You are currently browsing the category archive for the ‘Uncategorized’ category.

I recently was approached by the FCC regarding an open call for feedback regarding 5G security and current security challenges in mobile security. The document that I submitted seems to be already in the public domain and can be accessed from here:

Some key challenges in securing 5G wireless networks

Direct link to the PDF.

Advertisements

I got this from a friend earlier today: https://groups.google.com/a/chromium.org/forum/#!msg/blink-dev/eUAKwjihhBs/rpxMXjZHCQAJ (Google Chrome – Intent to deprecate and remove trust in existing Symantec-issued Certificates)

It seems that, since a series of failures from Symantec to properly validate certificates (an issue that seems to be affecting over 30000 mis-issued certificates), Google Chrome is starting to deprecate and distrust Symantec-issued certificates.

I remember last year that a bunch of online services lost compatibility with Chrome as they were using Symantec-issued certificates). As highlighted in the notice from the link above, this is a problem that is not new (see this post on Google’s Security Blog from 2015).

Quoting the notice from Google, Chrome is proposing the following steps:

  • A reduction in the accepted validity period of newly issued Symantec-issued certificates to nine months or less, in order to minimize any impact to Google Chrome users from any further misissuances that may arise.

  • An incremental distrust, spanning a series of Google Chrome releases, of all currently-trusted Symantec-issued certificates, requiring they be revalidated and replaced.

  • Removal of recognition of the Extended Validation status of Symantec issued certificates, until such a time as the community can be assured in the policies and practices of Symantec, but no sooner than one year.

This is a pretty big deal and could result in a big mess of services stopping to work with Chrome… for a good reason, though, as this is clearly to ensure the security and trust in the certificates used to anchor the Internet’s security infrastructure.

If you are a SysAdmin, they are requesting feedback on this proposal.

Folks are starting to talk about this on reddit and other forums. I expect this to be in the news tomorrow… or not. After all, they are not fully distrusting Symantec, but putting them in some sort of “probation period”.

 

Update (03/24/17): As expected, if you google today “Chrome Symantec certificates” you get a ton of news stories on this…

Mobile cellular communications are a fascinating world. Although there’s impressive advances in technology in the research world – both academic and industrial research -, the technological progress and advance of such networks is driven by the standards community (i.e. 3GPP).

This is an approach that has worked since the inception of GSM and has delivered the impressive technology current smartphones use to connect to the Internet, stream the latest “cute dog doing something cute” video and watch the goals by Celta against Madrid in yesterday’s game (hooray for Celta!). In parallel, this model provides enough time for both equipment manufacturers and network operators to get a good return on the investment of billions of dollars of network equipment.

Nowadays, though, we are experiencing two technology trends that are challenging the status quo in wireless and mobile technology. For the first time ever, standards are late to cope for the demand – and obscene amounts of potential revenue and services – in two key technological trends:

  • IoT: There is a massive demand of wireless connectivity for embedded M2M devices. For many applications, such as smart city, agriculture, smart grid, etc, some of the requirements are to have very cheap devices (the “target” used in the industry is $1 per chip) with very low battery consumption (again, the “target” from the industry is 10 years, thoguh I think that is a bit optimistic). The demand is here, but the standards have not delivered. And, in this huge gap one can find two exciting trends: the money-making/raising machine of Sigfox and the LoRa/LoRaWAN community. Two new technologies fueling new services, new applications and exciting new ventures. Meanwhile, the 3GPP community is playing catch up with LTE Cat-M and NB-IoT. (This document provides a bit of an overview. – LoRa is much slower, but for the aforementioned applications one does not need much speed, and latency is not a major deal breaker either)
  • Connected cars, self-driving cars, etc: Similar scenario. Although the self-driving car technology is still just in its inception, there is already several use cases that require connectivity between vehicles and from vehicles to the “road”. 5G mobile networks aim at sub-10ms latency and large capacity for connectivity to 1000x more devices, yet at this point no one really knows what 5G will be (other than the really exciting transition to mmWave and application of massive arrays and beamforming). In parallel, an alternative technology – Dedicated Short Range Communications – seems to be gaining momentum.

