Original Korean article https://www.jinse.com/bitcoin/284405.html published 4th December 2018. The article has been translated via Google translate. Prof. Songjie's credentials are listed at the bottom of this post.submitted by Yayowam to CryptoCurrency [link] [comments]
How To Use The Blockchain To Protect The Trillion-Dollar Intelligent Import And Export Logistics BusinessOn November 22nd, the 2018 Global Smart Container Industry Alliance Annual Meeting and Smart Container Standards Publicity Training Conference was held in Shenzhen. Waltonchain CTO Wei Songjie delivered a speech at the scene. Professor Wei expounded the origin and development of blockchain and proposed the solution of blockchain technology applied in intelligent import and export logistics for the first time. He said that compared with the traditional way of shipping, the application blockchain can improve the time efficiency of more than 50% in the intelligent logistics industry and reduce the management cost by more than 30%.
The following is the full text of the speech:
Good afternoon everyone, I am Wei Songjie. Today, the theme I gave to everyone is "blockchain: data container, pass-through transport line, trust notary". Because today's conference theme is a smart container, I also borrowed a topic called a "data container." In fact, in our information security industry, we call this a data package or a package called data. They are actually quite similar in nature, and data is also goods. For us, data is something of value.
In today's speech, I mainly talk about three parts: blockchain + digital certificate capability, blockchain + port cargo application scenarios, blockchain + intelligent import and export logistics solutions. Some of these contents are exchanged with some experts in the logistics industry. Some of the things may not be too mature and accurate. I am as a layman in this swearing, and I would like to ask you.
The blockchain has been a hot word in recent years. In my opinion, the biggest use of the blockchain is not "speculation", "sell one", "sip", these are their superficial articles. The biggest feature of this technology is its digital passability.
Dr. Zhou’s speech just said that what is the core in the container-based goods circulation industry? He said that documents are the core. For the circulation of goods, we need a list to prove. In the field of our blockchain, we call this core a pass.
Let me talk to you quickly, what is the blockchain?
In fact, this year happens to be the tenth anniversary of the blockchain. As for its origin, at the earliest, it came out as the underlying technology of Bitcoin, and its data structure is a chain structure. So what is it used for? It is used to book bitcoin. For example, who transferred to whom, how to turn, and so on. It is a distributed ledger, a public ledger, distributed meaning that there is no central bank, not a single individual has the final say. It has a wide range of applications, but most of the current applications still revolve around its financial transaction attributes.
In our field of computer science, we have used the term blockchain for less than a decade, but we have used this technology for decades. What do we use it for? In fact, we used to call it a distributed database a long time ago. That is to say, the database that everyone uses now has (several) servers. That distributed data means that instead of having a centralized server to store data, it means that the data is distributed in many different places, so we call it a distributed database.
Of course you have a database, you always have software, but also have a system. So in fact we have studied more accurate nouns. For example, let me study the distributed system for more than ten years. At the same time, we also use the blockchain-related things to achieve the measurement and circulation of this value. This has actually been used since, for example, QQ has Q coins, many games have points or coins, so this is not new. Of course, we study from the perspective of how the entire process, including the value of commodity services, is measured and quantified.
In the end, what is the main feature of the blockchain and what is it used for? Be an endorsement of trust. Therefore, we often hear people say that I can't change the data on the blockchain. You can't lie to me. It can't be fake forged, can't be lost, and so on. In fact, its core is, if you believe it or not, you believe it, if you don’t believe it.
In fact, long ago we were able to do trust-based or data-based trust and verification. But what did we call it at that time? We call cryptography. So I often talk to my students during the exchange, the blockchain thing, now it can not be said to be a gimmick. Again, we rely on it to do research, write papers, and then do projects. In fact, it is more like an application innovation—that is, combining existing technologies in a new way and using them in newer ways. Broad application scenarios.
Which combination of technologies? The core of distributed systems, peer-to-peer networks, and cryptography is these. Therefore, those people say that the blockchain is very important, or very useful, and its elements are summed up in fact. Then what effect does it use to achieve these effects? I think it is the effect of interconnection, interoperability, mutual trust, mutual benefit and mutual integration.
The Internet is easy to understand. In fact, our current information systems, including our devices, are rarely fragmented or run independently. Most of them are networked, including your mobile phone and computer. If you can't access the Internet, the mobile phone is not yet available. It’s a brick, right. No use. Now everyone can't do without the network. In fact, the blockchain is the same. Its underlying core is that it can be networked and does not depend on a specific or specific network. It does not depend on a specific server and does not depend on a specific SP (network service provider). I was able to connect to the Internet. This time we called P2P (peer-to-peer network), this is no stranger. Because a long time ago, I remember that I went to the movies and songs. The eDonkey used in that year was P2P. What it wants to achieve is interconnection, which means that you are not an individual, you are not separated, P2P technology is how to connect with others.
