theory was that the
quality of individual mortgages would be "attested" to (electronically
signed) and that (individual loan) quality information would be carried
along as groups of loans were packaged for sale. This is the
Information Security part of the posting's subject. That detailed
information about individual loans would then be available as well as
the ratings given the combined package of loans (from any credit rating
agency) ... i.e. the Risk Management part of the posting's subject.
Part of what prompted this posting was earlier experience with things
like individual (mortgage) property appraisals ... where supposedly an
expensive building/structure might be involved and it turned out to
actually be an empty lot.
other recent posts mentioning the old post:
http://www.garlic.com/~lynn/2007b.html#30 How many 36-bit Unix ports in the old days?
http://www.garlic.com/~lynn/2007b.html#33 security engineering versus information security
http://www.garlic.com/~lynn/2007c.html#11 Decoding the encryption puzzle
http://www.garlic.com/~lynn/2007e.html#24 Securing financial transactions a high priority for 2007
http://www.garlic.com/~lynn/2007h.html#64 sizeof() was: The Perfect Computer - 36 bits?
http://www.garlic.com/~lynn/2007h.html#66 sizeof() was: The Perfect Computer - 36 bits?
http://www.garlic.com/~lynn/2007i.html#12 John W. Backus, 82, Fortran developer, dies
http://www.garlic.com/~lynn/2007j.html#0 John W. Backus, 82, Fortran developer, dies
http://www.garlic.com/~lynn/2007j.html#46 John W. Backus, 82, Fortran developer, dies
http://www.garlic.com/~lynn/2007j.html#75 IBM Unionization
http://www.garlic.com/~lynn/2007k.html#51 IBM Unionization
http://www.garlic.com/~lynn/2007n.html#53 Windows Monitor or CUSP? [was ReJohn W. Backus, 82, Fortran developer, dies]
http://www.garlic.com/~lynn/2007p.html#50 Newsweek article--baby boomers and computers
http://www.garlic.com/~lynn/2007r.html#60 Fixing our fraying Internet infrastructure
http://www.garlic.com/~lynn/2007s.html#1 Translation of IBM Basic Assembler to C?
http://www.garlic.com/~lynn/2007s.html#25 Translation of IBM Basic Assembler to C?
http://www.garlic.com/~lynn/2007s.html#28 Translation of IBM Basic Assembler to C?
Newsweek article--baby boomers and computers
Refed: **, - **, - **, - **, - **, - **, - **, - **, - **, - **, - **, - **
From: Anne & Lynn Wheeler <lynn@garlic.com>
Subject: Re: Newsweek article--baby boomers and computers
Newsgroups: alt.folklore.computers
Date: Sun, 25 Nov 2007 08:40:13 -0500
Roland Hutchinson <my.spamtrap@verizon.net> writes:
We secretly borrow the funds in Euros to pay off the debt, pay it off,
restoring confidence in the dollar, which rises until the Euro is back to
83 cents American. Then we pay off the loan. Problem solved.
except it strongly smacks of currency speculation which has a history of
periodically going horribly wrong. also, that only takes into account
stuff carried on the books ... unfunded mandates, offbook balances,
deferred maintenance/support of deteriorating infrastructure are also
outstanding financial obligations (estimated to be several times the
booked numbers).
misc. past posts
http://www.garlic.com/~lynn/2007k.html#19 Another "migration" from the mainframe
http://www.garlic.com/~lynn/2007o.html#6 Loads Weighing Heavily on Roads
http://www.garlic.com/~lynn/2007q.html#7 what does xp do when system is copying
http://www.garlic.com/~lynn/2007q.html#60 Fixing our fraying Internet infrastructure
http://www.garlic.com/~lynn/2007s.html#68 Newseek articles--baby boomers and computers
http://www.garlic.com/~lynn/2007t.html#0 Newseek articles--baby boomers and computers
this also harks back to the comptroller general's (appointed in mid-90s
for 15yr term) comment about nobody in congress has been able to do
middle school arithmatic for at least the past 50 yrs. misc. recent
references:
http://www.garlic.com/~lynn/2007j.html#20 IBM Unionization
http://www.garlic.com/~lynn/2007j.html#91 IBM Unionization
http://www.garlic.com/~lynn/2007k.html#19 Another "migration" from the mainframe
http://www.garlic.com/~lynn/2007o.html#74 Horrid thought about Politics, President Bush, and Democrats
http://www.garlic.com/~lynn/2007p.html#22 U.S. Cedes Top Spot in Global IT Competitiveness
http://www.garlic.com/~lynn/2007q.html#7 what does xp do when system is copying
http://www.garlic.com/~lynn/2007s.html#1 Translation of IBM Basic Assembler to C?
Newsweek article--baby boomers and computers
Refed: **, - **, - **, - **, - **, - **, - **, - **, - **, - **
From: Anne & Lynn Wheeler <lynn@garlic.com>
Subject: Re: Newsweek article--baby boomers and computers
Newsgroups: alt.folklore.computers
Date: Sun, 25 Nov 2007 09:21:59 -0500
re:
http://www.garlic.com/~lynn/2007t.html#13 Newsweek article--baby boomers and computers
GAO page
http://www.gao.gov/
Comptroller General page
http://www.gao.gov/cghome/
above page has section on selected 2007 presentations ... including
Saving Our Future Requires Tough Choices Today
http://www.gao.gov/cghome/d08241cg.pdf
first page in the above gives percent of federal spending for 1966, 1986
and 2006
1966 1986 2006
defense 43 28 20
net interest 7 14 9
all other spending 34 29 32
social security 15 20 21
medicare 1 10 19
past posts reference projections that social program obligations growing
to $40trillion, totally swamping all other spending.