In both cases, once the mobile industry and the standards catch up and finally deploy 5G, LTE Cat-M/NB-IoT, all these alternative technologies might simply fade away. But, as of now, the folks at SigFox, the startups deploying smart-city applications running on LoRa, etc are making a lot of money and the status quo is not getting – yet – any piece of the cake.

Exciting times!

Today Apple will give more details on its new wearable device. Here is where you can follow the presentation live:

Enjoy!

Ps. I always post links to the live blogs and streams for Apple events because once it resulted in 30k hits on my blog in a day. It’s been way less ever since, but I still do it as an experiment…

Looking forward to what Apple will release on September 9th? Experts argue that a new iPhone will be unveiled. And perhaps also the highly anticipated iWatch. Follow live the event from either of these live blogs:

Also, Apple will be broadcasting the event via streaming. You can access it here: Apple live video

Enjoy!

9-9event

My blog got all messed up and looks terrible because the themes are not working. Anyone else having the same problem?

Happy New Year, everyone!

Feliz Año Nuevo a todos!

Bon any nou a tothom!

In this post, last one until after Christmas day and December 26th – Dec. 26th is Sant Esteve in Catalunya, also a holiday – will be devoted to a random and useless list of the best of the best of 2010.

First of all, the most used words and events of 2010 on Twitter were the World Cup – hooray for Spain! – and the BP oil spill. Do not miss SouthPark’s Coon Saga about the BP Oil Spill!

Let’s move to YouTube. Believe it or not, the most seen video of 2010 was this:

The whole thing come from a real news that you can’t miss for its surrealism. Justin Bieber wins the silver medal in this category.

Moving on to television. The most seen TV program of 2010 was this:

The most Googled words in Spain during 2010 were Facebook, Tuenti, YouTube, Hotmail and… Marca. It says a lot about our culture when one of the most googled words is a sports newspaper. I actually read it daily, despite its irritating Real Madrid/anti-Barcelona bias. They cheer for the wrong team but hey, they are the most complete sports newspaper in Spain and it makes me day when I read there about Barcelona’s victories or when we crush Real Madrid 5-0, 0-3, 2-6, 0-2, etc.

The most seen movie of 2010 and also the biggest money making movie of all time has been James Cameron’s Avatar.

Among others, a brief list of – according to me and my very low credibility – the biggest mistakes of 2010:

Finally, a quick list of my other favorites of 2010:

Merry Christmas everyone!

I am sorry for eventual Real Madrid fans reading the blog, I couldn’t stop myself from posting this.

Update:

Read about the game at NY Times and at its Goal blog.

The highlights:

Extended highlights:

Update:

For some reason, the highlights keep being censored and removed from YouTube. If you check, you’ll see you can see the highlights of any other game in Spain. Apparently, somebody from Mediapro or Spain’s soccer federation is trying to hide the images of the humiliation so nobody can see them. Well, it won’t work:

Piracy has always been a big problem – or advantage – in Spain. I am not aware of the current statistics, but a few years ago, we were the second largest piracy country in the World, being only beaten by China. Over there, it is common that people download huge amounts of music and movies. There used to be not much E-book piracy, though.

Nowadays, things seem to be changing. E-book piracy is rapidly increasing and, according to a study by Attributor, the increase have some slight correlation with the release of the iPad. The pool of people who want to read E-books increases with the number of iPad users. And this means, in Spain specially but also everywhere else, that the E-book-related piracy increases.

About me:

Born in Barcelona, moved to Los Angeles at age 24, ended in NYC, where I enjoy life, tweet about music and work as a geek in security for wireless networks.
All the opinions expressed in this blog are my own and are not related to my employer.
About me: http://rogerpiquerasjover.net/

Blog Stats

  • 126,869 hits

Twitter feed

Enter your email address to follow this blog and receive notifications of new posts by email.