The second is interoperability. The reason for interoperability is because everyone wants to communicate. For example, everyone here is Chinese. If I speak a foreign language here, everyone knows English, and Japanese may understand it. But for example, Burmese and Vietnamese, you may not understand. At this time, what I said is still human, you are all human, but everyone does not understand, why is this? Because it does not have a valid specification. There is no rule that this field can only speak Chinese, or that this field can only say what you and I can understand, and this is the reason for interoperability. The blockchain, which defines a set of interworking rules or norms. Just like the (national container) standard we set here today, why should this standard be? Because if the standards are different, for example, the container you are ten meters high, my two or three meters high, then you said how to pull this truck? How can I store this warehouse? How do I load the goods? Right. This is the standard use.
The third is mutual trust. I just said, what is data? What is useful is the data. What kind of data is useful? Real is useful. Then how is it true? You have to be able to verify, or you have to be able to prove it. Therefore, the blockchain uses cryptography to achieve mutual trust. Think about it, the information system we use now, or the computer and related equipment, what is the most valuable, that is, data. In fact, if I lose a mobile phone now, I don't feel bad at all. Thousands of dollars can buy one back. But what is the pain? It's the address book, chat history, and photos inside, maybe there are sensitive photos. This kind of data is the most valuable.
The fourth is reciprocity. Blockchain It is the circulation or value sharing that can achieve this value. Of course, there is a lot of value in this system. In fact, it is a number. Just like we have mobile payments now, we rarely use money. Credit cards are not very useful, so money is a symbol for us, and the symbol is a number. It's the same, but this number is valuable, or the back of the number is money, and the blockchain can achieve this effect. Of course, if there are benefits, some people will suffer and some will take advantage of it. This is reciprocity. Our best effect is to achieve the Pareto improvement in economics. If I take advantage of it, you will not suffer. This is a win-win situation or a win-win situation. The blockchain can do this.
The fifth is called mutual integration. In other words, since everyone is living together in an ecological environment to live together, coexist, agree, and work together, then everyone must have a way to achieve consensus. For example, today, who should we listen to? Of course, we should listen to the organizer and listen to the host, because I recognize you as the host, right. But if there is a spoiler, he will not recognize it. He has not reached this consensus, and this matter is troublesome. So, inside the blockchain it has a series of algorithms and methods to achieve consensus. For us, the simplest consensus or the easiest to understand is that everyone votes. Who do you think is the moderator, who has the most votes, and who is the moderator, but the simplest (fairness) is often the hardest to achieve. But in fact, these (consensus) are the core elements of the blockchain, and what effect can be achieved with these elements, and what is the use of these effects, this is its definition. Now our country is working on the relevant standards for the blockchain, but before this appearance, whether it is the corporate or academic world, or our Internet enthusiasts or blockchain enthusiasts, they do not have a standard definition. Some people call it a distributed system, someone calls it a chain, and someone calls it a mesh structure. I have a little bit inserted here, although it is called a blockchain, but in fact, in terms of chain structure, the chain is one-dimensional, but it is a form, and the chain really has two-dimensional or even multi-dimensional structure, two Dimension is a mesh structure, multidimensional. We call it a complex mesh system. So the definition of it is really just a statement or two words.
Since I am not coming to invest, this is not a preaching. You can't just say its benefits, let's be honest, let's talk about some interesting things in this technology.
The first one is that many people say that the blockchain is very good and decentralized, but is it decentralized? This is really debatable. Absolute centralization or absolute centralization is definitely not good. After all, I am not the "center", right. If anyone is the "center", who will definitely say it. Therefore, everyone must be hoping to be able to be equal, to be able to disperse, to be able to participate in and to make decisions without their own centralization. But the blockchain, it is not really decentralized, he is not without a center, he just turned a center into a lot.
Who has the final say? Everyone has the final say. How do you say it? A lot of ways. For example, the easiest way to vote, one person, one vote, is now very popular is the calculation power, who counts fast, who has the final say. There is another way, that is, whose shares are large. One person, one vote is the same situation for everyone's shares. Based on POS (consensus mechanism), it is actually to look at the rights and interests, to see who owns the shares, and the big one he said is more than me. In addition to this, there are many other ways. So we say that the blockchain is actually multi-centered, and there is a problem with true decentralization. For example, one problem we often face now is its efficiency problem. Well, take Bitcoin as an example. Everyone often says that I can get money by buying coins. But you have to know that you are actually launching a transaction on the Bitcoin network or system, or I will transfer you a sum of money, you have to wait a long time to receive it - this is not a few minutes, a few seconds, but maybe a few Ten minutes, a few hours, or even a few days. Therefore, decentralization will have efficiency problems.
Many of the so-called public chain or blockchain systems we have seen now have this efficiency problem. In other words, he may have a process, the algorithm is correct, the technical line is right, there will be too many people, especially in China, because the most important thing in China is the user, the most important thing is the user. Scale, efficiency will have problems. So our current research direction, including our application scenarios, is mostly multi-centered. Therefore, we call this multi-centered, not a center, that is not good, it is the original system, not the real center.
The second one is called the virtual and real of trust. In fact, the data is placed on the blockchain, can you really believe it? Put the blockchain, is it true? Of course it is not the case. I put a bunch of garbage into the safe, it is still rubbish, it is not worth it. Therefore, it depends on the entire ecology of the data or the entire life cycle, especially the stage of data perception or acquisition.
