19 May 2018

Google Is Making HTTPS the Chrome Default


With well over half of all websites now encrypted, it’s time to think of HTTPS as the default option rather than the exception. That is, at least, according to Google, which is changing the way Chrome handles secure vs. non-secure web pages. And about time too.

Over the last year there has been a push to switch all websites to use HTTPS (Hyper Text Transfer Protocol Secure). Google has been especially keen for sites to make the switch, and with more sites complying, it’s time to change the way we view the web.

Switching From HTTP to HTTPS

At the moment, sites that aren’t secure don’t have any special labels attached. As far as Chrome is concerned they’re considered the standard. On the flipside, sites which have HTTPS switched on get a green “Secure” label with a lock symbol attached.

However, this is all set to change over the next few months. As outlined on the Chromium Blog, with the release of Chrome 69 in September, the “Secure” label will disappear. And then at some point in the future, Google will remove the lock symbol as well.

In addition to this, with the release of Chrome 70 in October, standard HTTP pages will be labelled with a “Not Secure” warning with a red triangle attached. In other words, Google is turning everything on its head and labelling HTTP rather than HTTPS.

Google’s reasoning for making this change is that “users should expect that the web is safe by default”. So, rather than having HTTP as the standard to be expected and HTTPS as a rare beast to be celebrated, HTTPS becomes the standard and HTTP is vilified.

Google Ups the HTTPS Ante

This actually makes a lot of sense. Thanks to companies such as Google, more of the web is now encrypted, which means that’s the default. Unfortunately for sites which still haven’t made the switch from HTTP to HTTPS this just piles the pressure on.

It’s shocking it has taken this long for most of the web to switch to HTTPS. We were explaining what HTTPS means back in 2011, and it has taken seven years to get to this point. Still that was before we understood quite how much we’re all being surveilled.

Image Credit: Stephen Shankland/Flickr


Read Full Article

zGlue launches a configurable system-on-a-chip to help developers implement customized chipsets


The complexity and cost of packing an array of sensors and power inside a small amount of space has opened the door to a wider and wider variety of use cases for internet-connected devices beyond just smart thermostats or cameras — and also exposed a hole for getting those ideas into an actual piece of hardware.

So there are some startups that are looking to address this hole by providing developers a path to creating the customized chipsets they need to power those devices. zGlue is one of those, led by former Samsung engineering director Ming Zhang and former Misfit founder Sonny Vu.  The company’s chiplets are built around the kind of system-on-a-chip approach that you’ll see in most modern devices, where everything is in a single unit that reduces some of the complexity of moving processes around a larger piece of hardware — shrinking the space constraints and allowing all these actions to happen on a device, such as a smartphone. As more and more IoT devices come online, they may all have varying form factor demands, which means companies — like zGlue and others — are emerging to address those needs.

“From the developer point of view, think of us as a system that is not different from any thing else on the market, user-interface-wise,” Zhang said. “It is just smaller in size, faster in time to market, and flexible — customizable by individuals rather than just by Apple and Qualcomms. [We’re] democratizing chip innovation so it is no longer [a] privilege of Fortune 500 companies.”

The company’s first product is called the zOrigin, a “chip-stacking” product that aims to allow developers to embed the sensors and processes necessary for their devices. Stemming from an ARM 32-bit core processor (meaning it can handle more complex and precise calculations), the first launch costs $149 and can include pieces like a Bluetooth radio, accelerometers, and other necessary features.

zGlue’s chipsets have embedded memory, which is an increasingly common approach to try to reduce the number of trips going from the actual processing power to where the information is stored. Those trips cost power, speed, and can restrict the scope of use cases for internet-connected devices. Zhang said the chiplets are packaged closer together — literally reducing the space that information has to cross — in order to speed it up, though that of course carries consequences when it comes to heat constraints these processors can have.

“That’s the price to pay for the continuation of Moore’s law, as it has in the past 40 years,” Zhang said. “Heat dissipation in our system is not going to be any worse than a conventional system. In fact, with the silicon substrate in place, it’s easier to conduct heat compared to a conventional package or board substrate.”

As a kind of templated approach, zGlue is geared toward helping developers produce a custom setup that the can implement into devices that may require a wide set of sensors. The company says it looks to help developers go from a design to a prototype in a few weeks, and then reduce the turnaround time from a prototype to production in “weeks or months,” depending on the complexity and volume.

