#Big Data Security Market | Explore Tumblr posts and blogs

jcmarchi · 2 months ago

Text

China Telecom trains AI model with 1 trillion parameters on domestic chips

New Post has been published on https://thedigitalinsider.com/china-telecom-trains-ai-model-with-1-trillion-parameters-on-domestic-chips/

China Telecom trains AI model with 1 trillion parameters on domestic chips

.pp-multiple-authors-boxes-wrapper display:none; img width:100%;

China Telecom, one of the country’s state-owned telecom giants, has created two LLMs that were trained solely on domestically-produced chips.

This breakthrough represents a significant step in China’s ongoing efforts to become self-reliant in AI technology, especially in light of escalating US limitations on access to advanced semiconductors for its competitors.

According to the company’s Institute of AI, one of the models, TeleChat2-115B and another unnamed model were trained on tens of thousands of Chinese-made chips. This achievement is especially noteworthy given the tighter US export rules that have limited China’s ability to purchase high-end processors from Nvidia and other foreign companies. In a statement shared on WeChat, the AI institute claimed that this accomplishment demonstrated China’s capability to independently train LLMs and signals a new era of innovation and self-reliance in AI technology.

The scale of these models is remarkable. China Telecom stated that the unnamed LLM has one trillion parameters. In AI terminology, parameters are the variables that help the model in learning during training. The more parameters there are, the more complicated and powerful the AI becomes.

Chinese companies are striving to keep pace with global leaders in AI based outside the country. Washington’s export restrictions on Nvidia’s latest AI chips such as the A100 and H100, have compelled China to seek alternatives. As a result, Chinese companies have developed their own processors to reduce reliance on Western technologies. For instance, the TeleChat2-115B model has approximately 100 billion parameters, and therefore can perform as well as mainstream platforms.

China Telecom did not specify which company supplied the domestically-designed chips used to train its models. However, as previously discussed on these pages, Huawei’s Ascend chips play a key part in the country’s AI plans.

Huawei, which has faced US penalties in recent years, is also increasing its efforts in the artificial intelligence field. The company has recently started testing its latest AI processor, the Ascend 910C, with potential clients waiting in the domestic market. Large Chinese server companies, as well as internet giants that have previously used Nvidia chips, are apparently testing the new chip’s performance. Huawei’s Ascend processors, as one of the few viable alternatives to Nvidia hardware, are viewed as a key component of China’s strategy that will lessen its reliance on foreign technology.

In addition to Huawei, China Telecom is collaborating with other domestic chipmakers such as Cambricon, a Chinese start-up specialising in AI processors. The partnerships reflect a broader tendency in China’s tech industry to build a homegrown ecosystem of AI solutions, further shielding the country from the effects of US export controls.

By developing its own AI chips and technology, China is gradually reducing its dependence on foreign-made hardware, especially Nvidia’s highly sought-after and therefore expensive GPUs. While US sanctions make it difficult for Chinese companies to obtain the latest Nvidia hardware, a black market for foreign chips has emerged. Rather than risk operating in the grey market, many Chinese companies prefer to purchase lower-powered alternatives such as previous-gen models to maintain access to Nvidia’s official support and services.

China’s achievement reflects a broader shift in its approach to AI and semiconductor technology, emphasising self-sufficiency and resilience in an increasingly competitive global economy and in face of American protectionist trade policies.

(Photo by Mark Kuiper)

See also: Has Huawei outsmarted Apple in the AI race?

Want to learn more about AI and big data from industry leaders? Check out AI & Big Data Expo taking place in Amsterdam, California, and London. The comprehensive event is co-located with other leading events including Intelligent Automation Conference, BlockX, Digital Transformation Week, and Cyber Security & Cloud Expo.

Explore other upcoming enterprise technology events and webinars powered by TechForge here.

Tags: artificial intelligence, chip, huawei, llm, Nvidia

0 notes

phantomrose96 · 9 months ago

Text

If anyone wants to know why every tech company in the world right now is clamoring for AI like drowned rats scrabbling to board a ship, I decided to make a post to explain what's happening.

(Disclaimer to start: I'm a software engineer who's been employed full time since 2018. I am not a historian nor an overconfident Youtube essayist, so this post is my working knowledge of what I see around me and the logical bridges between pieces.)

Okay anyway. The explanation starts further back than what's going on now. I'm gonna start with the year 2000. The Dot Com Bubble just spectacularly burst. The model of "we get the users first, we learn how to profit off them later" went out in a no-money-having bang (remember this, it will be relevant later). A lot of money was lost. A lot of people ended up out of a job. A lot of startup companies went under. Investors left with a sour taste in their mouth and, in general, investment in the internet stayed pretty cooled for that decade. This was, in my opinion, very good for the internet as it was an era not suffocating under the grip of mega-corporation oligarchs and was, instead, filled with Club Penguin and I Can Haz Cheezburger websites.

Then around the 2010-2012 years, a few things happened. Interest rates got low, and then lower. Facebook got huge. The iPhone took off. And suddenly there was a huge new potential market of internet users and phone-havers, and the cheap money was available to start backing new tech startup companies trying to hop on this opportunity. Companies like Uber, Netflix, and Amazon either started in this time, or hit their ramp-up in these years by shifting focus to the internet and apps.

Now, every start-up tech company dreaming of being the next big thing has one thing in common: they need to start off by getting themselves massively in debt. Because before you can turn a profit you need to first spend money on employees and spend money on equipment and spend money on data centers and spend money on advertising and spend money on scale and and and

But also, everyone wants to be on the ship for The Next Big Thing that takes off to the moon.

So there is a mutual interest between new tech companies, and venture capitalists who are willing to invest $$$ into said new tech companies. Because if the venture capitalists can identify a prize pig and get in early, that money could come back to them 100-fold or 1,000-fold. In fact it hardly matters if they invest in 10 or 20 total bust projects along the way to find that unicorn.

But also, becoming profitable takes time. And that might mean being in debt for a long long time before that rocket ship takes off to make everyone onboard a gazzilionaire.