We now use the blockchain, including our company, some of our projects. In fact, we use a combination of software and hardware to solve how to ensure that the data you get is first-hand data, no noise, no errors, no interference. There is no such forgery, and then put it on the blockchain immediately, so that I can guarantee that the next life cycle of this data is real and verifiable. So this is why many people think blockchain data is true. However, if you put it true, it is true. If you are on vacation, it is fake. It guarantees that this data has not been altered and can be verified, but does not guarantee its original authenticity.
The third is the truth and falsehood of our consensus. The fact is that the consensus reached by the blockchain algorithm is the correct consensus? The correct consensus is that the American president is Trump. Is he really getting a 50% (vote) +1 vote? No, everyone knows that Hillary’s votes are higher and they get the same amount of votes. It was only because of the rules of their electoral college that Trump was elected. What does this show? Explain that our consensus mechanism can actually determine whether our final consensus is a general consensus, a relative consensus, or a professional consensus, and it depends on the scenario. So, you should first think about using the blockchain, and then design a consensus mechanism. After all, there is no universal technology that is universally applicable.
The last one is called the right and wrong of the data. What does it mean? Here is to say that the data is placed on the blockchain, we can say that it can not be tampered, can not be forged, can not be changed, it will not be lost, but can this really achieve this effect? In this (blockchain) industry, we often hear news that a word is called a fork. In fact, this is to say that the original chain grows in a single item, and it grows more and more in a while. When it grows long, it splits. Why is it forked? Because there is no consensus. Because some people think that it should grow like this, some people think that they should grow into that, and then there are people on both sides to support, so they fork. So this shows that the right and wrong of the data depends on who? Depending on the user, it depends on the consensus results of the user. So these are relative, in fact nothing is absolute. Including our cryptography, are you absolutely safe, definitely not. As long as I can live long enough, then I will try hard, and one day I will be able to try it out, right. The only absolute thing in us (information technology) is that it is the quantum code, which is absolutely safe. But this is a bit of a problem.
So now, in less than a decade, the blockchain has evolved in three different phases.
We have phases 1.0, 2.0, and 3.0, but it doesn't make sense to say that the specific technology is too boring. What we have to say is that 1.0 solves the problem that is too simple, that is, to record the account or to use it as a book; 2.0 can only fulfill the contract, can we say what we say, we write the program people like to write Some conditions are judged and looped. Actually, these conditions can be written in 2.0. What is the use of this condition? We will see it later. The direction that is currently developing is 3.0, 3.0 is to do things, that is to say, you This technology can not land, this is the third point. So, we are now between 2.0 and 3.0, almost the same period from 2.4 to 2.5.
Next, we make an analogy, an analogy between blockchain and data containers.
In fact, our blockchain really has blocks. Our data is really piece by piece. Each piece is called data encapsulation. This is a bit like we put a lot of goods in this container, and then lock the container, this is called a box of goods. For us, we are called a piece of data, and then we will lock this data. The lock on us is not an electronic lock. We call it a digital lock. In fact, it is a string of numbers used for verification to be used for signature. . This is one of our forms. This is not one-dimensional, but linear and two-dimensional. Containers, there are so many boxes, or so many pieces, they are also ordered, organized, we call Organize. Just like your box is to be numbered, then your box is to be neatly tidy, you can check it when you need it, and you can find it when you need it. So this is an analogy, for a bit more fun, a little fun.
The blockchain actually has many institutions now, and many countries are also used in the logistics industry, including import and export. For example, many countries in the United States, South Korea, and the Netherlands are doing it. Headed by IBM, they have a super-books alliance, and they also offer a range of solutions that can be used by everyone. Because their technology wants to be more versatile, there are actually a lot of data inconsistencies here.
So what does it do in the field of (container)? Or, what good is it? It has to solve the problem. One is inefficiency. Dr. Zhou also said that there are too many links, and then the people involved or the roles are too many and inefficient. The other is risky because this thing is not shipped. It is risky to pay, lose or lose money, pay taxes, and clear customs.
Then if we want to use it, for example, I want to use the blockchain to try it in this field, how can we try it? I think I can make three articles around my title, the first one is for data; the second is for value; the third is for trust.
In our blockchain, first, we can do the data bearer and ensure the integrity of the data. Second, we can quantify the data, especially the quantity and value of many such goods. Our measurability; the third is that we can trust, for example, authenticity, you remember so much, remember so many words, and then so many single-sub-services, using blockchain-related techniques to ensure that it can be accepted But it is really unrealistic because people will not accept it. In fact, Dr. Zhou said that the core of this industry, we are called documents. We can e-mail the documents. This technology is very ready-made, just saying how to use it. We are also doing application innovation, so we can use this framework of distributed architecture to achieve this electronic issuance of such notes or documents. But why is it not purely distributed or purely decentralized? Because of efficiency issues. Centralization efficiency is good, so he still has a data center placed there, and then the index of the data, the summary of the data, the keywords of the data, the hash of the data on the chain, so that people can be very fast, very Efficiently find the relevant data above, and then go to the original data center to get the original data.