While this is one example of trying to get a prototype chip out into the wild, there are a few others as well. Si-Five, for example, offers developers a way to prototype custom silicon for their specific niches based on the hardware and IP the startup has. The goal there is to offer both a prototype flow and the ability to graduate into a production flow, allowing developers and companies to get products out the door that require custom silicon. Si-Five hardware is based on the RISC-V architecture, an open-source instruction set for silicon, and the company most recently raised $50.4 million.

Zhang, too, said RISC-V offers some potential, especially in its own scope. “RISC-V is a great tool to build small, fast, and low power IoT applications,” he said. “The nature of open source makes it more available to more people. We welcome and embrace RISC-V to join the family of ‘MCU’ chiplets supported by our technology.”

When it comes to inference — the machine learning processes that happen on the hardware to execute some kind of action, like image recognition, based on trained models — Zhang said the chipsets would support it, but he would not comment further. There is a blossoming ecosystem around custom silicon that looks to speed up inference on devices like cars or IoT devices, which is geared toward reducing the space and power constraints of those chips while also running those processes much more quickly. Companies like Mythic have raised significant venture funding in order to build that kind of hardware.


Read Full Article

EU parliament pushes for Zuckerberg hearing to be live streamed


There’s confusion about whether a meeting between Facebook founder Mark Zuckerberg and the European Union’s parliament — which is due to take place next Tuesday — will go ahead as planned or not.

The meeting was confirmed by the EU parliament’s president this week, and is the latest stop on Zuckerberg’s contrition tour, following the Cambridge Analytics data misuse story that blew up into a major public scandal in mid March. 

However the discussion with MEPs that Facebook agreed to was due to take place behind closed doors. A private format that’s not only ripe with irony but was also unpalatable to a large number of MEPs. It even drew criticism from some in the EU’s unelected executive body, the European Commission, which further angered parliamentarians.

Now, as the FT reports, MEPs appear to have forced the parliament’s president, Antonio Tajani, to agree to livestreaming the event.

Guy Verhofstadt — the leader of the Alliance of Liberals and Democrats group of MEPs, who had said he would boycott the meeting if it took place in private — has also tweeted that a majority of the parliament’s groups have pushed for the event to be streamed online.

And a Green Group MEP, Sven Giegold, who posted an online petition calling for the meeting not to be held in secret — has also tweeted that there is now a majority among the groups wanting to change the format. At the time of writing Giegold’s petition has garnered more than 25,000 signatures.

MEP Claude Moraes, chair of the EU parliament’s Civil Liberties, Justice and Home Affairs (LIBE) committee — and one of the handful of parliamentarians set to question Zuckerberg (assuming the meeting goes ahead as planned) — told TechCrunch this morning that there were efforts afoot among political group leaders to try to open up the format. Though any changes would clearly depend on Facebook agreeing to them.

After speaking to Moraes, we asked Facebook to confirm whether it’s open to Zuckerberg’s meeting being streamed online — say, via a Facebook Live. Seven hours laters we’re still waiting for a response, including to a follow up email asking if it will accept the majority decision among MEPs for the hearing to be livestreamed.

The Libe committee had been pushing for a fully open hearing with the Facebook founder — a format which would also have meant it being open to members of the public. But that was before a small majority of the parliament’s political groups accepted the council of presidents’ (COP) decision on a closed meeting.

Although now that decision looks to have been rowed back, with a majority of the groups pushing the president to agree to the event being streamed — putting the ball back in Facebook’s court to accept the new format.

Of course democracy can be a messy process at times, something Zuckerberg surely has a pretty sharp appreciation of these days. And if the Facebook founder pulls out of meeting simply because a majority of MEPs have voted to do the equivalent of ‘Facebook Live’ the hearing, well, it’s hard to see a way for the company to salvage any face at all.

Zuckerberg has agreed to be interviewed on stage at the VivaTech conference in Paris next Thursday, and is scheduled to have lunch with French president Emmanuel Macron the same week. So pivoting to a last minute snub of the EU parliament would be a pretty high stakes game for the company to play. (Though it’s continued to deny a UK parliamentary committee any facetime with Zuckerberg for months now.)

The EU Facebook agenda

The substance of the meeting between Zuckerberg and the EU parliament — should it go ahead — will include discussion about Facebook’s impact on election processes. That was the only substance detail flagged by Tajani in the statement on Wednesday when he confirmed Zuckerberg had accepted the invitation to talk to representatives of the EU’s 500 million citizens.

Moraes says he also intends to ask Zuckerberg wider questions — relating to how its business model impacts people’s privacy. And his hope is this discussion could help unblock negotiations around an update to the EU’s rules around online tracking technologies and the privacy of digital communications.