But luckily, for tech startup bros and venture capitalists, being in debt in the 2010's was cheap, and it only got cheaper between 2010 and 2020. If people could secure loans for ~3% or 4% annual interest, well then a $100,000 loan only really costs $3,000 of interest a year to keep afloat. And if inflation is higher than that or at least similar, you're still beating the system.

So from 2010 through early 2022, times were good for tech companies. Startups could take off with massive growth, showing massive potential for something, and venture capitalists would throw infinite money at them in the hopes of pegging just one winner who will take off. And supporting the struggling investments or the long-haulers remained pretty cheap to keep funding.

You hear constantly about "Such and such app has 10-bazillion users gained over the last 10 years and has never once been profitable", yet the thing keeps chugging along because the investors backing it aren't stressed about the immediate future, and are still banking on that "eventually" when it learns how to really monetize its users and turn that profit.

The pandemic in 2020 took a magnifying-glass-in-the-sun effect to this, as EVERYTHING was forcibly turned online which pumped a ton of money and workers into tech investment. Simultaneously, money got really REALLY cheap, bottoming out with historic lows for interest rates.

Then the tide changed with the massive inflation that struck late 2021. Because this all-gas no-brakes state of things was also contributing to off-the-rails inflation (along with your standard-fare greedflation and price gouging, given the extremely convenient excuses of pandemic hardships and supply chain issues). The federal reserve whipped out interest rate hikes to try to curb this huge inflation, which is like a fire extinguisher dousing and suffocating your really-cool, actively-on-fire party where everyone else is burning but you're in the pool. And then they did this more, and then more. And the financial climate followed suit. And suddenly money was not cheap anymore, and new loans became expensive, because loans that used to compound at 2% a year are now compounding at 7 or 8% which, in the language of compounding, is a HUGE difference. A $100,000 loan at a 2% interest rate, if not repaid a single cent in 10 years, accrues to $121,899. A $100,000 loan at an 8% interest rate, if not repaid a single cent in 10 years, more than doubles to $215,892.

Now it is scary and risky to throw money at "could eventually be profitable" tech companies. Now investors are watching companies burn through their current funding and, when the companies come back asking for more, investors are tightening their coin purses instead. The bill is coming due. The free money is drying up and companies are under compounding pressure to produce a profit for their waiting investors who are now done waiting.

You get enshittification. You get quality going down and price going up. You get "now that you're a captive audience here, we're forcing ads or we're forcing subscriptions on you." Don't get me wrong, the plan was ALWAYS to monetize the users. It's just that it's come earlier than expected, with way more feet-to-the-fire than these companies were expecting. ESPECIALLY with Wall Street as the other factor in funding (public) companies, where Wall Street exhibits roughly the same temperament as a baby screaming crying upset that it's soiled its own diaper (maybe that's too mean a comparison to babies), and now companies are being put through the wringer for anything LESS than infinite growth that Wall Street demands of them.

Internal to the tech industry, you get MASSIVE wide-spread layoffs. You get an industry that used to be easy to land multiple job offers shriveling up and leaving recent graduates in a desperately awful situation where no company is hiring and the market is flooded with laid-off workers trying to get back on their feet.

Because those coin-purse-clutching investors DO love virtue-signaling efforts from companies that say "See! We're not being frivolous with your money! We only spend on the essentials." And this is true even for MASSIVE, PROFITABLE companies, because those companies' value is based on the Rich Person Feeling Graph (their stock) rather than the literal profit money. A company making a genuine gazillion dollars a year still tears through layoffs and freezes hiring and removes the free batteries from the printer room (totally not speaking from experience, surely) because the investors LOVE when you cut costs and take away employee perks. The "beer on tap, ping pong table in the common area" era of tech is drying up. And we're still unionless.

Never mind that last part.

And then in early 2023, AI (more specifically, Chat-GPT which is OpenAI's Large Language Model creation) tears its way into the tech scene with a meteor's amount of momentum. Here's Microsoft's prize pig, which it invested heavily in and is galivanting around the pig-show with, to the desperate jealousy and rapture of every other tech company and investor wishing it had that pig. And for the first time since the interest rate hikes, investors have dollar signs in their eyes, both venture capital and Wall Street alike. They're willing to restart the hose of money (even with the new risk) because this feels big enough for them to take the risk.

Now all these companies, who were in varying stages of sweating as their bill came due, or wringing their hands as their stock prices tanked, see a single glorious gold-plated rocket up out of here, the likes of which haven't been seen since the free money days. It's their ticket to buy time, and buy investors, and say "see THIS is what will wring money forth, finally, we promise, just let us show you."

To be clear, AI is NOT profitable yet. It's a money-sink. Perhaps a money-black-hole. But everyone in the space is so wowed by it that there is a wide-spread and powerful conviction that it will become profitable and earn its keep. (Let's be real, half of that profit "potential" is the promise of automating away jobs of pesky employees who peskily cost money.) It's a tech-space industrial revolution that will automate away skilled jobs, and getting in on the ground floor is the absolute best thing you can do to get your pie slice's worth.

It's the thing that will win investors back. It's the thing that will get the investment money coming in again (or, get it second-hand if the company can be the PROVIDER of something needed for AI, which other companies with venture-back will pay handsomely for). It's the thing companies are terrified of missing out on, lest it leave them utterly irrelevant in a future where not having AI-integration is like not having a mobile phone app for your company or not having a website.

So I guess to reiterate on my earlier point:

Drowned rats. Swimming to the one ship in sight.

#chrissy speaks #long post #-gestures broadly-

35K notes · View notes

kittubhawsar · 9 months ago

Text

https://www.htfmarketintelligence.com/report/global-big-data-security-market

#Big Data Security Market Size

0 notes

reasonsforhope · 5 months ago

Text

"The Netherlands is pulling even further ahead of its peers in the shift to a recycling-driven circular economy, new data shows.