At the same time, we can use the blockchain to implement this digitized sequence of processes. So you will look at the picture just now. The original picture has a lot of small arrows. It is actually talking about a sequence, just the picture. It's actually talking about the order, you can take the next step to do the next step, we call it timing. In fact, the blockchain can record and string these steps, and then tell you, now the entire business or the whole of our logistics is going to where it is, where is it stuck, and then how to go in the next step? Conditional judgment. How do the blockchain judge the conditions? Blockchain 2.0, support contract, right. So what is the contract? It is the program. I can write the program, what to do next, the blockchain can do this. In other words, in fact, many times we are concerned about timing, order. Where is the difference here? For example, this is what happened in a few months, and when the matter happened, this is absolute time. But many times, we are concerned about the relative time, who is who develops before and who is after whom, this logic or this real transaction makes sense. Just like you have to work first and then get paid, this is generally normal, but it is abnormal after working first. So this order is very important.
In addition, we can implement the submission and inspection of documents based on blockchain. Because you have data to always give people a home, you can find it when you need it, the blockchain can be done very quickly. In our words, the quick meaning is that its time is not exponential growth, not linear growth, we are talking about the size of the data (to grow). And when it comes to constant time, it means that no matter how much data you have, I can find the required data between the constants, and then check and verify that it is very efficient to submit and check the data. He has an ID and then has an electronic signature, and also checks the information. This blockchain is readily available.
The last one is that we can use the blockchain to implement this kind of supervision and management service for multiple roles, which means that you may be the owner. You may be a buyer, a seller, you may be a transit broker, you may be a carrier, you may be a customs officer, you may be in any role. So how can you have so many roles in the system? Because these roles are called users in our entire system, then the users actually have different ID addresses, ready-made. Just like the currency now, what is your wallet address? How do we ensure that different users have different permissions? We actually use certificates, we call Certificate, e-Cert. The more popular ones are passwords. Of course, now we often use multi-word authentication, which means that in addition to the password, you have to have a verification code or what character you have to identify, in fact, we use a certificate here. Certificates can be used to implement the setting and probability of this privilege for different roles.
Then all these things are put together, in fact we can transform the original process into a blockchain-based process. But this picture I just said, borrowed from a document. This may be just a general or a typical existing process, in fact, all of us or all of the roles can be in different blocks or different stages, with different blocks of blockchain. Is the data package to deal with, to achieve the whole process, to achieve the whole around the goods or around the entity, you are a box or a bag, we have to surround the virtual and electronic around the entity Data management and query verification This is a whole, we call it a typical system solution.
But this system is actually in use now, but it is not used for container management or for doing this import and export. What are we actually doing with this system? We are doing traceability of some of these items, such as typical clothing or food, where is it produced, and then through which links, then who is the wholesaler, who is the retailer, where is it, and then Have you ever retired or sold it to someone, and then did you go back to repair or have a return? In fact, our system is doing this. But this is no different because for us, these are all data. In fact, the data itself does not know what it means. The data itself is a character and a binary. So now we are running some of the green systems below, but it is a layman for this product.
So today, I am also grateful to all the invitations, and I will take the courage to take our set of things and put them in a new scene. This is called application innovation. The purpose of our 3.0 is to use it in more scenarios, and to use the effects, use the performance, and then use such an impressive, or acceptable, result.
In the end, we return to our title, because my title says, the blockchain data container usually has a trusted notary, and each of these is actually meaningful. For example, the data container, which is actually implemented or for a specific scenario, such as the production and sales scene of the clothing we just mentioned, is actually the electronic standardization and intelligence of the data. This involves a lot of existing and popular technologies. For example, if there is more data, how do you analyze it? Here we will use data analysis, data mining and even data modeling methods. Data modeling that you may hear often is machine learning or deep learning, so this is part of intelligence. Standardization you are all experts. The pass-through transport line actually implements this automatic persistence and metering, but these three words have been discussed in general. Finally, trusting the notary, it realizes that around the authenticity, anti-counterfeiting and traceability of the data, it is not only reliable but also usable to build such a thing, not only usable, but also usable, not only usable, but also It is a system that is easy to use.
Finally, I am very grateful to everyone for spending more than 20 minutes. I am listening to my own industry or my own circle as a layman in this industry. I think we have to make the entire smart container to establish its industrial chain, ecological chain, value chain, etc. I think this is completely inseparable or impossible to leave information technology. Because a while ago our country strongly advocated that we call internet+, Internet+, in fact, it is now more accurate and accurate. It should be called information technology+. Otherwise, the internet+ you said may be artificial intelligence+, and then the future is Big data +, but they are all called information technology in our business, that is, Information Technology. Therefore, we are very eager to have the opportunity to use our knowledge in the field of information technology, and the meager ability to make a combination with everyone in the industry, including the specific and typical application scenarios, to truly realize our industry. A transformational upgrade of our industry. Then we realize the industrialization of our entire country called the industry 2.0 or the country we call the information age. Ok, thank you all.
