The mud puddle test

The mud puddle testYou don’t have to dig through Apple’s ToS to determine how they store their encryption keys. There’s a much simpler approach that I call the ‘mud puddle test’:

  • First, drop your devices in a mud puddle. 
  • Next, slip in said puddle and crack yourself on the head. When you regain consciousness you’ll be perfectly fine, but won’t for the life of you be able to recall your device passwords or keys.
  • Now try to get your cloud data back. Did you succeed? If so, you’re screwed.

Or to be a bit less dramatic, I should say: your cloud provider has access to your ‘encrypted’ data, as does the government if they want it, as does any rogue employee who knows their way around your provider’s internal policy checks.

via A Few Thoughts on Cryptographic Engineering.

Bitcoin – The Libertarian Introduction

Bitcoin shackles a government and forces it to subsist only on what it can tax openly and legitimately borrow, but unlike a gold standard, Bitcoin doesn’t require any official status to become a standard. The market can arrive at the standard sans government approval, again because it works elegantly both for storage and transfer and it cannot be stopped because it exists in decentralized form.


Wat te doen als je geen post ontvangt? – Datadagboek #6

Amsterdam, 5 april 2013Er tuimelt een musje door de Siberische storm in mijn verder stille straat. De lente en de postbode laten zich niet zien. De afgelopen weken hebben zich aaneengeregen zonder bijzonderheid. Binnen op tafel ligt een multomap met enkele beduimelde pagina’s papier. Dit is mijn datadagboek tot nu toe.

Continue reading Wat te doen als je geen post ontvangt? – Datadagboek #6

Pseudonymous data should not be exempted from data protection

Whether a data record refers to me by name, or by email address, or by a strong pseudonym that cryptographically prevents the pseudonym to be linked to me does not really matter. The data refers to me, and the data will be used, within that context, to judge me, make decisions about me, etc.

via Jaap-Henk Hoepman.

Project Byzantium

For the moment, we’ve won the battle against normal workaday life and fixed the final bug preventing us from publishing the latest release of Byzantium Linux, which we codenamed Beach Cat after our time in New York City late last year.  v0.3a is now available via BitTorrent and direct download on our distribution page.  Please help us distribute this release announcement far and wide.

via Project Byzantium.