According to the European Commission’s statistics office, 27.5% of the material resources used in the country come from recycled waste.

For context, Belgium is a distant second, with a “circularity rate” of 22.2%, while the EU average is 11.5% – a mere 0.8 percentage point increase from 2010.

“We are a frontrunner, but we have a very long way to go still, and we’re fully aware of that,” Martijn Tak, a policy advisor in the Dutch ministry of infrastructure and water management, tells The Progress Playbook.

The Netherlands aims to halve the use of primary abiotic raw materials by 2030 and run the economy entirely on recycled materials by 2050. Amsterdam, a pioneer of the “doughnut economics” concept, is behind much of the progress.

Why it matters

The world produces some 2 billion tonnes of municipal solid waste each year, and this could rise to 3.4 billion tonnes annually by 2050, according to the World Bank.

Landfills are already a major contributor to planet-heating greenhouse gases, and discarded trash takes a heavy toll on both biodiversity and human health.

“A circular economy is not the goal itself,” Tak says. “It’s a solution for societal issues like climate change, biodiversity loss, environmental pollution, and resource-security for the country.”

A fresh approach

While the Netherlands initially focused primarily on waste management, “we realised years ago that’s not good enough for a circular economy.”

In 2017, the state signed a “raw materials agreement” with municipalities, manufacturers, trade unions and environmental organisations to collaborate more closely on circular economy projects.

It followed that up with a national implementation programme, and in early 2023, published a roadmap to 2030, which includes specific targets for product groups like furniture and textiles. An English version was produced so that policymakers in other markets could learn from the Netherlands’ experiences, Tak says.

The programme is focused on reducing the volume of materials used throughout the economy partly by enhancing efficiencies, substituting raw materials for bio-based and recycled ones, extending the lifetimes of products wherever possible, and recycling.

It also aims to factor environmental damage into product prices, require a certain percentage of second-hand materials in the manufacturing process, and promote design methods that extend the lifetimes of products by making them easier to repair.

There’s also an element of subsidisation, including funding for “circular craft centres and repair cafés”.

This idea is already in play. In Amsterdam, a repair centre run by refugees, and backed by the city and outdoor clothing brand Patagonia, is helping big brands breathe new life into old clothes.

Meanwhile, government ministries aim to aid progress by prioritising the procurement of recycled or recyclable electrical equipment and construction materials, for instance.

State support is critical to levelling the playing field, analysts say...

Long Road Ahead

The government also wants manufacturers – including clothing and beverages companies – to take full responsibility for products discarded by consumers.

“Producer responsibility for textiles is already in place, but it’s work in progress to fully implement it,” Tak says.

And the household waste collection process remains a challenge considering that small city apartments aren’t conducive to having multiple bins, and sparsely populated rural areas are tougher to service.

“Getting the collection system right is a challenge, but again, it’s work in progress.”

...Nevertheless, Tak says wealthy countries should be leading the way towards a fully circular economy as they’re historically the biggest consumers of natural resources."

-via The Progress Playbook, December 13, 2023

#netherlands #dutch #circular economy #waste management #sustainable #recycle #environment #climate action #pollution #plastic pollution #landfill #good news #hope

519 notes · View notes

zvaigzdelasas · 9 months ago

Text

You can’t buy the Seagull in the US. But I bet you wish you could.

A small hatchback around the size of a Mini Cooper, the Seagull is a fast-charging electric car and claims a range of up to 250 miles [...] BYD, its Chinese manufacturer, claims it can go from 30 percent to 80 percent charged in a half-hour using a DC plug. It’s hardly a luxury car but it’s well-equipped, with a power driver’s seat and cruise control. “If I were looking for an inexpensive commuter car … this would be perfect,” veteran car journalist John McElroy said after taking a drive.

The best part? Its base model costs about $10,700 in China.

That’s about a third of the cost of the cheapest EV you can buy in the US. In South America, it’s a little pricier, but still fairly affordable, at under $24,000 for a top-trim version. Even in Europe, you can get an entry-level BYD for under €30,000. These are absolutely screaming deals — exactly the kind of products that could turbocharge our transition away from gas and toward electric vehicles.[...]

The problem for Americans? The Biden administration is hell-bent on preventing you from buying BYD’s product, and if Donald Trump returns to office, he is likely to fight it as well.

That’s because the BYD cars are made in China, and both Biden and Trump are committed to an ultranationalist trade policy meant to keep BYD’s products out. [...] Shipments to Europe have increased astronomically; Chinese companies sold 0.5 percent of EVs in Europe in 2019 but they’re already over 9 percent as of last year. Companies like BYD make cheap, reasonably good-quality cars people are eager to buy.

In 2018, Trump imposed, and Biden has since continued, a special 25 percent tax on Chinese-made autos, on top of the ordinary 2.5 percent tax on foreign-made cars.

That has so far prevented BYD and its Chinese peers from trying to enter the US market. US customer tastes are different enough that Chinese manufacturers would probably prefer to make cars tailored to them — but US policy has been so hostile toward cheap Chinese EVs that so far, the companies haven’t wanted to bother.

So, the result is that we’re left out of the bounty of cheap EV options created by BYD and others. “If you’re a consumer right now, the best place to be right now is China, because you have the best choice of EVs,” Ilaria Mazzocco, senior fellow at the Center for Strategic and International Studies and an expert on Chinese EVs, says.[...]

Still, China’s price advantage is big enough that even the extreme Trump-Biden import tax might not be enough to deter companies like BYD from entering the US market. Even with the tariffs, Chinese cars might be cheaper than their rivals. “Subsidies most likely won’t be enough; Mr. Biden will need to impose [more] trade restrictions,” climate journalist Robinson Meyer predicted recently. The Biden administration is already making noise about imposing even more draconian taxes or trade restrictions against these vehicles. Commerce Secretary Gina Raimondo has described Chinese-made cars as a national security threat, and recently announced an investigation into the vehicles’ data collection abilities and the possibility they could send movement data to Beijing.