Newsweek article--baby boomers and computers
Refed: **, - **, - **, - **, - **, - **, - **, - **, - **, - **, - **, - **, - **, - **, - **, - **
From: Anne & Lynn Wheeler <lynn@garlic.com>
Subject: Re: Newsweek article--baby boomers and computers
Newsgroups: alt.folklore.computers
Date: Sun, 25 Nov 2007 10:20:39 -0500
Anne & Lynn Wheeler <lynn@garlic.com> writes:
Saving Our Future Requires Tough Choices Today
http://www.gao.gov/cghome/d08241cg.pdf
first page in the above gives percent of federal spending for 1966, 1986
and 2006
1966 1986 2006
defense 43 28 20
net interest 7 14 9
all other spending 34 29 32
social security 15 20 21
medicare 1 10 19
past posts reference projections that social program obligations growing
to $40trillion, totally swamping all other spending.
re:
http://www.garlic.com/~lynn/2007t.html#13 Newsweek article--baby boomers and computers
http://www.garlic.com/~lynn/2007t.html#14 Newsweek article--baby boomers and computers
the above page/chart appears in some of the other presentations on the
comptroller general's webpage ... including:
America's Fiscal Future and Retirement Security
http://www.gao.gov/cghome/d08236cg.pdf
the above also talks about the robustness of the country's economy
going forward ... including:
The United States may be the only superpower, but compared to most other
OECD countries on selected key economic, social, and environmental
indicators, on the average, the U.S. ranks
16 out of 28
... snip ...
which strays in the ability of the country to maintain its competitive
position in a global environment.
also from same presentation:
Increased global interdependence and rapid technology advancement in
the financial services industry pose significant challenges to U.S.
regulatory institutions:
• Globalization has become increasingly prevalent as technology
allows the quick and easy movement of money around the world,
challenging regulators whose authority is defined by national
boarders
• The financial services sector has been and continues to be one
of the most technologically sophisticated, whether in adapting
technology to new uses or providing incentives to develop
state-of-the-art products to solve a range of risk management
problems
... snip ...
which drifts into this other thread:
http://www.garlic.com/~lynn/2007t.html#12 Translation of IBM Basic Assembler to C?
and this old, long-winded post:
http://www.garlic.com/~lynn/aepay3.htm#riskm Thread Between Risk Management and Information Security
for quite a bit additional topic drift there is the council on
competitiveness
http://www.compete.org/
which has some overlap with our work in the 80s on nsfnet backbone
activity
http://www.garlic.com/~lynn/subnetwork.html#nsfnet
... and old email
http://www.garlic.com/~lynn/lhwemail.html#nsfnet
where tcp/ip is the technology basis for the modern internet, the
nsfnet backbone was the operational basis for the modern internet and
CIX was the business basis for the modern internet.
other reference from the council web pages:
Bechmarking Competitiveness Economic Trends
http://www.compete.org/et/
recent posts along this line:
http://www.garlic.com/~lynn/2007g.html#6 U.S. Cedes Top Spot in Global IT Competitiveness
http://www.garlic.com/~lynn/2007g.html#7 U.S. Cedes Top Spot in Global IT Competitiveness
http://www.garlic.com/~lynn/2007g.html#34 U.S. Cedes Top Spot in Global IT Competitiveness
http://www.garlic.com/~lynn/2007g.html#35 U.S. Cedes Top Spot in Global IT Competitiveness
http://www.garlic.com/~lynn/2007g.html#52 U.S. Cedes Top Spot in Global IT Competitiveness
http://www.garlic.com/~lynn/2007g.html#68 U.S. Cedes Top Spot in Global IT Competitiveness
http://www.garlic.com/~lynn/2007h.html#42 Experts: Education key to U.S. competitiveness
http://www.garlic.com/~lynn/2007l.html#22 U.S. Cedes Top Spot in Global IT Competitiveness
http://www.garlic.com/~lynn/2007o.html#20 U.S. Cedes Top Spot in Global IT Competitiveness
http://www.garlic.com/~lynn/2007o.html#21 U.S. Cedes Top Spot in Global IT Competitiveness
http://www.garlic.com/~lynn/2007o.html#22 U.S. Cedes Top Spot in Global IT Competitiveness
http://www.garlic.com/~lynn/2007p.html#15 U.S. Cedes Top Spot in Global IT Competitiveness
http://www.garlic.com/~lynn/2007p.html#18 U.S. Cedes Top Spot in Global IT Competitiveness
http://www.garlic.com/~lynn/2007p.html#22 U.S. Cedes Top Spot in Global IT Competitiveness
http://www.garlic.com/~lynn/2007p.html#32 U.S. Cedes Top Spot in Global IT Competitiveness
http://www.garlic.com/~lynn/2007r.html#33 Students mostly not ready for math, science college courses
http://www.garlic.com/~lynn/2007r.html#36 Students mostly not ready for math, science college courses
http://www.garlic.com/~lynn/2007r.html#70 Latest OECD broadband data puts US in middle of the pack on speed, price
segmentation or lack thereof
From: Anne & Lynn Wheeler <lynn@garlic.com>
Subject: Re: segmentation or lack thereof
Newsgroups: comp.arch,alt.os.development,comp.os.linux.development.system,comp.os.linux.misc,comp.sys.unisys
Date: Sun, 25 Nov 2007 11:16:52 -0500
johnl@iecc.com (John L) writes:
I must admit I'd forgotten about the Burroughs machines. My
impression is that they're the healthiest segmented machines around
today, but they also suffer from performance and address space issues.
there is MVS and various descendants ... where the same ("segmented")
image of the kernel appears in every virtual address space ... along
with the "common segment" ... which was an early MVS gimmick allowing
pointer-passing paradigm to continue to work between different
applications and various subsystems functions when the were moved into
different virtual address spaces (i.e. application could squirrel
something away in the "common segment" and make a subsystem call,
passing a pointer to the "common segment" data). of course,
"dual-address" space ... and follow-on "access registers" ... were
attempt to obsolete the need for the common segment ... aka allowing
called routines (in different virtual address spaces) to "reach" back
into the virtual address space of the calling routine.
