maradydd: (Default)
Woke up late-ish-morning yesterday and found out that one of [personal profile] enochsmiles' colleagues was defending his thesis in a couple of hours, so we grumbled out of bed, dressed up, and made our way over to the Kasteelpark Arenberg engineering campus. It gets its name from the castle in the middle of it, which used to be an aristocratic hunting lodge but is now about 70% administration offices and 30% lecture halls for people presenting their dissertations. Markulf gave a fine presentation, and after a short roast by Bart, is now Dr. Kohlweiss. We hung around for a little of the reception, enjoying acceptably good wine and little sashimi-on-toast appetizers, then picked up two copies of the dissertation (I need to read the location-based privacy parts of it fairly soonish) and bugged out early to do some errands.

Said errands included picking up several packages that had accumulated at the post office, including presents from my mom for [personal profile] enochsmiles' and my upcoming birthdays. Nothing was actually labeled, so we divided them up according to who liked what best. I am now the proud owner of a wool-lined tan trenchcoat that is ever so slightly shiny and sheds rain like whoa -- a useful addition to my enormous collection of trenchcoats, particularly with the frequency of rain here -- and [personal profile] enochsmiles has a rain/warmup jacket that shines iridescent greenish-bluish-purple, like the carapace of a beetle. Neat stuff.

We then went home and did a bunch of dishes, since we'd made plans for D and his girlfriend S to come over and play poker later that night, briefly forgetting that we were also planning to put in an appearance at Markulf's post-defense party. So, around 9:30 we texted D and asked them to meet us at Metafoor instead of coming straight to our place; they were running a bit late anyway, so that worked out just fine. Many old colleagues had come to town for the defense, and we spent much of the party hanging out with [personal profile] enochsmiles' friend Lothar, a German now working in Norway at a research foundation that does a lot with both privacy and geophysical imaging. I'm not sure what the two have in common, but [personal profile] enochsmiles has been invited to come give a seminar, so we will probably go visit Norway in the next couple of months.

I think talking to Markulf has given [personal profile] enochsmiles some new perspective on his own dissertation. Markulf is one of those guys who seems perpetually organised and on track, but apparently he spent the last four years having a lot of the same misgivings about the quality and value of his research that [personal profile] enochsmiles has had. It's one of those things that is true for every graduate student, but it helps to be reminded that other people have the same uncertainties and still make it through.

Eventually D and S rolled up, and we made our way back home to break out the cards. D had forgotten the poker chips, so after I poured the beers I poked around to find a suitable substitute; we settled on different values of capacitors. It was both [personal profile] enochsmiles' and my first experience playing Texas hold 'em. He is an amazingly good bluffer (go figure!), whereas I play more cautiously and mathematically (but need to learn the probabilities of various hands better). D is quite a good coach, and I look forward to playing with them some more.

They finally took off around 2, and we retired to bed to watch some of Carlito's Way, the first half of which is really good, but I was too sleepy to make it through all of it. So, today I'm going to clean up the after-hangout mess on the dining room table, noodle around some more on the Drupal project I'm working on, and at some point watch the rest of the movie before D's brother's blues-rock band plays at the Machine tonight.

I'm so glad it's finally spring.
maradydd: (Default)
In my email this morning:

Dear Meredith Patterson,

I am delighted to inform you that your submission
127 - PKI Layer Cake: New Collision Attacks Against the Global X.509 Infrastructure
has been accepted to appear as a FULL PAPER at FC 2010.

Out of 130 submissions we accepted 19 as FULL papers (acceptance
rate: 14.6%) and 15 as SHORT papers (acceptance rate: 26.1%).
It's shepherded, meaning that we get to do some back-and-forth with an editor to beat some of the rougher bits of the paper into shape, but that is totally okay. I'll post publicly with a link to the tech-report version once the camera-ready is done, which will be no later than 15 December.

Mad props to my coauthors, Dan Kaminsky and Len Sassaman. Now, if you'll pardon me, I'm going to go dig that bottle of champagne out of the back of the fridge -- this is the most competitive conference I've ever been accepted to.
maradydd: (Default)
In which postmodernism and the decay of the modern university from the inside out drive a man to the brink of madness and ruin, and the one thing he has evaded for the whole of his academic career is the only thing that can bring him back.