On the one hand, Biden is offering Americans up to $7,500 per vehicle to buy EVs (provided they meet certain made-in-North America rules). On the other hand, he’s imposing massive taxes to keep Americans from buying EVs. It’s a bizarre policy that makes no sense from a climate perspective.[...]

[The Biden Administration] has proven shockingly willing to sabotage its own climate policy if it gets to stick it to the Chinese in the process.

“There’s almost an across-the-board apprehension about Chinese EVs, even though they would make an important contribution to [lower] CO2 emissions,” Gary Clyde Hufbauer, a veteran trade expert at the Peterson Institute for International Economics, says.[...]

Realistically, Helveston argues, BYD might not sell something like the Seagull in the US because it’s smaller than most cars Americans buy. They’d probably build plants in the US instead, or its free-trade zone partners Canada and Mexico, to build vehicles tailored for Americans. “If you’re going to really enter a market, you have to make it locally,” Helveston explains. “US automakers like GM sell and make millions of cars in China to sell in China.” BYD would do the same. Indeed, it’s already reportedly scouting sites for factories in Mexico.

If they ever were to set up shop in North America, BYD and other Chinese car companies would still have a major price advantage versus American EVs. They have years more experience and a much more successful track record of building batteries and EVs at low cost.

“Part of why they’re so successful is they’ve been thinking outside the box on cost reduction for a long time,” Mazzocco says. They took the “opposite of the Tesla approach”: starting not with luxury vehicles but ultra-cheap cars fit for taxi fleets and not much else, and constantly improving their early inexpensive prototypes. The result is that Chinese firms have gotten extremely good at making inexpensive EVs, at a time when Ford, by contrast, lost $28,000 for every EV it sold in 2023.[...]

“If you have more affordable EVs in the United States, no matter where you come from,” Gopal says, “that’s better for the climate.”

Still, the Biden administration reportedly wants to restrict Chinese car companies’ access to the US even if they do set up shop in North America. Bloomberg reported earlier this month that the Biden administration is formulating rules that would limit US sales of Chinese-made parts, even if they’re in vehicles ultimately assembled in the US or Mexico.[...]

But the Biden administration’s objections to Chinese EVs are also ideological. The Biden administration represents the victory of a protectionist, trade-skeptical wing of the Democratic party that was relegated to the sidelines during the Clinton and Obama years.[...]

[O]ver 90 percent of American households have a car, and surging car prices were a huge contributor to the 2021–2023 rise in inflation.

Barriers to importing cheap cars make inflation worse and reduce the real incomes of the middle class.

Not only are the administration and other left-leaning institutions opposed to Chinese EVs, but hardline conservatives at places like the Heritage Foundation are calling for outright bans on Chinese EVs as well. Their rationale is security, another theme the Biden administration evokes often. On Thursday, the Commerce Department announced it was beginning a process to “investigate the national security risks of … PRC-manufactured technology in [internet-connected] vehicles.”

6 Mar 24

518 notes · View notes

linkhundr · 2 months ago

Text

So NFTgate has now hit tumblr - I made a thread about it on my twitter, but I'll talk a bit more about it here as well in slightly more detail. It'll be a long one, sorry! Using my degree for something here. This is not intended to sway you in one way or the other - merely to inform so you can make your own decision and so that you aware of this because it will happen again, with many other artists you know.

Let's start at the basics: NFT stands for 'non fungible token', which you should read as 'passcode you can't replicate'. These codes are stored in blocks in what is essentially a huge ledger of records, all chained together - a blockchain. Blockchain is encoded in such a way that you can't edit one block without editing the whole chain, meaning that when the data is validated it comes back 'negative' if it has been tampered with. This makes it a really, really safe method of storing data, and managing access to said data. For example, verifying that a bank account belongs to the person that says that is their bank account.

For most people, the association with NFT's is bitcoin and Bored Ape, and that's honestly fair. The way that used to work - and why it was such a scam - is that you essentially purchased a receipt that said you owned digital space - not the digital space itself. That receipt was the NFT. So, in reality, you did not own any goods, that receipt had no legal grounds, and its value was completely made up and not based on anything. On top of that, these NFTs were purchased almost exclusively with cryptocurrency which at the time used a verifiation method called proof of work, which is terrible for the environment because it requires insane amounts of electricity and computing power to verify. The carbon footprint for NFTs and coins at this time was absolutely insane.

In short, Bored Apes were just a huge tech fad with the intention to make a huge profit regardless of the cost, which resulted in the large market crash late last year. NFTs in this form are without value.

However, NFTs are just tech by itself more than they are some company that uses them. NFTs do have real-life, useful applications, particularly in data storage and verification. Research is being done to see if we can use blockchain to safely store patient data, or use it for bank wire transfers of extremely large amounts. That's cool stuff!

So what exactly is Käärijä doing? Kä is not selling NFTs in the traditional way you might have become familiar with. In this use-case, the NFT is in essence a software key that gives you access to a digital space. For the raffle, the NFT was basically your ticket number. This is a very secure way of doing so, assuring individuality, but also that no one can replicate that code and win through a false method. You are paying for a legimate product - the NFT is your access to that product.

What about the environmental impact in this case? We've thankfully made leaps and bounds in advancing the tech to reduce the carbon footprint as well as general mitigations to avoid expanding it over time. One big thing is shifting from proof of work verification to proof of space or proof of stake verifications, both of which require much less power in order to work. It seems that Kollekt is partnered with Polygon, a company that offers blockchain technology with the intention to become climate positive as soon as possible. Numbers on their site are very promising, they appear to be using proof of stake verification, and all-around appear more interested in the tech than the profits it could offer.

But most importantly: Kollekt does not allow for purchases made with cryptocurrency, and that is the real pisser from an environmental perspective. Cryptocurrency purchases require the most active verification across systems in order to go through - this is what bitcoin mining is, essentially. The fact that this website does not use it means good things in terms of carbon footprint.