Profile of Prof. Wei Songjie:
Doctor of Engineering (graduated from the University of Delaware), Associate Professor of Nanjing University of Science and Technology, Core Member and Master Supervisor of Network Space Security Engineering Research Institute, Block Chain Technology expert in the field of computer network protocol and application, network and information security. Has published more than 20 papers and applied for 7 invention patents. Previously worked at Google, Qualcomm, Bloomberg and many other high-tech companies in the United States, served as R&D engineer and technical expert; has a wealth of experience in computer system design, product development and project management.
|Hello. Interesting AMA. Do you make enough to live comfortably?||Yes. I grossed just shy of $300,000 last year. I drive a Mercedes and live in a luxury apartment in an expensive area of the country.|
|Does your family know?||Not really. My only concern is with legality and VISA/MC's "BRAM" violations, since they could blacklist me and prevent me from ever accepting credit cards again.|
|Can I have a free pass? ;-)||My sister knows, but my mother doesn't. The rest of my family has passed away or never existed.|
|Hah. Would if I could, but my site sells clips individually. There are no subscriptions... yet. :)|
|What does your mother think you do?||I went self employed a year ago, but I have another website (which doesn't do as well) that I can point people to. As long as they don't examine it too much they probably wouldn't notice the lack of activity.|
|Awesome. What is the site name? :-)||Lemonparty. ;)|
|(note: I'm kidding, of course.)|
|You say what you grossed but what's your margin? And would you accept outside investment?||Net profit margins on clips are between 20% and 30%. Tribute margins between 10% and 20%.|
|Can you elaborate on not having any ethical concerns? What measures do you have in place to make sure the performers in your videos have good working conditions, aren't being coerced or manipulated into performing, aren't victims of human trafficking, etc.?||I have no measures in place to prevent those, really. It's more policing them after-the-fact.|
|The only thing really in place is the ability to report a video, which then flags it for the review of an admin. If the video looks like it could be illegal, we take it offline until the studio can provide proof the video is legal.|
|According to the DMCA, content platforms cannot be held liable for the content posted by the user to a reasonable extent.|
|What I meant is I don't have moral concerns about the content of my site. A lot of it is pretty revolting, but it's not my job to judge or deny anyone for their fetish, as long as its within the bounds of the law.|
|I wonder if that site has any serious profit. Everyone knows it.||I doubt it... accidental ad clicks, maybe. The thing about advertising is it works best when you sell it to people in your market. I would assume that not many people go, dicks-in-hand, to lemonparty. But if its one thing owning a site like mine has taught me, its to not make assumptions about what materials people look for while "firing the surgeon general".|
|So by my math you're making around $75k/yr. if you're grossing 300k--surely a comfortable life, but by no means the lap (or crotch, in this case) of luxury.||That sounds about right. Maybe less. Sometimes I'll work web contracts to supplement my income. It also helps remind me why I much prefer working for myself. :)|
|How often do you get a completely inappropriate video that you have to reject?||Not too often, but there's some pretty harsh stuff on the site. I really try to look at it objectively. Some of the stuff makes me cringe and is hard to watch. Dudes getting kicked in the balls, for example.|
|Edit: Willingly, I might add.|
|Yay, a foremen fan!||NICE! I was wondering if anyone was gonna get that reference.|
|Do you ever visit other porn sites to get off? Or do you stick to your own?||I never get hard on my own supply.|
|Pretty much, the content on my own site isn't for me. We have some very attractive women on the site, but there isn't much traditional porn on the platform.|
|What's one weird trick that will help me last longer and/or increase the size of my dick?||From personal experience? More foreplay.|
|If you've ever been given blueballs and afterwards pulled out your wang, you'd be surprised at how much bigger it can get. Freaked myself out once after a heavy petting session that wasn't advancing.|
|How was that username not taken?||No idea.|
|Why did you make this AMA anonymous when you could have used this as a marketing campaign?||I'm not really looking to profit off of this. I've read a bunch of awesome AMAs and figured I could contribute and answer some peoples curiosity. When I tell people in person they always have a hundred questions for me.|
|How long have you been in the industry?||Besides, I find it difficult to believe anyone could be into some of the things on my site. I doubt it would boost sales.|
|Do you still find porn appealing or is it all pretty run-of-the-mill now?||About 3 years.|
|I'm not turned on by many of the videos on my own site, so it hasn't changed porn for me much at all. I stick to beeg and motherless, personally.|
|all the sites like Redtube/youporn etc... all giving away porn for free has to make a big dent into your profits?||We do find our studios' clips on some of these sites. Sometimes a DMCA notice works, sometimes not. However, since the bulk of my customers are into financial domination, they prefer to pay for the clips. We also make a good amount of money from "tributes", which are simply cash donations. Not sure of the legality of tributes, but they're an industry staple.|
|What is this "financial domination" stuff? Sounds real kinky! I searched for it on a competitors video site but couldn't find anything..||It is indeed a real thing. I've come to learn about some pretty crazy fetishes people have.|
|FinDom (financial domination) Fart porn / flatulence Hiccups Giantess (look this one up. you won't believe it.)|
