kenmay

MINIX: Intel’s Hidden In-chip Operating System

Steven J. Vaughan-Nichols, writing for ZDNet: Matthew Garrett, the well-known Linux and security developer who works for Google, explained recently that, “Intel chipsets for some years have included a Management Engine [ME], a small microprocessor that runs independently of the main CPU and operating system. Various pieces of software run on the ME, ranging from code to handle media DRM to an implementation of a TPM. AMT [Active Management Technology] is another piece of software running on the ME.” At a presentation at Embedded Linux Conference Europe, Ronald Minnich, a Google software engineer reported that systems using Intel chips that have AMT, are running MINIX. So, what’s it doing in Intel chips? A lot. These processors are running a closed-source variation of the open-source MINIX 3. We don’t know exactly what version or how it’s been modified since we don’t have the source code. In addition, thanks to Minnich and his fellow researchers’ work, MINIX is running on three separate x86 cores on modern chips. There, it’s running: TCP/IP networking stacks (4 and 6), file systems, drivers (disk, net, USB, mouse), web servers. MINIX also has access to your passwords. It can also reimage your computer’s firmware even if it’s powered off. Let me repeat that. If your computer is “off” but still plugged in, MINIX can still potentially change your computer’s fundamental settings. And, for even more fun, it “can implement self-modifying code that can persist across power cycles.” So, if an exploit happens here, even if you unplug your server in one last desperate attempt to save it, the attack will still be there waiting for you when you plug it back in. How? MINIX can do all this because it runs at a fundamentally lower level. According to Minnich, “there are big giant holes that people can drive exploits through.” He continued, “Are you scared yet? If you’re not scared yet, maybe I didn’t explain it very well, because I sure am scared.” Also read: Andrew S. Tanenbaum’s (a professor of Computer Science at Vrije Universiteit) open letter to Intel. Read more of this story at Slashdot.

View original post here:
MINIX: Intel’s Hidden In-chip Operating System

New high-resolution scan of medieval Aberdeen Bestiary

The 12th-century Aberdeen Bestiary has just been digitally scanned and made available online. One of the most famous extant bestiaries, the new version includes newly-discovered details on the book’s production. (more…)

See the original article here:
New high-resolution scan of medieval Aberdeen Bestiary

Comcast’s nationwide outage was caused by a configuration error

Yesterday, folks across the country reported that Comcast internet was down — an unusually large outage that lasted around 90 minutes. It turns out that the problem was caused by Level 3, an enterprise ISP that provides the backbone for other internet providers like Verizon, Comcast and RCN. “Our network experienced a service disruption affecting some of our customers, ” the firm said in a statement. “The disruption was caused by a configuration error.” The outage shows yet again just how vulnerable the internet is in the US. Last year around this time, a DDoS attack shut down Spotify, Twitter, the New York Times and other sites, prompting some soul-searching from ISPs and internet security experts. This time it was a case of simple human error, but the results were similar: The internet, which many individuals and businesses now depend on for their livelihoods, went down. Level 3 internet backbone currently has disruptions affecting U.S. RCN immediately rerouted to alternate backbone. RCN service normal. — RCN (@RCNconnects) November 6, 2017 The problem, according to an expert contact by Wired , was a “route leak.” ISPs use something called the Border Gateway Protocol to find networks they can route data packets through. To figure out which routes are the most efficient, so-called Autonomous Systems (ASes) track data packets that are moving through various networks. A route leak is caused when these ASes relay bad information about their IP addresses. That can cause internet providers to make bad or inefficient routing decisions, causing packets to be delayed or stopped altogether. A good example of this is an error Level 3 made back in 2015 . In that case, a telecom in Malaysia accidentally told Level 3 that it could relay internet data from anywhere around the world. Level 3 accepted the routes, even thought it shouldn’t have, causing worldwide data to be shunted through the Malaysian telecom, which had no way of handling all the traffic. Something similar could have happened yesterday if Level 3 was, say, tweaking its routing settings and made a mistake. ISPs use filters to guard against such errors, but the scale of the internet makes it difficult to catch them all. After last year’s large DDoS attack, security experts pointed out that internet infrastructure providers like Dyn and Level 3 are particularly vulnerable to attacks. Yesterday’s outage shows how vulnerable they are to human error, too. Via: Wired Source: Comcast