But why not use something like Patreon? I can't tell you. My guess is that Patreon is a monthly recurring service and they wanted something one-time. Kollekt is based in Helsinki, and word is that Mikke (who is running this) is friends with folks on the team. These are all contributing factors, I would assume, but that's entirely an assumption and you can't take for fact.

Is this a good thing/bad thing? That I also can't tell you - you have to decide that for yourself. It's not a scam, it's not crypto, just a service that sits on the blockchain. But it does have higher carbon output than a lot of other services do, and its exact nature is not publicly disclosed. This isn't intended to sway you to say one or the other, but merely to give you the proper understanding of what NFTs are as a whole and what they are in this particular case so you can make that decision for yourself.

#käärijä #whew its a long one sorry #but hopefully useful #and intended entirely to inform

95 notes · View notes

mostlysignssomeportents · 8 months ago

Text

The antitrust case against Apple

I'm on tour with my new, nationally bestselling novel The Bezzle! Catch me TONIGHT (Mar 22) in TORONTO, then SUNDAY (Mar 24) with LAURA POITRAS in NYC, then Anaheim, and beyond!

The foundational tenet of "the Cult of Mac" is that buying products from a $3t company makes you a member of an oppressed ethnic minority and therefore every criticism of that corporation is an ethnic slur:

https://pluralistic.net/2024/01/12/youre-holding-it-wrong/#if-dishwashers-were-iphones

Call it "Apple exceptionalism" – the idea that Apple, alone among the Big Tech firms, is virtuous, and therefore its conduct should be interpreted through that lens of virtue. The wellspring of this virtue is conveniently nebulous, which allows for endless goal-post shifting by members of the Cult of Mac when Apple's sins are made manifest.

Take the claim that Apple is "privacy respecting," which is attributed to Apple's business model of financing its services though cash transactions, rather than by selling it customers to advertisers. This is the (widely misunderstood) crux of the "surveillance capitalism" hypothesis: that capitalism is just fine, but once surveillance is in the mix, capitalism fails.

Apple, then, is said to be a virtuous company because its behavior is disciplined by market forces, unlike its spying rivals, whose ability to "hack our dopamine loops" immobilizes the market's invisible hand with "behavior-shaping" shackles:

http://pluralistic.net/HowToDestroySurveillanceCapitalism

Apple makes a big deal out of its privacy-respecting ethos, and not without some justification. After all, Apple went to the mattresses to fight the FBI when they tried to force Apple to introduced defects into its encryption systems:

https://www.eff.org/deeplinks/2018/04/fbi-could-have-gotten-san-bernardino-shooters-iphone-leadership-didnt-say

And Apple gave Ios users the power to opt out of Facebook spying with a single click; 96% of its customers took them up on this offer, costing Facebook $10b (one fifth of the pricetag of the metaverse boondoggle!) in a single year (you love to see it):

https://arstechnica.com/gadgets/2021/02/facebook-makes-the-case-for-activity-tracking-to-ios-14-users-in-new-pop-ups/

Bruce Schneier has a name for this practice: "feudal security." That's when you cede control over your device to a Big Tech warlord whose "walled garden" becomes a fortress that defends you against external threats:

https://pluralistic.net/2021/06/08/leona-helmsley-was-a-pioneer/#manorialism

The keyword here is external threats. When Apple itself threatens your privacy, the fortress becomes a prison. The fact that you can't install unapproved apps on your Ios device means that when Apple decides to harm you, you have nowhere to turn. The first Apple customers to discover this were in China. When the Chinese government ordered Apple to remove all working privacy tools from its App Store, the company obliged, rather than risk losing access to its ultra-cheap manufacturing base (Tim Cook's signal accomplishment, the one that vaulted him into the CEO's seat, was figuring out how to offshore Apple manufacturing to China) and hundreds of millions of middle-class consumers:

https://www.reuters.com/article/us-china-apple-vpn/apple-says-it-is-removing-vpn-services-from-china-app-store-idUSKBN1AE0BQ

Killing VPNs and other privacy tools was just for openers. After Apple caved to Beijing, the demands kept coming. Next, Apple willingly backdoored all its Chinese cloud services, so that the Chinese state could plunder its customers' data at will:

https://www.nytimes.com/2021/05/17/technology/apple-china-censorship-data.html

This was the completely foreseeable consequence of Apple's "curated computing" model: once the company arrogated to itself the power to decide which software you could run on your own computer, it was inevitable that powerful actors – like the Chinese Communist Party – would lean on Apple to exercise that power in service to its goals.

Unsurprisingly, the Chinese state's appetite for deputizing Apple to help with its spying and oppression was not sated by backdooring iCloud and kicking VPNs out of the App Store. As recently as 2022, Apple continued to neuter its tools at the behest of the Chinese state, breaking Airdrop to make it useless for organizing protests in China:

https://pluralistic.net/2022/11/11/foreseeable-consequences/#airdropped

But the threat of Apple turning on its customers isn't limited to China. While the company has been unwilling to spy on its users on behalf of the US government, it's proven more than willing to compromise its worldwide users' privacy to pad its own profits. Remember when Apple let its users opt out of Facebook surveillance with one click? At the very same time, Apple was spinning up its own commercial surveillance program, spying on Ios customers, gathering the very same data as Facebook, and for the very same purpose: to target ads. When it came to its own surveillance, Apple completely ignored its customers' explicit refusal to consent to spying, spied on them anyway, and lied about it:

https://pluralistic.net/2022/11/14/luxury-surveillance/#liar-liar

Here's the thing: even if you believe that Apple has a "corporate personality" that makes it want to do the right thing, that desire to be virtuous is dependent on the constraints Apple faces. The fact that Apple has complete legal and technical control over the hardware it sells – the power to decide who can make software that runs on that hardware, the power to decide who can fix that hardware, the power to decide who can sell parts for that hardware – represents an irresistible temptation to enshittify Apple products.

"Constraints" are the crux of the enshittification hypothesis. The contagion that spread enshittification to every corner of our technological world isn't a newfound sadism or indifference among tech bosses. Those bosses are the same people they've always been – the difference is that today, they are unconstrained.