|What is financial domination? "A real thing" isn't really an answer and doesn't really help. Pls describe in further detail.||Financial domination is a fetish where men, who are usually in powerful corporate positions, want to give up control. They're usually in charge, but this lets them not be. Sometimes it's via video chat, sometimes its just a video they purchase, but every time it has to do with being called names, told they're not good enough or just worthless "pay piggies". The girls will demand the men give them money, and they do. Usually there's not even any nudity unless its the man getting naked. I've seen some crazy shit with FinDom. Guys with broomsticks up their asses and womens clothes on... whatever the girl wants to do to humiliate the guy.|
|Sometimes they let the girls control their computer remotely with access to go through their email, send themselves money, etc, while they just watch with their dick in their hand.|
|It's odd and I don't understand it, but again, I'm not here to judge. I'm here to make money.|
|One studio I know demanded a man buy her a brand new BMW M3 convertible, and he did. He gave her $10k in cash per month until it was paid off. That's an $80k car.|
|I wish I was a hot girl...||They make pills for that.|
|That's really crazy, you're basically just giving money away to someone you don't know at all..||It is interesting, but it exists, so I don't question it too much.|
|I'm looking for porn including a walrus with a tooth brush and their trainer. Do you have anything? EDIT: Of course THIS has to be my highest rated comment...||Will an elephant seal and a tourist work? Also, do you care if the tooth brush is motorized?|
|That depends does the elephant seal have control of the motorized tooth brush?||Checking...|
|What is your technical background? Are you a programmer? Do you manage the tech of the website yourself or is it 'outsourced'?||I've been programming full time for professional corporations and agencies for 15 years now. I do manage the tech myself, but I make heavy use of Amazon web services.|
|Is it legal to post that kind of content on AWS ?||It's not not-legal.|
|Who moves more content than porn sites? AWS would be missing out on a large large profit if they didn't allow adult content.|
|I'm curious, how much did you make programming before you had this site?||My last gig I made $135k. Before that, $120k.|
|How big was it?||We'll just say he's not the king anymore. ;)|
|Does anyone ever actually click those share buttons?||Share to... what? Facebook?|
|reddit, and google plus, etc.||I wouldn't know. I don't have them on our site.|
|You mentioned good integration with Twitter earlier. That's for marketing? Like you have a twitter account for the site?||I have a twitter account for the site, but the twitter integration I spoke of is a feature that lets studios connect their twitter account and have it auto-post a link when their video goes live.|
|Do you produce original content or do you buy content and resell it?||Neither. We grant studios the access to upload their own clips and add their own meta data, set the price, etc. They get a majority % of the sale.|
|What's the average net profit of a typical clip, from a popular performer(s)?||A couple of dollars. Most girls sell clips around $10, and of that they get to keep apx $6 - $7. Our net income for the clips are around 25%-40%. We give better rates to the better performing studios, to keep them interested and using our platform.|
|Me and my roommate have been toying around with the idea of starting a pron site, I have around 30k saved up, Would that be enough to start a redtube-ish website? Also whats the most expensive part of building a porn site? I.E. Licences , hosting, hardware, Hiring someone to build the website.||Nice! Good luck with it. It's a challenging industry. Things that would take 20 minutes on a normal business can take days in the adult industry. (finding a payment processor, for example)|
|A redtube-style site would be quite a challenge, financially, I think. Policing it could also be pretty difficult.|
|The most expensive part, for me since I did all of my own design and programming, was getting VISA/MC approval for a high risk account. VISA has a $1000 annual fee and MC has a $500 annual fee, at least through my payment processor. Fees are also ass-rapingly high.|
|You can make use of Amazon Web Services to lower costs substantially.|
|How much would you guess it would cost to design and program a video hosting website? Also how hard was it in the beginning to get studios to sell their clips on your site?||If I calculated it in hours spent on it myself, looking at around 3 months, so we'll say 500 hours. I charge $65/h if I ever take on freelance clients, so looking at about $32000 for someone at my rate. I'm expensive because of my extensive experience, so you can probably get it done for less.|
|751 studios 19,138 videos Apx 5000 visits per day - A good number of which are sent directly from the studios to purchase on the site or send a tribute.|
|Can you give us a rough description of your architecture? What OS/Web servelanguage do you use... Do you use a CDN to serve up the videos or do you host them yourself? And what bits of AWS do you use? How many EC2 instances?||The site itself runs on a single server, a VM actually. It runs PHP with CodeIgniter for the framework and MySQL as the database. I make extensive use of CodeIgniter's caching abilities. Once the video is safely on S3, the studios can complete the meta data, pricing, and choose when the video goes live. All the video previews and gifs are uploaded to S3 and served through AWS Cloudfront CDN.|
|Thanks for your AMA, I'm finding this very interesting. I'm a developer (.net) who is looking for a niche where I can start up my own business... I know I'm not going to get rich working for a someone else... Congrats to you for doing this, and being very successful!||Thanks! I'm the same way. I couldn't see myself becoming wealthy as an employee, even though my last paying job as a developer was $135k salaried. I have an FTP server setup where the usernames and passwords are powered by MySQL. Each studio gets their own FTP login. I have a cronjob that will run every few minutes and pick up files that are finished uploading and send them to Amazon S3 after gathering some basic meta information.|
|Thanks for the replys, Its giving me a valuable insight. One more question, How many people do you have employed? And what are their roles?||I have myself, a consultant (she gets a profit split), and an assistant. Other than that, everything is fully automated. I didn't want to have to spend all my time on the site, so everything but customer support is automated -- all the accounting is done through Xero's API and I even have a porn-specific accountant/CPA.|