Extended discussion later, maybe. I am tempted to start dissecting this beast right now, if only for the fact that if I go to sleep now I will likely have nightmares about it. This is horror of Lovecraftian magnitude, though it more properly follows in the footsteps of Poe. The young man from Providence wrote terror stories, in which the Unspeakable Elder Things are outside not only the ken of man but also of what man can know. In Kirn's tale, as in Poe, corruption and evil emerge from within -- they are born of man, they take root in the narrator, and they suffuse and pervert one of the greatest institutions of mankind. Yet these monstrosities are classic Yog-Sothothery, for they are demons of unreason, blind gibbering egregores that wreak havoc on the narrator's very grasp of sanity. Nyarlathotep walks the halls and eating-clubs of Princeton.

Oh, and by the way, it's nonfiction.

Pleasant dreams.
maradydd: (Default)
When it's been a publicized vulnerability since at least 2003, but nobody's had the good sense to actually pay attention to it, you assholes.

Avi Rubin on the Christopher Soghoian fake-boarding-pass generator kerfluffle:
RUBIN: When we find a security vulnerability, we think about how to publish that information responsibly, and what information we may need to omit. When we find an exploit, the first thing we do is have a meeting about who to tell and how.
Avi, this is all well and good if you're talking about a brand new exploit that nobody's ever imagined before, or even if you combine a few old attacks in a new and unexpected way. But Christopher Soghoian only did one new thing: he implemented an attack which had only been described in theory, even though that attack was already easy enough for the average thirteen-year-old with a MySpace to pull off in practice. Now it's easy enough for the average kindergartner. You cannot possibly give a convincing argument that our nation's security is under appreciably greater risk from the grade-school age bracket than it was last week. Nor, I believe, can you give a convincing argument that terrorists who have the technical savvy to coordinate dozen-man attacks haven't figured out how to edit a webpage or hire someone who can.

No, this is a matter of practice getting better press than theory. I'm willing to believe that not a single one of the 535 members of the U.S. House and Senate was reading Crypto-Gram back in August 2003 and that none have happened across Schneier's article since. I'm less willing to believe that no member of Congress reads Slate magazine, which covered the same issue last year -- especially since Sen. Charles E. Schumer (D-NY) issued a press release about the loophole a mere six days after the Slate article came out. But theoretical attacks make people's eyes glaze over, especially people who can't be bothered to learn anything about the systems which make those attacks possible. If people have to do actual work to see that the emperor has no clothes, most of them will gladly continue to believe whatever the emperor wants them to think. Soghoian reduced the process to "push button => naked emperor," and now people are scared of something they should have already been clamouring about for the last three-plus years.

Keep this one in mind, all you academics out there. By and large, you don't care about whether your work ever gets implemented or not, as long as it works out on paper. But the Christopher Soghoian incident should stand out as a reminder and a warning: your work is only going to affect the rest of the world if someone puts it into practice. That someone might be you, or it might be somebody else's grad student; it's up to you to decide who's going to get the recognition.

Assuming, that is, it's the kind of recognition you want.
maradydd: (Default)
The die is cast: my qualifying exam presentation is scheduled for 9 May, so it'll be the second to last major thing I do before I'm out of here for the summer.

Between now and then, I need to turn this fuzzy-search project I've been working on and bending everyone's ear about into a fifteen-page paper. Most of that will be taken up by A Concise History of Just About Everything To Do with Association and Similarity Classification; describing the project itself will just be a couple of pages, because really, the system isn't that damn complicated. (Counting the wrappers I've had to write, but not counting the libraries it's built on, the entire thing comes in at just under a thousand lines of code.) I'll also rabbit on for a bit about where I plan to take the project (read: "Get ready, because in another six months this is what I'll be giving my comps presentation over"), which should eat another page or two. The hard part -- the system -- is done. This is the bite-my-lip-and-grind-it-out part.

Current plan: knock out a first draft by Monday, then have it revised by the time [livejournal.com profile] yoctohedron gets here on Thursday, so as not to be Horribly Antisocial Girl during that time.

All things considered, this is really no worse than writing up an entire syntax midterm the morning it's due, and I've done that without blinking before.

Profile

maradydd: (Default)
maradydd

September 2010

S M T W T F S
   1234
567891011
12131415 161718
19202122232425
26 27282930  

Syndicate

RSS Atom

Most Popular Tags

Style Credit

Expand Cut Tags

No cut tags