misc. recent posts mentioning common segment
http://www.garlic.com/~lynn/2007g.html#59 IBM to the PCM market(the sky is falling!!!the sky is falling!!)
http://www.garlic.com/~lynn/2007k.html#27 user level TCP implementation
http://www.garlic.com/~lynn/2007o.html#10 IBM 8000 series
http://www.garlic.com/~lynn/2007q.html#26 Does software life begin at 40? IBM updates IMS database
http://www.garlic.com/~lynn/2007q.html#68 Direction of Stack Growth
http://www.garlic.com/~lynn/2007r.html#56 CSA 'above the bar'
http://www.garlic.com/~lynn/2007r.html#69 CSA 'above the bar'
the ingrained (MVS) "common segment" even resulted in custom hardware
support in later machine generations. in lots of implementations,
table-look-aside (TLB) hardware implementation is virtual address space
"associative" (each TLB entry is associated with a specific virtual
address space). Segment sharing can result in the same virtual address
(information) in the same (shared) segment appearing multiple times in
the TLB (associated with use by specific virtual address spaces). The
"common segment" use was so prevalent in MVS ... that it justified
special TLB handling ... where the dominant TLB association was virtual
address space ... but there was a special case for common segment
entries ... to eliminate all the (unncessary) duplicate entries.
Newsweek article--baby boomers and computers
From: Anne & Lynn Wheeler <lynn@garlic.com>
Subject: Re: Newsweek article--baby boomers and computers
Newsgroups: alt.folklore.computers
Date: Sun, 25 Nov 2007 13:15:09 -0500
CBFalconer <cbfalconer@yahoo.com> writes:
Insufficient. In that interval the USD has fallen about 50% in
relation to the Euro. Oil prices have inflated by close to a
factor of 10. No doubt about 5.
re:
http://www.garlic.com/~lynn/2007s.html#67 Newsweek article--baby boomers and computers
http://www.garlic.com/~lynn/2007t.html#2 Newsweek article--baby boomers and computers
so far as we know the USD vis-a-vis the EURO has changed ... but as in
the case of the yen ... the USD had "fallen" to an all-time historical
low of 83yen/dollar in 1995 and managed to climb back to 134yen/dollar
in 2002, since adjusting to around 108 (the dollar is still above the
historical low against the yen in 1995).
one of the justifications for moving to the EURO was that the aggregate
EU economy was "stronger" and would strengthen the corresponding
currency (vis-a-vis what was possible for the individual
currencies). the current change could be the expected result of the EURO
rising to anticipated level (vis-a-vis the dollar, i.e. major
justification behind the european union and the euro).
Newsweek article--baby boomers and computers
Refed: **, - **, - **, - **, - **, - **, - **
From: Anne & Lynn Wheeler <lynn@garlic.com>
Subject: Re: Newsweek article--baby boomers and computers
Newsgroups: alt.folklore.computers
Date: Mon, 26 Nov 2007 02:42:19 -0500
Roland Hutchinson <my.spamtrap@verizon.net> writes:
That and a few dozen other problems with my proposal... It was _not_ meant
as a serious suggestion, in case anyone was in doubt!
comment about the currency speculation was only incidental
http://www.garlic.com/~lynn/2007t.html#13 Newsweek article--baby boomers and computers
... as the gao numbers show the service on the debt isn't a big issue,
double from 7percent of total budget in 66 to 14percent in 86 before
dropping back to 9percent in 2006
http://www.garlic.com/~lynn/2007t.html#14 Newsweek article--baby boomers and computers
http://www.garlic.com/~lynn/2007t.html#15 Newsweek article--baby boomers and computers
defense better than halved from 66 to 2006 from 43percent of total
budget to 20percent. it was the other stuff related to social programs
... SS & medicare exploded from 16percent of total budget in 66 to
40percent of total budget in 2006 ... and projections are that just
existing unfunded mandates can prompt it to continue to explode until it
totally swamps everything else. even if the defense 20percent of budget
was eliminated and all converted to social programs ... it would provide
only a temporary stopgap.
the confidence and strength in the dollar is related to the confidence
and size of the overall economy along with numerous long-term issues. as
alluded to here, there are significant long-term, difficult issues at
work
http://www.garlic.com/~lynn/2007t.html#15 Newsweek article--baby boomers and computers
including changing global competitiveness ... alluded to here
as part of justification behind the formation of the EU and euro
http://www.garlic.com/~lynn/2007t.html#17 Newsweek article--baby boomers and computers
there are other factors which can be interpreted as the value of the
euro increasing (as opposed to just the value of the dollar
decreasing)
re:
http://www.garlic.com/~lynn/2007s.html#67 Newsweek article--baby boomers and computers
http://www.garlic.com/~lynn/2007t.html#2 Newsweek article--baby boomers and computers
What is the European Monetary Union?
http://www.uiowa.edu/ifdebook/faq/faq_docs/EMU.shtml
from above:
The European states want the euro to become one of the premier
currencies in the international financial market, alongside the dollar
and the yen.
... snip ...
a couple wiki refs
Economic and Monetary Union of the European Union
http://en.wikipedia.org/wiki/Economic_and_Monetary_Union_of_the_European_Union
European System of Central Banks
http://en.wikipedia.org/wiki/European_System_of_Central_Banks
Euro notes and coins are introduced in January 2002.
1jan2002 23nov2007
.9 usd/eur 1.4 usd/eur Euro increased 55% against usd
119 yen/eur 160 yen/eur Euro increased 34% against yen
if the only factor at work was the decreasing value of the dollar, then
the correspondance between the euro and the yen would have remained
constant and the dollar would have declined by the same amount against
both the euro and the yen.
as noted in the previous posts, the yen rose to a record high of
83/dollar in 95 before dropping to a low of 134/dollar in 2002 and now
stands about half way between at 108.
Translation of IBM Basic Assembler to C?