Having bought, merged or formed a cartel with all their rivals, they don't fear competition (Apple buys 90+ companies per year, and Google pays it an annual $26.3b bribe for default search on its operating systems and programs).

Having captured their regulators, they don't fear fines or other penalties for cheating their customers, workers or suppliers (Apple led the coalition that defeated dozens of Right to Repair bills, year after year, in the late 2010s).

Having wrapped themselves in IP law, they don't fear rivals who make alternative clients, mods, privacy tools or other "adversarial interoperability" tools that disenshittify their products (Apple uses the DMCA, trademark, and other exotic rules to block third-party software, repair, and clients).

True virtue rests not merely in resisting temptation to be wicked, but in recognizing your own weakness and avoiding temptation. As I wrote when Apple embarked on its "curated computing" path, the company would eventually – inevitably – use its power to veto its customers' choices to harm those customers:

https://memex.craphound.com/2010/04/01/why-i-wont-buy-an-ipad-and-think-you-shouldnt-either/

Which is where we're at today. Apple – uniquely among electronics companies – shreds every device that is traded in by its customers, to block third parties from harvesting working components and using them for independent repair:

https://www.vice.com/en/article/yp73jw/apple-recycling-iphones-macbooks

Apple engraves microscopic Apple logos on those parts and uses these as the basis for trademark complaints to US customs, to block the re-importation of parts that escape its shredders:

https://repair.eu/news/apple-uses-trademark-law-to-strengthen-its-monopoly-on-repair/

Apple entered into an illegal price-fixing conspiracy with Amazon to prevent used and refurbished devices from being sold in the "world's biggest marketplace":

https://pluralistic.net/2022/11/10/you-had-one-job/#thats-just-the-as

Why is Apple so opposed to independent repair? Well, they say it's to keep users safe from unscrupulous or incompetent repair technicians (feudal security). But when Tim Cook speaks to his investors, he tells a different story, warning them that the company's profits are threatened by customers who choose to repair (rather than replace) their slippery, fragile glass $1,000 pocket computers (the fortress becomes a prison):

https://www.apple.com/newsroom/2019/01/letter-from-tim-cook-to-apple-investors/

All this adds up to a growing mountain of immortal e-waste, festooned with miniature Apple logos, that our descendants will be dealing with for the next 1,000 years. In the face of this unspeakable crime, Apple engaged in a string of dishonest maneuvers, claiming that it would support independent repair. In 2022, Apple announced a home repair program that turned out to be a laughably absurd con:

https://pluralistic.net/2022/05/22/apples-cement-overshoes/

Then in 2023, Apple announced a fresh "pro-repair" initiative that, once again, actually blocked repair:

https://pluralistic.net/2023/09/22/vin-locking/#thought-differently

Let's pause here a moment and remember that Apple once stood for independent repair, and celebrated the independent repair technicians that kept its customers' beloved Macs running:

https://pluralistic.net/2021/10/29/norwegian-potato-flour-enchiladas/#r2r

Whatever virtue lurks in Apple's corporate personhood, it is no match for the temptation that comes from running a locked-down platform designed to capture IP rights so that it can prevent normal competitive activities, like fixing phones, processing payments, or offering apps.

When Apple rolled out the App Store, Steve Jobs promised that it would save journalism and other forms of "content creation" by finally giving users a way to pay rightsholders. A decade later, that promise has been shattered by the app tax – a 30% rake on every in-app transaction that can't be avoided because Apple will kick your app out of the App Store if you even mention that your customers can pay you via the web in order to avoid giving a third of their content dollars to a hardware manufacturer that contributed nothing to the production of that material:

https://www.eff.org/deeplinks/2023/06/save-news-we-must-open-app-stores

Among the apps that Apple also refuses to allow on Ios is third-party browsers. Every Iphone browser is just a reskinned version of Apple's Safari, running on the same antiquated, insecure Webkit browser engine. The fact that Webkit is incomplete and outdated is a feature, not a bug, because it lets Apple block web apps – apps delivered via browsers, rather than app stores:

https://pluralistic.net/2022/12/13/kitbashed/#app-store-tax

Last month, the EU took aim at Apple's veto over its users' and software vendors' ability to transact with one another. The newly in-effect Digital Markets Act requires Apple to open up both third-party payment processing and third-party app stores. Apple's response to this is the very definition of malicious compliance, a snake's nest of junk-fees, onerous terms of service, and petty punitive measures that all add up to a great, big "Go fuck yourself":

https://pluralistic.net/2024/02/06/spoil-the-bunch/#dma

But Apple's bullying, privacy invasion, price-gouging and environmental crimes are global, and the EU isn't the only government seeking to end them. They're in the firing line in Japan:

https://asia.nikkei.com/Business/Technology/Japan-to-crack-down-on-Apple-and-Google-app-store-monopolies

And in the UK:

https://www.gov.uk/government/news/cma-wins-appeal-in-apple-case

And now, famously, the US Department of Justice is coming for Apple, with a bold antitrust complaint that strikes at the heart of Apple exceptionalism, the idea that monopoly is safer for users than technological self-determination:

https://www.justice.gov/opa/media/1344546/dl?inline

There's passages in the complaint that read like I wrote them:

Apple wraps itself in a cloak of privacy, security, and consumer preferences to justify its anticompetitive conduct. Indeed, it spends billions on marketing and branding to promote the self-serving premise that only Apple can safeguard consumers’ privacy and security interests. Apple selectively compromises privacy and security interests when doing so is in Apple’s own financial interest—such as degrading the security of text messages, offering governments and certain companies the chance to access more private and secure versions of app stores, or accepting billions of dollars each year for choosing Google as its default search engine when more private options are available. In the end, Apple deploys privacy and security justifications as an elastic shield that can stretch or contract to serve Apple’s financial and business interests.