“One of the key things is that [Zuckerberg] gets a particular flavor of the genuine concern — not just about what Facebook is doing, but potentially other tech companies — on the interference in elections. Because I think that is a genuine, big, sort of tech vs real life and politics concern,” he says, discussing the questions he wants to ask.

“And the fact is he’s not going to go before the House of Commons. He’s not going to go before the Bundestag. And he needs to answer this question about Cambridge Analytica — in a little bit more depth, if possible, than we even saw in Congress. Because he needs to get straight from us the deepest concerns about that.

“And also this issue of processing for algorithmic targeting, and for political manipulation — some in depth questions on this.

“And we need to go more in depth and more carefully about what safeguards there are — and what he’s prepared to do beyond those safeguards.

“We’re aware of how poor US data protection law is. We know that GDPR is coming in but it doesn’t impact on the Facebook business model that much. It does a little bit but not sufficiently — I mean ePrivacy probably far more — so we need to get to a point where we understand what Facebook is willing to change about the way it’s been behaving up til now.

“And we have a real locus there — which is we have more Facebook users, and we have the clout as well because we have potential legislation, and we have regulation beyond that too. So I think for those reasons he needs to answer.”

“The other things that go beyond the obvious Cambridge Analytica questions and the impact on elections, are the consequences of the business model, data-driven advertising, and how that’s going to work, and there we need to go much more in depth,” he continues.

“Facebook on the one hand, it’s complying with GDPR [the EU’s incoming General Data Protection Regulation] which is fine — but we need to think about what the further protections are. So for example, how justified we are with the ePrivacy Regulation, for example, and its elements, and I think that’s quite important.

“I think he needs to talk to us about that. Because that legislation at the moment it’s seen as controversial, it’s blocked at the moment, but clearly would have more relevance to the problems that are currently being created.”

Negotiations between the EU parliament and the European Council to update the ePrivacy Directive — which governs the use of personal telecoms data and also regulates tracking cookies — and replace it with a regulation that harmonizes the rules with the incoming GDPR and expands the remit to include Internet companies and cover both content and metadata of digital comms are effectively stalled for now, as EU Member States are still trying to reach agreement. The directive was last updated in 2009.

“When the Cambridge Analytica case happened, I was slightly concerned about people thinking GDPR is the panacea to this — it’s not,” argues Moraes. “It only affects Facebook’s business model a little bit. ePrivacy goes far more in depth — into data-driven advertising, personal comms and privacy.

“That tool was there because people were aware that this kind of thing can happen. But because of that the Privacy directive will be seen as controversial but I think people now need to look at it carefully and say look at the problems created in the Facebook situation — and not just Facebook — and then analyze whether ePrivacy has got merits. I think that’s quite an important discussion to happen.”

While Moraes believes Facebook-Cambridge Analytica could help unblock the log jam around ePrivacy, as the scandal makes some of the risks clear and underlines what’s at stake for politicians and democracies, he concedes there are still challenging barriers to getting the right legislation in place — given the fine-grained layers of complexity involved with imposing checks and balances on what are also poorly understood technologies outside their specific industry niches.

“This Facebook situation has happened when ePrivacy is more or less blocked because its proportionality is an issue. But the essence of it — which is all the problems that happened with the Facebook case, the Cambridge Analytica case, and data-driven advertising business model — that needs checks and balances… So we need to now just review the ePrivacy situation and I think it’s better that everyone opens this discussion up a bit.

“ePrivacy, future legislation on artificial intelligence, all of which is in our committee, it will challenge people because sometimes they just won’t want to look at it. And it speaks to parliamentarians without technical knowledge which is another issue in Western countries… But these are all wider issues about the understanding of these files which are going to come up.  

“This is the discussion we need to have now. We need to get that discussion right. And I think Facebook and other big companies are aware that we are legislating in these areas — and we’re legislating for more than one countries and we have the economies of scale — we have the user base, which is bigger than the US… and we have the innovoation base, and I think those companies are aware of that.”

Moraes also points out that US lawmakers raised the difference between the EU and US data protection regimes with Zuckerberg last month — arguing there’s a growing awareness that US law in this area “desperately needs to be modernized”.

So he sees an opportunity for EU regulators to press on their counterparts over the pond.

“We have international agreements that just aren’t going to work in the future and they’re the basis of a lot of economic activity, so it is becoming critical… So the Facebook debate should, if it’s pushed in the correct direction, give us a better handle on ePrivacy, on modernizing data protection standards in the US in particular. And modernizing safeguards for consumers,” he argues.