Refed: **, - **, - **
From: Anne & Lynn Wheeler <lynn@garlic.com>
Subject: Re: Translation of IBM Basic Assembler to C?
Newsgroups: alt.folklore.computers
Date: Mon, 26 Nov 2007 10:08:03 -0500
Steve O'Hara-Smith <steveo@eircom.net> writes:
There are redundant copies at other GPs - with a large geographical
separation (OK I didn't specify that - it should be obvious). These copies
are *not* made at the last minute they are made as updates come in (of
course). I touched in another posting on mechanisms for another GP to take
over the "master of the record" status.
various dataprocessing outsourcing would step in and provide such a
function. you saw this with online/realtime processing for retail
point-of-sale transactions. there were something like 30,000 financial
institutions operating. first needed was value-added-network that
would provide the interconnect between all the institutions
(world-wide internet has pretty much obsoleted all the
value-added-network activities that grew up in the 60s, 70s, 80s).
then there was big upswing in outsourcing ... especially for the
smaller financial institutions that didn't have the scale to
adequately support in-house operations. the outsourcing operations
provided all the necessary dataprocessing for financial institutions
... including things like disaster survivability and geographic
survivability ... terms we coined when we were out marketing our
ha/cmp product
http://www.garlic.com/~lynn/subtopic.html#hacmp
the outsourcing operations are also subject to significant regulatory
compliance auditing. there were also subject to significant audit
operations with regard to meeting y2k remediation requirements. they
also tend to have detailed service level agreement contracts that
have to be met.
the outsourcing provided the appearance to individual institutions as
if it was still in-house operation, including individual institution
"ownership" of the related records and control over various policies
and practices.
more recently there has been significant consolidation going on in
financial institution market segments ... and so you see somewhat
swing back to in-house dataprocessing for the largest financial
institutions. however, at one point there was observation that
something like 90 percent of transactions were handled at something
like six datacenters.
in any case, i would expect equivalent would show up for computerized
medical records ... entities like large HMOs would provide their own
dataprocessing and smaller operations would outsource.
UK Retail Giant Breached by Insider
From: Anne & Lynn Wheeler <lynn@garlic.com>
Subject: UK Retail Giant Breached by Insider
Newsgroups: alt.folklore.computers
Date: Mon, 26 Nov 2007 13:18:25 -0500
Tesco online store 'is infiltrated by insider card fraudster'
http://www.thisislondon.co.uk/news/article-23422816-details/Tesco+online+store+%27is+infiltrated+by+insider+card+fraudster%27/article.do
UK Retail Giant Breached by Insider
http://www.darkreading.com/document.asp?doc_id=139803
(some topic drift, the above article attempts some comic
relief with some embedded URLs)
we had been called in by this small client/server startup that wanted to
do payment transactions on their server ... they also had this
technology they called SSL they wanted used ... that had to be converted
into business processes. some past references
http://www.garlic.com/~lynn/subnetwork.html#gateway
doing some detailed end-to-end threats and vulnerabilities studies
... came up with a number of suggestions ... including possible things
like requiring security background checks on all employees ... misc.
past posts mentioning background check requirement
http://www.garlic.com/~lynn/aadsm6.htm#terror3 [FYI] Did Encryption Empower These Terrorists?
http://www.garlic.com/~lynn/aepay11.htm#72 Account Numbers. Was: Confusing Authentication and Identiification? (addenda)
http://www.garlic.com/~lynn/aadsm21.htm#34 X.509 / PKI, PGP, and IBE Secure Email Technologies
http://www.garlic.com/~lynn/aadsm22.htm#18 "doing the CA statement shuffle" and other dances
http://www.garlic.com/~lynn/2001j.html#5 E-commerce security????
http://www.garlic.com/~lynn/2001j.html#54 Does "Strong Security" Mean Anything?
http://www.garlic.com/~lynn/2005v.html#4 ABN Tape - Found
http://www.garlic.com/~lynn/2006.html#33 The new High Assurance SSL Certificates
http://www.garlic.com/~lynn/2006d.html#28 Caller ID "spoofing"
http://www.garlic.com/~lynn/2007b.html#8 Special characters in passwords was Re: RACF - Password rules
http://www.garlic.com/~lynn/2007c.html#6 Securing financial transactions a high priority for 2007
one of the topic drifts ... are studies that find the majority of fraud
of this kind (security breaches, data breaches, etc) typical involve
some insider.
later when we were involved in x9a10 financial standards working group
that had been the requirement to preserve the integrity of the financial
infrastructure for all retail payments (aka ALL, credit, debit, gift,
stored-value, ach, internet, point-of-sale, etc) in the x9.59 financial
standard
http://www.garlic.com/~lynn/x959.html#x959
doing (more) detailed end-to-end threats and vulnerability assessements,
it became fairly apparent not only was detailed security background
checks not sufficient (and therefor not very cost effective) ... in part
because the information was needed in so many places. as a result,
x9.59 standard took a slightly different approach ... rather than trying
to keep the information out of the hands of attackers and crooks
... eliminate the information as a source for enabling fraudulent
transactions.
various issues regarding (futility of) attempting to close all possibly
vulnerabilities are discussed in postings mentioning the naked
transaction metaphor
http://www.garlic.com/~lynn/subintegrity.html#payments
instead of the x9.59 financial standard paradigm change which eliminates
(knowledge of) the information as a threat/vulnerability.
past posts mentioning risks, threats, vulnerabilities, exploits, and/or fraud
http://www.garlic.com/~lynn/subintegrity.html#fraud
How the pages tables of each segment is located
From: Anne & Lynn Wheeler <lynn@garlic.com>
Subject: Re: How the pages tables of each segment is located
Newsgroups: comp.arch,alt.os.development,comp.os.linux.development.system,comp.os.linux.misc
Date: Mon, 26 Nov 2007 17:20:17 -0500
Anne & Lynn Wheeler <lynn@garlic.com> writes:
and the newer no-execute ... countermeasure for (buffer overflow)
attacks that polute data areas with executable instructions and then
attempt to get execution transferred there.