View the original here:
Comcast’s nationwide outage was caused by a configuration error

Quark fusion makes ten times as much energy as nuclear fusion

Scientists have overcome huge barriers in the past year to get us even closer to nuclear fusion, and with it a near-limitless supply of clean energy. But, what if there’s something far more powerful out there? According to researchers at Tel Aviv University and the University of Chicago, there is, and it involves the fusion of elementary particles known as quarks — the resulting energy from which would be ten times that of nuclear fusion. Quarks (not to be confused with the alien from Star Trek: Deep Space Nine) are tiny particles that make up the neutrons and protons inside atoms. They come in six different types, with scientists referring to them in terms of three pairs: up, down; charm, strange; and top, bottom. To find out more, researchers at the Large Hadron Collider (LHC) have been smashing atoms together at high speeds. Doing so, causes these component parts to split from their parent atoms, and fuse with other particles, creating baryons. Prior research has indicated that energy is produced when quarks bind together. By looking into one-such occurrence (a doubly-charmed baryon), the physicists found that it would take 130 megaelectronvolts (MeV) of energy to force two charm quarks together. On top of that, the fusion ends up releasing even more power, around 12 MeV. Motivated by their findings, they then focussed on the much-heavier bottom quarks. The same binding process, they claim, would theoretically release approximately 138 MeV, which is almost eight times as much as hydrogen fusion (which also powers hydrogen bombs). Naturally, this set off alarm bells, with the researchers hesitating to go public with their findings. “If I thought for a microsecond that this had any military applications, I would not have published it, ” professor Marek Karliner told Live Science . But, further calculations suggested that causing a chain reaction with quarks would be impossible — mainly because they don’t exist long enough to set each other off. Plus, there’s the fact that this type of bottom quark fusion is completely theoretical. Whereas, the researchers didn’t fuse bottom quarks themselves, they claim it is technically achievable at the LHC. Source: Nature

Link:
Quark fusion makes ten times as much energy as nuclear fusion

Interesting video on how Apple’s Face ID works

iFixit Video always does informative overviews of new gadgets, like this nifty look at how Face ID work s. (more…)

More:
Interesting video on how Apple’s Face ID works

Intel squeezed an AMD graphics chip, RAM and CPU into one module

Intel may have unveiled its latest Core CPUs for mainstream laptops , but the company has something more advanced up its sleeves for what it calls its “enthusiast” customers. The new chip will be part of the 8th-generation Core H series of processors, and comes with discrete-level graphics cards built in, as well as its own RAM. Having all this built into the processor frees up space for other components inside a laptop, so device manufacturers can squeeze in things like larger batteries or more optimal fan designs. Intel is not sharing performance details for the new CPUs yet, but it’s promising power that will be good enough for gamers or content creators who often run taxing programs like Adobe Photoshop and Lightroom. Specifically, the new processor integrates a “semi-custom” AMD graphics chip and the second generation of Intel’s “High Bandwidth Memory (HBM2)”, which is comparable to GDDR 5 in a traditional laptop. The three typically distinct components are able to coexist on one chip because of Intel’s Embedded Multi-Die Interconnect Bridge (EMIB), which “allows heterogeneous silicon to quickly pass information in extremely close proximity.” The company also came up with a power-sharing framework that lets the GPU manage each component’s temperature, performance and energy use. This infrastructure should free up about three square inches of board space that could either be used for other components as described above, or make for thinner laptops altogether. The idea is that powerful laptops for gamers no longer have to be chunky beasts. The new Core H processor is the first consumer product to use EMIB, and will be released in the first quarter of 2018, and many laptop makers are expected to offer products powered by the chip. This is a pretty significant development that not only benefits the enthusiast audience, but could also have trickle down effects that could improve mainstream laptops (and even other devices) in the future. Source: Intel