“Our parliaments across Europe are still filled with people who don’t have tech backgrounds and knowledge but we need to ensure that we get out of this mindset and start understanding exactly what the implications here are of these cases and what the opportunities are.”

In the short term, discussions are also continuing for a full meeting between the Libe committee and Facebook.

Though that’s unlikely to be Zuckerberg himself. Moraes says the committee is “aiming for Sheryl Sandberg”, though he says other names have been suggested. No firm date has been conformed yet either — he’ll only say he “hopes it will take place as soon as possible”.

Threats are not on the agenda though. Moraes is unimpressed with the strategy the DCMS committee has pursued in trying (and so far failing) to get Zuckerberg to testify in front of the UK parliament, arguing threats of a summons were counterproductive. Libe is clearly playing a longer game.

“Threatening him with a summons in UK law really was not the best approach. Because it would have been extremely important to have him in London. But I just don’t see why he would do that. And I’m sure there’s an element of him understanding that the European Union and parliament in particular is a better forum,” he suggests.

“We have more Facebook users than the US, we have the regulatory framework that is significant to Facebook — the UK is simply implementing GDPR and following Brexit it will have an adequacy agreement with the EU so I think there’s an understanding in Facebook where the regulation, the legislation and the audience is.”

“I think the quaint ways of the British House of Commons need to be thought through,” he adds. “Because I really don’t think that would have engendered much enthusiasm in [Zuckerberg] to come and really interact with the House of Commons which would have been a very positive thing. Particularly on the specifics of Cambridge Analytics, given that that company is in the UK. So that locus was quite important, but the approach… was not positive at all.”


Read Full Article

5 Famous Websites That Died (And Their Best Alternatives Today)


The rapidly changing nature of the internet means that services can fall out of favor as quickly as they explode in interest. Who knows if we’ll refer to Facebook and WhatsApp in the same sentence as MySpace and AIM in a few years?

Today we’re going to take a step back and look at once-popular web services that went extinct. We’ll see exactly why they went defunct, and provide the best alternatives to them.

Note that in this list, we’re only including old websites that are no longer available. We’ve left out services like Digg that are a shadow of their former selves but still in service.

1. ChaCha

Founded: 2006 | Defunct: 2016

Before internet access was ubiquitous on mobile phones, people had to wait to get answers for their questions when they weren’t home. If you were out with friends and wanted to know the weather across the world or some obscure piece of sports trivia, you couldn’t easily Google it on the go.

In addition, search engines of the time weren’t always good at answering questions like they are now. They could match keywords, but questions tripped them up.

That’s where ChaCha came in. It was a human-powered search engine that you interacted with via texting. Sending an SMS to 242-242 with your question would lead to a team member replying with an answer. Since it was free, and most people had access to texting, it was a great way to get quick information when you weren’t at a computer.

ChaCha paid its part-time workers a few cents per answer. And while the company had strong beginnings with an investment from Jeff Bezos, the widespread adoption of smartphones meant that its services became increasingly unnecessary.

In late 2016, ChaCha shut down completely due to a lack of funding. The company’s owner moved to Hawaii but couldn’t even pay the employees what they were due. It’s a sad case of a model that was brilliant at the time but became unnecessary as Google became more powerful and ubiquitous.

ChaCha Alternatives

Google’s free mobile apps can answer pretty much anything ChaCha could. Its recent updates have made refinements to Featured Snippets, which pull relevant info from a page so you get an answer to your question without even leaving the results page.

If you’d prefer a human answer to your questions, the Stack Exchange network of sites is a great place for questions and answers. Quora is a similar service, and you can always ask questions on Reddit and other forums too.

2. Grooveshark

Founded: 2006 | Defunct: 2015

Grooveshark My Music

People have wanted to find free music online since the dawn of the internet. While downloading from old websites like LimeWire was a popular option, that came with the risk of a virus infection. Grooveshark provided music fans with a way to listen to whatever they liked in a browser for free.

Since you streamed music instead of downloading it, it was a safer alternative to other piracy services. Remember that at the time, Spotify wasn’t widely available yet and Pandora only allowed you to listen to the radio. Grooveshark letting you search for any song and create your own playlists was quite convenient.

This site allowed anyone to upload music so others could find it. While it wasn’t always a super polished experience (miscategorized and partial songs popped up often) it was good enough for a lot of people.

Though it didn’t allow users to download tracks, Grooveshark was still an illegal service. It had several bouts with the law that didn’t produce lasting results, but that changed in 2015. The site settled with the big three records companies and immediately shut down.

You can read a more detailed history of the service in our Grooveshark retrospective.