re:
http://www.garlic.com/~lynn/2007t.html#9 How the pages tables of each segment is located
hot off the press:
Buffer Overflows Are Top Threat, Report Says
http://www.darkreading.com/document.asp?doc_id=139871
from above:
Research data says buffer overflow bugs outnumber Web app
vulnerabilities, and some severe Microsoft bugs are on the decline
... snip ...
as before ... lots of past posts mentioning buffer overlow
threat/problems
http://www.garlic.com/~lynn/subintegrity.html#overflow
'Man in the browser' is new threat to online banking
Refed: **, - **, - **, - **, - **, - **
From: Anne & Lynn Wheeler <lynn@garlic.com>
Subject: 'Man in the browser' is new threat to online banking
Newsgroups: alt.folklore.computers
Date: Tue, 27 Nov 2007 10:53:29 -0500
'Man in the browser' is new threat to online banking
http://www.computerworld.com/action/article.do?command=viewArticleBasic&articleId=9049080
from above:
Perpetrators act as a 'man in the browser' by intercepting HTML code in
the Web browser. As bank security measures curb more traditional threats
such as keystroke logging, phishing and pharming, F-Secure warned, the
'man in the browser' attack will increase.
... snip ...
end-point compromises have also been a major attack point for harvesting
information
http://www.garlic.com/~lynn/subintegrity.html#harvest
and one of the long-term recognized vulnerabiltiy/threat when "static
data" operations are involved (i.e. fraud is possibly by simply
recording prior operations ... and enabling things like replay
attacks).
countermeasures to long recognized PC vulnerability/threat was the EU
"FINREAD" standard from the 90s
http://www.garlic.com/~lynn/subintegrity.html#finread
... which was an external attachment to the PC which its on pin-pad
input and display ... that was highly restricted to any loadable
programming (and therefor nearly impossible to inject worms, trojans,
harvisting). The EU FINREAD external pin-pad operation made it nearly
impossible for trojans not only to record and export critical
information but was also countermeasure of trojans actually originating
fraudulent transactions from the infected PC.
the other part of the harvesting countermeasure was introduction of
transaction level authentication using other than static data
... discussed in past posts mentioning naked transaction metaphor
http://www.garlic.com/~lynn/subintegrity.html#payments
However, one of the things that happened in the early part of this
decade was a failed attempt to introduce much less well designed and
thot-out devices into the consumer PC market. The resulting disasters
for consumers created the impression that such devices weren't practical
in the consumer PC market. However, it wasn't that all such devices were
impractical ... it was that devices that were extremely consumer
unfriendly that were not practical. Detailed postmortems of the aborted
deployments identified what the significant shortcomings in the consumer
PC market actually were. recent posts about this aborted attempted
deployments with long lasting after effects on security in the consumer
market:
http://www.garlic.com/~lynn/aadsm10.htm#keygen2 Welome to the Internet, here's your private key
http://www.garlic.com/~lynn/aadsm23.htm#43 Spring is here - that means Pressed Flowers
http://www.garlic.com/~lynn/aadsm23.htm#50 Status of SRP
http://www.garlic.com/~lynn/aadsm27.htm#34 The bank fraud blame game
http://www.garlic.com/~lynn/aadsm27.htm#35 The bank fraud blame game
http://www.garlic.com/~lynn/aadsm27.htm#37 The bank fraud blame game
http://www.garlic.com/~lynn/aadsm27.htm#38 The bank fraud blame game
http://www.garlic.com/~lynn/aadsm27.htm#39 The bank fraud blame game
http://www.garlic.com/~lynn/2002m.html#37 Convenient and secure eCommerce using POWF
http://www.garlic.com/~lynn/2002m.html#39 Convenient and secure eCommerce using POWF
http://www.garlic.com/~lynn/2003n.html#35 ftp authentication via smartcard
http://www.garlic.com/~lynn/2007n.html#60 Poll: oldest computer thing you still use
http://www.garlic.com/~lynn/2007n.html#65 Poll: oldest computer thing you still use
lots of past fraud, threats, vulnerabilities, exploits, risk postings
http://www.garlic.com/~lynn/subintegrity.html#fraud
SMF Under VM
From: Anne & Lynn Wheeler <lynn@garlic.com>
Subject: Re: SMF Under VM
Newsgroups: bit.listserv.ibm-main,alt.folklore.computers
Date: Tue, 27 Nov 2007 17:05:27 -0500
dgkopischke@OPPENHEIMERFUNDS.COM (Kopischke, David G.) writes:
From what I understand, we just use canned processes to extract
SMF, load databases and create reports. But since we don't use VM
at home and have no experience with it, maybe we're just not
understanding where this data is in that environment ??? Is there
any documentation that specifies what SMF data is available under
VM and what is not ??? With respect to %CPU BUSY, I understand it's
virtual under VM, but there still has to be some method of gauging
how much CPU a guest is using, isn't there ??? How do VM shops
report this ???
for decades VM would account for processor useage (both virtual and
total) which would turned out to correspond very closely with
total/actual busy (which was also measured).
other infrastructures have tended to have accounted for processor busy
which has been less than total/actual cpu busy (measured by other
methods). The "difference" (which has peridically been quite
substantial) was frequently referred to as capture ratio ... aka the
sometimes small percentage of cpu busy that was actually accounted for
for some, the concept of capture ratio took quite a bit of time to
sink thru ... since a system not accounting for all cpu useage was quite
foreign concept.
running under VM ... one possible way for handling the ("captured"
... at least by vm) non-virtual processing time might be handled along
with all the other "uncaptured" processor time (from the standpoint of
a guest operating system running in a virtual machine).
some of this also has to be handled with LPARs w/o VM software
... since LPARs are essentially a stripped down VM subset moved into
the microcode of the machine (and then you can have virtual guests
running in a VM software virtual machine ... which, in turn might be
running in a LPAR virtual machine ... which is finally running on
the real hardware).