After all, Apple punishes its customers for communicating with Android users by forcing them to do so without any encryption. When Beeper Mini rolled out an Imessage-compatible Android app that fixed this, giving Iphone owners the privacy Apple says they deserve but denies to them, Apple destroyed Beeper Mini:

https://blog.beeper.com/p/beeper-moving-forward

Tim Cook is on record about this: if you want to securely communicate with an Android user, you must "buy them an Iphone":

https://www.theverge.com/2022/9/7/23342243/tim-cook-apple-rcs-imessage-android-iphone-compatibility

If your friend, family member or customer declines to change mobile operating systems, Tim Cook insists that you must communicate without any privacy or security.

Even where Apple tries for security, it sometimes fails ("security is a process, not a product" -B. Schneier). To be secure in a benevolent dictatorship, it must also be an infallible dictatorship. Apple's far from infallible: Eight generations of Iphones have unpatchable hardware defects:

https://checkm8.info/

And Apple's latest custom chips have secret-leaking, unpatchable vulnerabilities:

https://arstechnica.com/security/2024/03/hackers-can-extract-secret-encryption-keys-from-apples-mac-chips/

Apple's far from infallible – but they're also far from benevolent. Despite Apple's claims, its hardware, operating system and apps are riddled with deliberate privacy defects, introduce to protect Apple's shareholders at the expense of its customers:

https://proton.me/blog/iphone-privacy

Now, antitrust suits are notoriously hard to make, especially after 40 years of bad-precedent-setting, monopoly-friendly antitrust malpractice. Much of the time, these suits fail because they can't prove that tech bosses intentionally built their monopolies. However, tech is a written culture, one that leaves abundant, indelible records of corporate deliberations. What's more, tech bosses are notoriously prone to bragging about their nefarious intentions, committing them to writing:

https://pluralistic.net/2023/09/03/big-tech-cant-stop-telling-on-itself/

Apple is no exception – there's an abundance of written records that establish that Apple deliberately, illegally set out to create and maintain a monopoly:

https://www.wired.com/story/4-internal-apple-emails-helped-doj-build-antitrust-case/

Apple claims that its monopoly is beneficent, used to protect its users, making its products more "elegant" and safe. But when Apple's interests conflict with its customers' safety and privacy – and pocketbooks – Apple always puts itself first, just like every other corporation. In other words: Apple is unexceptional.

The Cult of Mac denies this. They say that no one wants to use a third-party app store, no one wants third-party payments, no one wants third-party repair. This is obviously wrong and trivially disproved: if no Apple customer wanted these things, Apple wouldn't have to go to enormous lengths to prevent them. The only phones that an independent Iphone repair shop fixes are Iphones: which means Iphone owners want independent repair.

The rejoinder from the Cult of Mac is that those Iphone owners shouldn't own Iphones: if they wanted to exercise property rights over their phones, they shouldn't have bought a phone from Apple. This is the "No True Scotsman" fallacy for distraction-rectangles, and moreover, it's impossible to square with Tim Cook's insistence that if you want private communications, you must buy an Iphone.

Apple is unexceptional. It's just another Big Tech monopolist. Rounded corners don't preserve virtue any better than square ones. Any company that is freed from constraints – of competition, regulation and interoperability – will always enshittify. Apple – being unexceptional – is no exception.

Name your price for 18 of my DRM-free ebooks and support the Electronic Frontier Foundation with the Humble Cory Doctorow Bundle.

If you'd like an essay-formatted version of this post to read or share, here's a link to it on pluralistic.net, my surveillance-free, ad-free, tracker-free blog:

https://pluralistic.net/2024/03/22/reality-distortion-field/#three-trillion-here-three-trillion-there-pretty-soon-youre-talking-real-money

238 notes · View notes

olderthannetfic · 1 month ago

Note

I know you love scivener, but do you know anything about ellipsus? It's meant to be an aternative to google docs for collaborative writing.

I heard about them when they dropped nanowrimo as a sponsor over their inclusion of AI bullshit, which seemed promising. And digging around on their homepage I saw mentions of beta reading and ao3, and apparently they're trying to promote themselves on Tumblr now.

So it really sounds like we're the target audience, which could be great, but I don't know enough to be able to tell if there's an obvious catch somewhere?

This is the first I've heard of them. A quick scroll through their website seems promising.

As usual, the basic questions are:

How much does this product cost to develop?

Do they have a business plan that makes sense with that cost?

This kind of software can, theoretically, be made by a few friends dicking around, not a huge programmer team all of whom have it as their primary job, so it isn't the pile of massive red flags that all attempts at social media are.

From the site:

"Today we are a small, close-knit team of seven, located across the post-capitalist landscapes of Berlin, Bologna, Buenos Aires, and Szczecin. (So much for our alliteration-based hiring strategy.) True to our mission, we're a progressive, remote-friendly company that prioritizes creativity, community, and creative exchange."

Jobs are listed as: Co-founder and CEO, Co-founder and community, Product and marketing, Design, and Engineering x3.

That seems like a reasonable breakdown and a size of team that could possibly be paid for with some non-insane business model.

The types of red flags we're looking for are

"We want to be the next instagram!"

Many idea people with nebulous skills, few programmers

Thinking you can run tumblr with three programmers

Thinking you can pay for 100 programmers with a cheapass subscription model

Programmers are random, cheap contract workers the founders don't know

Venture capital from sources that will want a big payout rather than support from people who share the goals/values of the team

Extremely overcrowded field with tons of products that do exactly this already

Unclear nature of product or a product that doesn't seem to actually have a market

etc.

What they say about money is in the FAQ:

Will Ellipsus have a paid plan? In order to grow the team and fund ongoing feature development, we will need to charge for a version of Ellipsus at some point. A paid version would be targeting users with specific needs related to advanced security, data syncing, and collaboration. But there will always be a free version of Ellipsus, and we want to be as generous as possible in what's included on that free plan (e.g., unlimited docs and drafts, for starters). It takes time to build a great freemium experience (not to mention a premium product people will happily pay for), which is why we won't roll that out in 2024. While the features that will be included in our paid plan aren't final-final, we can share that everything in the product today will be included in our free plan.

