Author Archives: pappp

Article note: I shouldn't look at the comments. I shouldn't look at the commen...GET THE POPCORN, I'M GOING IN!

Enlarge / Google's main headquarters. (credit: Cyrus Farivar)

Google has given raises to thousands of men after an analysis of Google's pay structure found that the company would otherwise be underpaying those men relative to their peers, The New York Times reports. The analysis also led to raises for some women.

Google determines annual pay raises in a three-phase process. First, Google adjusts every employee's compensation based on standard factors like their location, seniority, and performance ratings. Managers can then seek additional discretionary raises for their best-performing employees.

Finally, Google performs a company-wide analysis to determine whether these raises are biased in terms of race or gender. If biases are detected, the disadvantaged workers are given additional raises to eliminate the discrepancies.

Article note: I've been listening to The Prodigy whenever I could have music on today since I saw this this morning. Damn they were a force. Liam Howlett was the musical genius, but so much of the aesthetic came from Keith Flit, and that aesthetic destroyed genres, and birthed others, and colored everything for those of us who spent the 90s immersed in "that computer shit." I hope he at least went out on his own terms.

Article note: While Intel going royalty-free on their interconnect is useful, none of the articles I've seen are discussing the security implications. Thunderbolt supports DMA (and other lower-level access) that USB doesn't, and there have been a variety of exploits in the wild for like 5 years at this point (see Thunderstrike & co.). USB is a relatively low-privilege connection, making the power socket, cheap peripheral connector, and other throwaway connections able to surreptitiously ask to root around the host system's memory seems like a questionable feature.

Enlarge / A very dramatic-looking Thunderbolt 3 cable.

Fulfilling its 2017 promise to make Thunderbolt 3 royalty-free, Intel has given the specification for its high-speed interconnect to the USB Implementers Forum (USB-IF), the industry group that develops the USB specification. The USB-IF has taken the spec and will use it to form the basis of USB4, the next iteration of USB following USB 3.2.

Thunderbolt 3 not only doubles the bandwidth of USB 3.2 Gen 2×2, going from 20Gb/s to 40Gb/s, it also enables the use of multiple data and display protocols simultaneously. We would expect the USB4 specification to be essentially a superset of the Thunderbolt 3 and USB 3.2 specifications, thus incorporating both the traditional USB family of protocols (up to and including the USB 3.2 Gen 2×2) and the Thunderbolt 3 protocol in a single document. Down the line, this should translate into USB4 controllers that support the whole range of speeds.

Intel has previously announced that its Ice Lake platform, due to ship later this year, will integrate both Thunderbolt 3 and USB 3.1 Gen 2 (aka USB 3.2 Gen 2) controllers. Currently, offering Thunderbolt 3 requires the use of an additional chip, one of Intel's Alpine Ridge or Titan Ridge Thunderbolt 3 controllers. Integration into the platform means that system-builders no longer need to choose whether or not to include the extra chip; the capability will be built in, and as such, we'd expect to see it become nearly universal.

Article note: Again? It's a classic "strcopy into a buffer fixed-bytes away from the return address" bug.

Article note: It's not a great essay, but at least it does hit the "proximity and reach as the primary problems" point that I've been steadily more convinced of. The internet (and especially social media) means you are constantly confronted with your neighbors' ideas you find abhorrent, and you and your neighbor can both round up a global-scale mob who share your probably abhorrent to others ideas, and that's a recipe for disaster. I read Neal Stephenson's Diamond Age (published in 1995) recently, and while its most interesting thoughts (to me) are about education, it also has an _awful_ lot about the inherent difficulties of pluralistic society, especially in the face of delocalization. Tragically, it didn't have much in the way of good advice on solutions.

Article note: I really like this "concrete examples in familiar products, explained with implications" presentation of agitating for better behavior.

Article note: Damn. The UC system is not a small player, and while several large European institutions have already done so, AFIK they're the first large entity in the U.S. to ditch Elsevier. It is a legitimate "death to the parasites" situation, but also a little annoying on the ground floor to have to take "alternate" methods to get to publications.

Article note: That looks like a really great form-factor - had something like this been available and credible at the time I bought my SGS9 I would have gone for it instead.

Article note: rad. It's presumably aimed at the same niche as the TI AM335x (think BeagleBone) only instead of having more-deeply-integrated but weird custom PRU-things for real-time offload, it has a Cortex A4 coprocessor just like the widely-used STM32F4 family for similar purposes. Should be _awesome_ for standalone machine controllers and the like.

Article note: Interesting. Some of those are reasonably low-hanging problems, most are way past the sophistication of anything but a serious targeted attack. The relatively good performance of KeePass does provide further evidence for my "I want my password manager to have as little surface area as possible" principle. You can't have network and plugin leaks if the features aren't there.