a few results for quicky search engine use for term capture
ratio
http://www-03.ibm.com/support/techdocs/atsmastr.nsf/WebIndex/FLASH10526
http://publib.boulder.ibm.com/tividd/td/TDS390/SH19-6818-08/en_US/HTML/DRLM9mst48.htm
http://www.ibm.com/developerworks/wikis/display/zosperfinstr/Controlling+SMF+Record+Production
http://www.ibm.com/developerworks/websphere/library/techarticles/0407_garza/0407_garza.html
http://www.cmg.org/measureit/issues/mit38/m_38_10.html
the original cp67 system delivered to the univ. the last week of jan68
did have something slightly reminiscence of "uncaptured" ... which was
actual "captured" (i.e. specifically measured processor time) that
wasn't associated with any specific operation (called "overhead"). This
would increase significantly as the number of concurrent processes
increased (aka it scaled extremely poorly). I completely reworked that
implementation to eliminate the non-scaling characteristic ... as well
as being able to "account" for what was actually being done.
Translation of IBM Basic Assembler to C?
Refed: **, - **, - **, - **, - **, - **, - **
From: Anne & Lynn Wheeler <lynn@garlic.com>
Subject: Re: Translation of IBM Basic Assembler to C?
Newsgroups: alt.folklore.computers
Date: Tue, 27 Nov 2007 18:48:55 -0500
Frank McCoy <mccoyf@millcomm.com> writes:
Clinton did NOTHING to hurt National Security. Not even his most
rabid haters of the Republican Senators who pushed for his impeachment
were stupid enough to try accusing him of that.
here is 18jan99 article with some additional perspective from the
period:
Clinton's $124 Billion Defense Increase Jeopardizes Social Security, Medicare
http://www.twf.org/News/Y1999/0118-RobPoor.html
from above:
"Islamic terrorism" helps justify defense spending
Desperate to fend off the Republican led impeachment process, President
Clinton has agreed to an $124 billion increase in defense spending over
seven years, thereby, jeopardizing his earlier commitments to education,
social security, medicare, and programs for the poor.
Measured in 1995 dollars, U.S. defense spending has declined from a Cold
War high of around $375 billion in 1988 to around $265 billion in 1997,
... snip ...
and
"The scope of the problem was driven home," writes Bradley Graham (The
Washington Post, Jan 14), after Clinton "listened to generals and
admirals cite mounting pilot shortages, ships cruising without full
crews, rising cannibalization of parts from inactive weapons to make
active ones and cutbacks in Army training."
... snip ...
somewhat related to comptroller general budget piecharts reference in
http://www.garlic.com/~lynn/2007t.html#14 Newsweek article--baby boomers and computers
http://www.garlic.com/~lynn/2007t.html#15 Newsweek article--baby boomers and computers
aka
1966 1986 2006
defense 43 28 20
net interest 7 14 9
all other spending 34 29 32
social security 15 20 21
medicare 1 10 19
... snip ...
Newsweek article--baby boomers and computers
Refed: **, - **, - **, - **, - **, - **
From: Anne & Lynn Wheeler <lynn@garlic.com>
Subject: Re: Newsweek article--baby boomers and computers
Newsgroups: alt.folklore.computers
Date: Tue, 27 Nov 2007 18:33:34 -0500
Anne & Lynn Wheeler <lynn@garlic.com> writes:
1966 1986 2006
defense 43 28 20
net interest 7 14 9
all other spending 34 29 32
social security 15 20 21
medicare 1 10 19
re:
http://www.garlic.com/~lynn/2007t.html#14 Newsweek article--baby boomers and computers
http://www.garlic.com/~lynn/2007t.html#15 Newsweek article--baby boomers and computers
the piecharts also show up in some number of other recent presentations
by comptroller general
http://www.gao.gov/cghome/
... earlier show up in
U.S. Financial Condition and Fiscal Future Briefing, 7aug2007
http://www.gao.gov/cghome/d071189cg.pdf
also shows up in
DOD Transformation Challenges and Opportunities, Acquisition
Community Conference 17apr2007
http://www.gao.gov/cghome/d07789cg.pdf
and
Fiscal, Social Security, and Health Care Challenges 7Jan2007
http://www.gao.gov/cghome/d07345cg.pdf
more fun with new, 40yr old technology
From: Anne & Lynn Wheeler <lynn@garlic.com>
Subject: more fun with new, 40yr old technology
Newsgroups: alt.folklore.computers
Date: Wed, 28 Nov 2007 10:19:38 -0500
Systems management pioneer tackles VM management
http://searchservervirtualization.techtarget.com/originalContent/0,289142,sid94_gci1283700,00.html
Virtualization for Embedded Systems White Paper from Open Kernel Labs
http://www.embedded-computing.com/news/db/?9437
Server virtualization as godsend
http://www.networkworld.com/community/node/22304
Emerging Markets and Virtualization Drive Q3 Server Sales
http://www.itjungle.com/bns/bns112707-story01.html
Users Share Virtualization Pitfalls
http://www.byteandswitch.com/document.asp?doc_id=139893&WT.svl=news1_1
Virtualization Center - You heard it here first
http://www.networkworld.com/community/node/22352
Virtual Machines - The Challenge of Vision | Virtually Speaking
http://blogs.zdnet.com/virtualization/?p=288
Seanodes Targets Wasted Space With New Virtualized Storage Tool
http://www.ecommercetimes.com/story/enterprise/60472.html
Desktop PC Virtualization Is on the Rise
http://www.pcworld.com/businesscenter/article/140002/desktop_pc_virtualization_is_on_the_rise.html
CiRBA Automates the Process of Selecting the Right Virtualization
Technology
http://www.businesswire.com/portal/site/google/index.jsp?ndmViewId=news_view&newsId=20071128005039&newsLang=en
HP Expands Virtualization Options for Blades
http://www.eweek.com/article2/0,1895,2222808,00.asp
IBM takes on HP with I/O virtualization
http://www.networkworld.com/community/node/22313
'Man in the browser' is new threat to online banking
Refed: **, - **, - **, - **