This sounds reasonable. It just remains to be seen whether they keep at it or go belly up (taking your data with them). I guess you'd have to know more about the specific people building this to decide whether they'll be reliable.

The biggest potential issues I see are it being difficult to get people to ditch google docs despite its issues, this taking off big time and the owners deciding to sell it for $$$$$$ to someone who will then ruin it, or the team just not being competent.

But since I don't know any of them, I have no idea how good they are at business.

69 notes · View notes

agapi-kalyptei · 4 months ago

Text

crowdstrike: hot take 1

It's too early in the news cycle to say anything truly smart, but to sum things up, what I know so far:

there was no "hack" or cyberattack or data breach*

a private IT security company called CrowdStrike released a faulty update which practically disabled all its desktop (?) Windows workstations (laptops too, but maybe not servers? not sure)

the cause has been found and a fix is on the way

as it stands now, the fix will have to be manually applied (in person) to each affected workstation (this could mean in practice maybe 5, maybe 30 minutes of work for each affected computer - the number is also unknown, but it very well could be tens (or hundreds) of thousands of computers across thousands of large, multinational enterprises.

(The fix can be applied manually if you have a-bit-more-than-basic knowledge of computers)

Things that are currently safe to assume:

this wasn't a fault of any single individual, but of a process (workflow on the side of CrowdStrike) that didn't detect the fault ahead of time

[most likely] it's not that someone was incompetent or stupid - but we don't have the root cause analysis available yet

deploying bugfixes on Fridays is a bad idea

*The obligatory warning part:

Just because this wasn't a cyberattack, doesn't mean there won't be related security breaches of all kinds in all industries. The chaos, panic, uncertainty, and very soon also exhaustion of people dealing with the fallout of the issue will create a perfect storm for actually malicious actors that will try to exploit any possible vulnerability in companies' vulnerable state.

The analysis / speculation part:

globalization bad lol

OK, more seriously: I have not even heard about CrowdStrike until today, and I'm not a security engineer. I'm a developer with mild to moderate (outsider) understanding of vulnerabilities.

OK some background / basics first

It's very common for companies of any size to have more to protect their digital assets than just an antivirus and a firewall. Large companies (Delta Airlines) can afford to pay other large companies to provide security solutions for them (CrowdStrike). These days, to avoid bad software of any kind - malware - you need a complex suite of software that protects you from all sides:

desktop/laptop: antivirus, firewall, secure DNS, avoiding insecure WiFi, browser exploits, system patches, email scanner, phishing on web, phishing via email, physical access, USB thumb drive, motherboard/BIOS/UEFI vulnerabilities or built-in exploits made by the manufacturers of the Chinese government,

person/phone: phishing via SMS, phishing via calls, iOS/Android OS vulnerabilities, mobile app vulnerabilities, mobile apps that masquerade as useful while harvesting your data, vulnerabilities in things like WhatsApp where a glitched JPG pictures sent to you can expose your data, ...

servers: mostly same as above except they servers have to often deal with millions of requests per day, most of them valid, and at least some of the servers need to be connected to the internet 24/7

CDN and cloud services: fundamentally, an average big company today relies on dozens or hundreds of other big internet companies (AWS / Azure / GCP / Apple / Google) which in turn rely on hundreds of other companies to outsource a lot of tasks (like harvesting your data and sending you marketing emails)

infrastructure - routers... modems... your Alexa is spying on you... i'm tired... etc.

Anyway if you drifted to sleep in the previous paragraph I don't blame you. I'm genuinely just scratching the surface. Cybersecurity is insanely important today, and it's insanely complex too.

The reason why the incident blue-screened the machines is that to avoid malware, a lot of the anti-malware has to run in a more "privileged" mode, meaning they exist very close to the "heart" of Windows (or any other OS - the heart is called kernel). However, on this level, a bug can crash the system a lot more easily. And it did.

OK OK the actual hot lukewarm take finally

I didn't expect to get hit by y2k bug in the middle of 2024, but here we are.

As bad as it was, this only affected a small portion of all computers - in the ballpark of ~0.001% or even 0.0001% - but already caused disruptions to flights and hospitals in a big chunk of the world.

maybe-FAQ:

"Oh but this would be avoided if they weren't using the Crowdwhatever software" - true. However, this kind of mistake is not exclusive to them.

"Haha windows sucks, Linux 4eva" - I mean. Yeah? But no. Conceptually there is nothing that would prevent this from happening on Linux, if only there was anyone actually using it (on desktop).

"But really, Windows should have a better protection" - yes? no? This is a very difficult, technical question, because for kernel drivers the whole point is that 1. you trust them, and 2. they need the super-powerful-unrestrained access to work as intended, and 3. you _need_ them to be blazing fast, so babysitting them from the Windows perspective is counterproductive. It's a technical issue with no easy answers on this level.

"But there was some issue with Microsoft stuff too." - yes, but it's unknown if they are related, and at this point I have not seen any solid info about it.

The point is, in a deeply interconnected world, it's sort of a miracle that this isn't happening more often, and on a wider scale. Both bugfixes and new bugs are deployed every minute to some software somewhere in the world, because we're all in a rush to make money and pay rent and meet deadlines.

Increased monoculture in IT is bad for everyone. Whichever OS, whichever brand, whichever security solution provider - the more popular they are, the better visible their mistakes will be.

As much as it would be fun to make jokes like "CrowdStroke", I'm not even particularly mad at the company (at this point - that might change when I hear about their QA process). And no, I'm not even mad at Windows, as explained in the pseudo-FAQ.

The ultimate hot take? If at all possible, don't rely on anything related to computers. Technical problems are caused by technical solutions.

#crowdstrike #cybersecurity #anyway i'm microdosing today so it's probably too boring to read #but hopefully it at least mostly made sense #to be honest I wanted to have more of a hot take #but the truth is mundane

73 notes · View notes