|Of the 5000 visits per day, approx. how many actually purchase a clip? Are you able to track repeat purchases (do they have to make an account to buy)? Or do you track another way?||A dozen orders, maybe 30 on a good day.|
|Thank you again for answering my questions. :)||No problem. I'm an open book. Feel free to keep asking questions.|
|Wait, how does that add up? If the site is turning over $300+k, then it should be making $1000 of sales a day. If you are only selling 10-30 clips a day then they would need to cost $30-100 each. Unless there are other revenue streams (such as tributes) which I'm missing?||Tributes are at least half of the business.|
|I'd say you're like an open book with a couple pages stuck shut. ;)||slow clap|
|That really doesn't add up. you said most of the girls sell their clips for $10, you get 25-40% of that and you sell 12-30 a day. Lets assume the average clips sell for $15 to be safe, and you get 35% of that - you get $5.25 per clip. If you sell 25 in a day, you earn $131.||My math may be off -- It's hard to spitball an average price. Some days I don't even look at the numbers. Clips alone can sell between $200 - $600 a day. Tributes sometimes into the multiple thousands in a day.|
|Have you ever met some of the girls in the videos from the professional studios? If positive, have you done anythign whit said girl/s?||I know a few of them personally, but have only met one of them -- the girl who convinced me to build the site. She sleeps in my bed when she's in town, but I don't make any moves. Not sure how I would react if she did.|
|It may be worth noting at this point that personally, I'm into good girls. Risque women or "bad girls" don't do it for me, generally speaking.|
|I kid. Relax.||Nope. The entire site is completely automated. All I do is approve the invoices in our online accounting software and handle customer support, which takes maybe an hour a week. :)|
|I wanna make that much money to do nothing!||Start a porn site. :)|
|For me, it made sense as a money generating asset requiring little effort beyond the initial build.|
|laughs Oh man, my kids would be so proud of me! Seriously though, good on ya for seizing an efficient opportunity when it came your way. I can't hate on that at all.||Again, it goes back to money generating assets. Getting money for doing nothing is exactly what you should be aiming for if you want to make lots of money. I can't see myself becoming wealthy while working for someone else.|
|Again, it goes back to money generating assets. My 'plan' for this just came together recently. I work for myself in the web/internet marketing realm. Focusing on recurring income is very important to financial growth and stability. Even better, recurring income plus economies of scale = wealth.||Agreed.|
|Wow. That last sentence is incredibly poignant.||Sorry. :)|
|It's just the personal conclusion I reached while evaluating my life.|
|How does your website stand with data privacy? Do you you sell customer's data on to ad companies or do you only make money off of the porn movies?||Although it's fairly common industry practice, I don't participate in it. It's odd, but I try to run my business as professionally as possible. No ads, no link exchanges, no share buttons, no privacy violations. Also, I treat my studios with respect as any normal business would to any partner of theirs. It's surprisingly easy to stand out in the porn business when you abide by those rules.|
|What types of porn will you not let on your site?||Spanking, anything that says "forced" or "rape", even if its clearly labeled as theatrical. Obviously nothing illegal... and no "hypnosis". Those are restrictions VISA/MC places on me. I've considered taking bitcoin on the new platform, but now I'm going to wait and see how this senate hearing thing plays out.|
|What is hypnosis porn?||You're getting horny. Verrry horny. Look into my swirly eyes. Give me your monies. Giiive me your moniiieees.|
|How did you get started in the biz?||I've been building websites for fortune 500 companies for 15 years now. Several years ago I reconnected with a girl I knew from IRC who did "financial domination" clips and cam shows. A few years ago (3 or so) she began suggesting I build a clip site. After a few months of this, and running numbers on what potential profits could be, I decided to do it.|
|Who did you have to bang to get that job?||I had to bang keys for 12 years to teach myself how to program. From there it's just about having enough fortitude to start a business, and even moreso with an adult business. There's a certain stigma involved. Most people know me as "the guy with the porn site".|
|Why are there "Like" buttons and share buttons on porn sites?||I have no idea. Who would share the porn they're watching? Kind of a personal thing.|
|Do you ever get approached by angry moms or family members asking you to take down their loved ones from the site?||Not yet.|
|Maybe a weird question, but do you have to do a lot in your day to day life or is it something on the background where you have a lot of time?||I don't have to do much at all. The site runs itself. I answer between 1 and 3 customer support emails per day and approve payouts to the studios once a month.|
|Other than that, I spend my time on my other business ideas and websites. Or I'll just sleep all day... Whatever I want to do, really.|
|Thats the dream.||And probably the only reason I run my site. :)|
|Ever thought of taking a second job? i mean with that less stuff to do you can add another job for more money.||I could, but my freedom to build my own businesses means more to me than income. As long as I can pay my bills and have my freedom, then I'm good.|
|Not sure if you're still on, but you really inspire me. I'm shitty with computers, and I plan on majoring in computer sciences(moreso in networking) and just reading your replies gives me hope that someday I'll have enough experience to start my own business/build clientele.||Thanks. I'm not a big porn fan or anything, it's just a way I found to make ends meet while I work on my real plan. :)|
|Have you noticed any issues with piracy?||Occasionally. I've found most people who spend money on the site either don't want to share something they've paid for, or would have an incredibly difficult time doing so.|