From: Anne & Lynn Wheeler <lynn@garlic.com>
Subject: Re: 'Man in the browser' is new threat to online banking
Newsgroups: alt.folklore.computers
Date: Wed, 28 Nov 2007 10:27:13 -0500
re:
http://www.garlic.com/~lynn/2007t.html#22 'Man in the browser' is new threat to online banking
as alluded to in previous post ... change the paradigm so that the
harvested information doesn't enable financial fraud
lots of past posts mentioning fraud, risks, threats, exploits,
vulnerabilities
http://www.garlic.com/~lynn/subintegrity.html#fraud
related, recent news item
FTC Report on ID Theft Shows Need for Stronger Consumer Protections
http://www.prnewswire.com/cgi-bin/stories.pl?ACCT=104&STORY=/www/story/11-27-2007/0004712566&EDATE=
FTC Report on ID Theft Shows Need for Stronger Consumer Protections
http://www.pnnonline.org/article.php?sid=7850&mode=thread&order=0&thold=0
other recent related items
FTC: 8 Million Were Victims of ID Theft in 2005
http://www.cioinsight.com/article2/0,1540,2222972,00.asp
FTC: 8.3 million US victims of ID theft in 2005
http://www.networkworld.com/news/2007/112707-ftc-83-million-us-victims.html
FTC: 8.3 million US victims of ID theft in 2005
http://www.washingtonpost.com/wp-dyn/content/article/2007/11/28/AR2007112800629.html
Wikipedia Used to Test Stolen Credit Cards
http://www.epaynews.com/index.cgi?survey=&ref=browse&f=view&id=1196190941837043222&block=
Banks Facing Major Security Costs over Government Data Leak
http://www.epaynews.com/index.cgi?survey=&ref=browse&f=view&id=1196246182837043222&block=
and this aspect:
The Cost Of Data Loss Rises
http://www.informationweek.com/news/showArticle.jhtml?articleID=204204152
was also touched on in this old, long winded post
http://www.garlic.com/~lynn/aepay3.htm#riskm Thread Between Risk Management and Information Security
'Man in the browser' is new threat to online banking
From: Anne & Lynn Wheeler <lynn@garlic.com>
Subject: Re: 'Man in the browser' is new threat to online banking
Newsgroups: alt.folklore.computers
Date: Wed, 28 Nov 2007 13:49:11 -0500
re:
http://www.garlic.com/~lynn/2007t.html#22 'Man in the browser' is new threat to online banking
http://www.garlic.com/~lynn/2007t.html#27 'Man in the browser' is new threat to online banking
'Man in the Browser' attacks becoming popular among cyber criminals
http://www.net-security.org/secworld.php?id=5635
'Man in the Browser' attacks becoming popular among cyber criminals
http://www.first.org/newsroom/globalsecurity/177262.html
Concepts Against Man-in-the-Browser Attacks
http://domainsmagazine.com/Domains_14/Domain_3759.shtml
New attacks leave online transactions vulnerable even after sign-on
authentication
http://www.computerworld.com/action/article.do?command=viewArticleBasic&articleId=9000174
from above:
"Once that user is authenticated, they think they're OK. But instead
companies have given them a false sense of security to merrily
transact business," says David Burns, CEO of 2factor Inc. in Maumee,
Ohio.
... snip ...
another in the "naked transaction" metaphor
http://www.garlic.com/~lynn/subintegrity.html#payments
part of threats/vulnerabilities that x9.59 financial standard
provided countermeasures for
http://www.garlic.com/~lynn/x959.html#x959
more fun with new, 40yr old technology
From: Anne & Lynn Wheeler <lynn@garlic.com>
Subject: Re: more fun with new, 40yr old technology
Newsgroups: alt.folklore.computers
Date: Thu, 29 Nov 2007 09:02:36 -0500
Real Worries About Virtualization King
http://money.cnn.com/news/newsfeeds/articles/newstex/IBD-0001-21294486.htm
Virtual Machines - The Challenge of Vision
http://blogs.zdnet.com/virtualization/?p=288
Virtualization Fever Gripping Global Business - Forrester
http://www.computerworlduk.com/technology/servers-data-centre/infrastructure-management/news/index.cfm?RSS&NewsId=6407
Hardware Vendors Continue to Sign Agreements with Virtualization
Vendors
http://weblog.infoworld.com/virtualization/archives/2007/11/hardware_vendor.html
CiRBA Automates the Process of Selecting the Right Virtualization
Technology
http://www.dabcc.com/article.aspx?id=6511
DMTF Releases Open Standards for System Virtualization Management
http://weblog.infoworld.com/virtualization/archives/2007/11/dmtf_releases_o.html
3Tera On The Fit Between Virtualization And Utility Computing
http://www.techworld.com/opsys/features/index.cfm?featureID=3842&pagtype=all
What do YOU call the # sign?
Refed: **, - **, - **, - **
From: Anne & Lynn Wheeler <lynn@garlic.com>
Subject: Re: What do YOU call the # sign?
Newsgroups: alt.usage.english,alt.folklore.computers
Date: Thu, 29 Nov 2007 09:46:16 -0500
jmfbahciv writes:
My property is .28 acres. I have 6 street lights and cannot
get the power company to turn some off because of the scaredy cats
here. And the lights are not the normal lights; they're that
sickening orangey yellowish lights.
long ago and far away, san jose had some public fight over deployment
new street lights (switch from older mercury)... default selection was
to go with "high pressure" sodium vapor ... but there was a big push
to go with "low pressure" sodium vapor (with the color described). the
issue was that light from san jose was severely impacting Lick
observatory. "high pressure" sodium put out light across more of the
spectrum while "low pressure" sodium light was a much narrower
spectrum
Lick Observatory
http://www.ucolick.org/public/visitors.html
wiki sodium vapor lamps
http://en.wikipedia.org/wiki/Sodium_vapor_lamp
from above:
Light pollution considerations
For placements where light pollution is of prime importance (for example
an observatory parking lot), low pressure sodium is preferred. Sodium
emits light on only one wavelength, and therefore is the easiest to
filter out.