Grooveshark Alternatives

As you’re probably aware, you have lots of options for replacing Grooveshark. Spotify is probably the closest alternative, as it lets you stream millions of songs on your desktop for free. However, you’ll need to pay for a Premium subscription if you want to remove the ads.

If you don’t like Spotify, you can try one of the many other music streaming services. Most of them have a free plan that should more than fill the void Grooveshark left behind.

3. Megaupload

Founded: 2005 | Defunct: 2012

Megaupload was an extremely popular service for uploading and sharing content both legal and illegal. It seemed that nearly everyone who wanted to make a file available for others in YouTube descriptions, forum posts, or similar put it on Megaupload. In fact, when the service closed down, it held 25 petabytes of data!

One of the biggest legal problems with Megaupload was that when a user uploaded a file that matched one already on the service, the uploader asked to create another link to the file instead of adding a duplicate. Under DMCA, Megaupload only had to remove a link when the copyright holder requested it. Thus, a DMCA takedown could potentially remove just one link from the many pointing to an illegal file.

In early 2012, the US Department of Justice took control of Megaupload and shut it down. The government claimed that several behaviors on the site proved criminal intent. These included the fact that only the most popular files were kept available for download, the ad-focused revenue scheme was dependent on maximizing downloads, and more.

Megaupload was semi-reborn as Mega a year later. This version encrypts files before uploading, meaning the company can’t access them. It also doesn’t use the matching system to create multiple links to one file, so Mega should be more government-proof.

On a similar note, Rapidshare was a service much like Megaupload. Once the latter was taken down, Rapidshare changed its ways to avoid a similar fate. This killed the service’s popularity and crippled the company, resulting in its closing down in 2015.

Megaupload Alternatives

Mega is a decent alternative to Megaupload. If you don’t want to use it, any cloud storage provider like Dropbox or Google Drive works too.

Barring that, check out tons of easy ways to share files without cloud storage.

4. Orkut

Founded: 2004 | Defunct: 2014

Orkut was a wildly popular social media website before the dominance of Facebook. It was most popular in India and Brazil and was created by Orkut Büyükkökten as an independent project while he was working for Google.

At first, Orkut made networking more open by allowing anyone to visit your profile unless they were on your block list. It had standard social features like creating polls, sharing videos, and liking posts.

Nothing particularly interesting happened to cause Orkut’s demise. While it enjoyed popularity in a few regions, much of the world didn’t use it. This meant that Google’s other products like YouTube and Blogger outpaced Orkut.

Combined with the dominance of Facebook and Google+, which Google was still pushing at the time, the company cut the dead weight in late 2014.

Orkut Alternatives

You’re probably already on an alternative to Orkut. The best social network is the one that most of your friends use. Facebook is an obvious choice, while Twitter, Instagram, and Snapchat are also popular.

5. Heat.net

Founded: 1997 | Defunct: 2000

One of the lesser-known old websites, Heat was ahead of its time. Heat.net was an online gaming platform from Sega. It let you enjoy first and second-party games, along with other big games like Quake 2, online with other players. The subscription cost $10 per month and included chat lobbies.

But the service quickly ran into problems. It rewarded players with currency named “degrees” simply for staying connected to the service. It didn’t take long for players to abuse this, as they’d leave their computers connected but idle and earn degrees for doing nothing. You could spend these degrees on games, magazines, and computer hardware.

Sega reduced the value of degrees to combat this problem, but it wasn’t enough. The company closed down Heat.net in 2000 and replaced it with SegaNet, a new online service for the Dreamcast. However, the Dreamcast failed due to the hype from the upcoming PlayStation 2, resulting in Sega discontinuing the console in early 2001.

This, in turn, led to Sega exiting the video game console business entirely. It’s easy to trace modern online services like Xbox Live back to Heat.net, so it definitely had an impact.

Heat.net Alternatives

Steam is the closest modern service to Heat.net on PC, as it lets you buy and play games online with others. If you play on a console, you can subscribe to PlayStation Plus or Xbox Live to enjoy many of the same features.

Popular Old Websites That Died: Gone but Not Forgotten

You’ll note that we didn’t include any Google services here. But in fact, Google has killed off so many services that it’s hard to count them all.

These five services were all popular for some time but faded as technology advanced. But whether they were superseded by superior alternatives, forced to shut down due to illegal content, or just couldn’t keep up, none could stay afloat.

It’s fun to take a nostalgic look back to see what was popular years ago, and what we can learn. Thankfully, all these old websites have modern equivalents.

For more, check out these famous programs that no longer exist.


Read Full Article