View the original here:
Intel squeezed an AMD graphics chip, RAM and CPU into one module

StarCraft II goes free-to-play seven years after launch

Enlarge If you’ve been zealously guarding your money since 2010, waiting for the day StarCraft II would finally be cheap enough to try out, you’re in luck. At Blizzcon over the weekend, Blizzard announced the game would be transitioning to a free-to-play model, offering significant portions of the single- and multiplayer content for no charge starting November 14. As explained on the Battle.net blog , players will be able to download StarCraft II ‘s original “Wings of Liberty” single-player campaign for free. Players who previously paid for “Wings of Liberty” will be able to get “Heart of the Swarm” expansion for free instead, and players who purchased an expansion previously will receive an exclusive Ghost skin and three new portraits. Players will also be to earn full, free access to ranked multiplayer play, including units from all three of the game’s expansions. That mode will be locked until players notch a single unranked or AI win on 10 separate days (“our way to preserve the quality and integrity of the ranked experience,” Blizzard explains). Read 4 remaining paragraphs | Comments

See more here:
StarCraft II goes free-to-play seven years after launch

Nanotextured glass becomes "invisible"

Materials scientists at Brookhaven National Laboratory have developed a way to etch nano-sized patterns into glass so that glare is nearly eliminated. Via c&en : To reduce the annoying glare from the surfaces of cell phones and eyeglasses, manufacturers often coat them with antireflective films. Yet these coatings are limited because they reduce the reflection of light only at certain optimal wavelengths. Now, by directly changing the morphology of glass in a process called nanotexturing, researchers can fabricate glass that cuts down on reflection from light across wide swaths of visible and infrared wavelengths, making the material close to invisible. The new glass could be useful in devices such as laser systems and solar cells, in which light loss causes inefficient performance.

More:
Nanotextured glass becomes "invisible"

B&O’s Beoplay E8 totally wireless earbuds really are the total package

Bang & Olufsen’s headphones tend to stand out from the crowd, and their new fully wireless mode, the Beoplay E8, is no exception. The E8 is easily the best totally wire-free headphone I’ve used thus far, with comfortable earbuds that should fit regardless of your ear shape, good battery life of around four hours per charge and the best sound quality of any true wireless buds… Read More

Visit link:
B&O’s Beoplay E8 totally wireless earbuds really are the total package

Hole In The Ozone Layer Smallest In 29 Years

An anonymous reader quotes the Weather Channel: The hole in the ozone layer over Antarctica is the smallest it’s been since 1988, NASA said. According to a press release, the hole in the Earth’s ozone layer is 1.3 million square miles smaller than last year and 3.3 million square miles smaller than 2015… This year, the hole grew to 7.6 million square miles. NASA and NOAA scientists said warmer temperatures and a stormier upper atmosphere helped keep damaging chemicals chlorine and bromine from eating ozone from the layer that protects the Earth’s surface from harmful ultraviolet rays… The hole that hovers over Antarctica has been slowly recovering, scientists say, due to an international ban on harmful chemicals that were previously used in refrigerants and aerosols. The hole was its largest in 2000 and measured 11.5 million square miles. Although recovery is underway, the size of the hole remains large compared to the 1980s, when the hole was first detected, NASA noted. And while there has been significant healing of the ozone layer in recent years, some scientists say full healing is a slow process and will not occur until sometime in the 22nd century, Yale Environment 360 reports. Others expect the Antarctic ozone hole to recover back to 1980 levels around 2070, NASA said. Read more of this story at Slashdot.

Continue reading here:
Hole In The Ozone Layer Smallest In 29 Years

Tech Today w/ Ken May

Author: kenmay