... snip ...
misc. old email mentioning some visits to lick observatory
http://www.garlic.com/~lynn/2004h.html#email830822
http://www.garlic.com/~lynn/2004h.html#email830830
related to some discussions regarding proposed berkeley 10meter
http://www.garlic.com/~lynn/2004h.html#7 CCD technology
http://www.garlic.com/~lynn/2004h.html#8 CCD technology
http://www.garlic.com/~lynn/2004h.html#9 CCD technology
http://www.garlic.com/~lynn/2005l.html#9 Jack Kilby dead
http://www.garlic.com/~lynn/2005s.html#28 MVCIN instruction
http://www.garlic.com/~lynn/2006t.html#12 Ranking of non-IBM mainframe builders?
http://www.garlic.com/~lynn/2007c.html#20 How many 36-bit Unix ports in the old days?
http://www.garlic.com/~lynn/2007c.html#50 How many 36-bit Unix ports in the old days?
Newsweek article--baby boomers and computers
Refed: **, - **, - **
From: Anne & Lynn Wheeler <lynn@garlic.com>
Subject: Re: Newsweek article--baby boomers and computers
Newsgroups: alt.folklore.computers
Date: Thu, 29 Nov 2007 10:05:20 -0500
Walter Bushell <proto@oanix.com> writes:
At +$300 per gallon, horses are very competitive. Might have to convert
some carriage houses back to stables, and the pollution problems. Oy!
i remember running across references about automobiles saving nyc from
horrible (horse-related) pollution problems (much worse per vehicle than
automobiles).
quicky search engine turns up several refs ... sample
http://www.all-creatures.org/nyca/ch-hist-19711000.html
from above:
The presence of 120,000 horses in New York City, wrote one 1908
authority for example, is "an economic burden, an affront to
cleanliness, and a terrible tax upon human life." The solution to the
problem, agreed the critics, was the adoption of the "horseless
carriage."
... snip ...
and
http://www.planetizen.com/node/27721
from above:
Morris takes us back to the turn of the 20th century. Horses were the
primary mode of transportation, and they were killing our cities.
...
What saved New York (and other big cities) from this environmental
disaster? The automobile.
... snip ...
What do YOU call the # sign?
Refed: **, - **, - **
From: Anne & Lynn Wheeler <lynn@garlic.com>
Subject: Re: What do YOU call the # sign?
Newsgroups: alt.usage.english,alt.folklore.computers
Date: Thu, 29 Nov 2007 10:19:43 -0500
re:
http://www.garlic.com/~lynn/2007t.html#30 What do YOU call the # sign?
a little more search engine use:
San Jose: Study and report on low-pressure sodium lighting, 1980
http://www.nofs.navy.mil/about_NOFS/staff/cbl/LPSnet/SanJoseLPScost.htm
from above:
As is shown on the table, the LPS conversion would cost significantly
less than the HPS conversion ($845,000 or 20%). Furthermore, total
operating costs would be lower for a primarily LPS conversion system, as
shown in option #4 (Lowest Energy Cost). Option #6, Light Conversion
Suggested by Lick Observatory Staff, is an option suggested as a
compromise to the total LPS conversion system that Lick Observatory
would prefer. The option represents Lick Observatory's request that no
HPS luminaires be installed within a nine-mile radius of the Observatory
complex on Mount Hamilton.
... snip ...
the issue with LPS was that lots of people objected on aesthetics
... they didn't like the color.
and another wiki reference
Light pollution
http://en.wikipedia.org/wiki/Light_pollution
from above:
Many astronomers prefer their neighboring societies to use low pressure
sodium lights as much as possible, because the single wavelength
involved is comparably easy to filter. The low cost of operating sodium
lights is another feature. In 1980, for example, San Jose, California,
replaced all street lamps with low pressure sodium lamps, whose light is
easier for nearby Lick Observatory to filter out. Similar programs are
now in place in Arizona and Hawaii.
... snip ...
Newsweek article--baby boomers and computers
Refed: **, - **, - **, - **, - **, - **
From: Anne & Lynn Wheeler <lynn@garlic.com>
Subject: Re: Newsweek article--baby boomers and computers
Newsgroups: alt.folklore.computers
Date: Thu, 29 Nov 2007 11:28:26 -0500
Anne & Lynn Wheeler <lynn@garlic.com> writes:
first page in the above gives percent of federal spending for 1966, 1986
and 2006
1966 1986 2006
defense 43 28 20
net interest 7 14 9
all other spending 34 29 32
social security 15 20 21
medicare 1 10 19
past posts reference projections that social program obligations growing
to $40trillion, totally swamping all other spending.
recent references to the above from comptroller general
http://www.garlic.com/~lynn/2007t.html#14 Newsweek article--baby boomers and computers
http://www.garlic.com/~lynn/2007t.html#15 Newsweek article--baby boomers and computers
http://www.garlic.com/~lynn/2007t.html#25 Newsweek article--baby boomers and computers
... and even if the whole defense budget was converted to social
programs ... it would only be a short-term stopgap.
however, as noted here ... there was significant short-comings in
defense spending during much of the 90s ... which started to be
rectified with fy2000 (oct1999 thru sept2000) ... referenced here
http://www.garlic.com/~lynn/2007t.html#24 Translation of IBM Basic Assembler to C?
Clinton's $124 Billion Defense Increase Jeopardizes Social Security, Medicare
http://www.twf.org/News/Y1999/0118-RobPoor.html
from