|What I mean is, a good portion of our demographic are middle-eastern men proxying through misc servers all over the US. They'd have a rough time uploading clips to another site.|
|Interesting demographics. People living in the Middle East, or just from there?||Living in the middle east. Places where this kind of content is more than banned.|
|Any idea if this is normal for other sites as well?||From what I understand, it's common for clip sites, financial domination sites and religious fetish sites.|
|So you circumvent piracy by offering content to people who aren't likely to distribute it? Is that your business model or just a happy coincidence? I have to say I'm surprised a porn site could be profitable considering how much free stuff there is out there. Don't sites like YouPorn and RedTube bury you?||Happy coincidence. They totally bury me in traffic. I've found a niche that works well, though.|
|Is it true all the talent is now moving from Cali due to the condom laws and going to Las Vegas?||I haven't heard too much about it from inside the industry. We do have a good amount of studios in Las Vegas, Florida, and England.|
|England. How is the industry over here?||Strong on the seller side. The buyer side is particularly weak.|
|What do you think about 3D porn and virtual reality porn?||3D Porn is interesting, as is VR. I'm more interested in network controlled adult toys. I think its the future.|
|Agree about the network controlled toys. Have there been any newer advancements in this area that you know of?||Theres a few newer ones on the market... a his & hers USB powered vibrator set I recently discovered. It might have been on kickstarter. It wasn't related to my site, I just came across it online.|
|How many times have people in videos sued or tried to take any legal action against you?||None.|
|My biggest competitor did threaten to sue me, though. And they've gone after my top studios, trying to get them to leave my site... slandering my business in the process.|
|Can you sue for defamation or slander?||You can.|
|I don't need to lose in court, I just need to be lawyer-fee'd to death. :(|
|Since you've been doing this for only a couple of years and it has been so financially successful for you, have you considered branching out into different types of porn sites? Or is this "buy a clip" the best business model you have found?||I wouldn't want to do other types. The buy content/sell subscriptions never really worked for me as a customer, and the redtube style sites don't work for me numbers-wise. I'm very anti-advertising, so I wouldn't want to rely on that as a source of revenue. My consultant has tried to get me to create a thumb-gallery style site, but I'm not fond of the idea.|
|We are working on a new platform, though, which will require customer accounts and lets them stream the videos they unlock through HTML5 video. We've also reorganized the new platform into fetish verticals so we can try to capitalize on that. Our current discovery process admittedly sucks. There's a lot of videos on our site that are in the dark.|
|Do you see free sites such as pornhub and redtube as a source of lost profit?||I don't see them as a threat. Some of the studios do, though. I've been told my new platform shouldn't have the video previews I'm planning (20 seconds of footage), as guys "jack off to the previews". I think it's better for the customer, though.|
|What day see's the most traffic on your site?||Historically, Tuesdays. No idea why. Sundays are the slowest, by far.|
|I have always wanted to put my skills as an interaction designer to good use, by simply creating such a site as yours, especially for mobile devices or wearables. Augmented r porn ftw.||You wouldn't need an intro, per se, it just helps. You could take out advertising on popular sites in your micro-industry and get some studios coming in. You could also tweet the studios directly, as they watch their twitter pretty well (it's how a lot of them communicate with their "pay-piggies").|
|However getting the content has always been the biggest issue (even in the netherlands)... If you never have met this girl that initially gave you the idea to start this up, would you've managed? Or is it near impossible to get enough good content to get started, without good contacts and, lets say, about 30k in cash?||I would not have built the site without my consultant. It took a considerable amount of nudging from her to get me to build the site.|
|I know which website is yours :P Other than the people uploading clips, how many employees do you have and what are their jobs?||:)|
|Just myself and my consultant (she also runs a studio). I have another "employee" who is helping me on another endeavor with the same parent company, currently uncompensated, whom I referred to as my assistant in another answer similar to this. Don't tell her that, though. She's much more helpful than an assistant.|
|How does someone find a job (not even a career!) in this field? My talents are webdesign and html(5)/css3. But I also wouldn't mind filming / writing / even acting although I'm out of shape. I just like porn that much.||That -- I have no idea. Sorry.|
|Tl;dr and question: In Britain certain extreme content is becoming potentially illegal and porn, especially of certain types, is being vilified by the government. 1) What personal rules do you observe in terms of content you allow? 2) Are there any censorship rules in America that do/could affect content you post of extreme porno, and how do you deal with them?||2) As far as I'm aware, there aren't many rules about it. I haven't been gifted with too many "extreme porn" studios, though, so that's been a blessing. It makes me quite a bit uncomfortable.|
|Wouldn't you make more money offering the clips for free and making money off ad revenue?||Probably not. That would require massive traffic which is both expensive to attain and expensive to pay for the bandwidth. My customers come to the site looking to spend money, and they don't get any big video files until they've paid for them. Additionally, splitting revenue with the studios would be considerably more difficult.|
|How often do you fap?||No more than the average reddit user.|
|So all the time?||I may or may not be fapping right now.|
|How old are you? Do you see yourself doing this for the rest of your life? Generally it seems that being your own boss is your dream job, but what specifically would you most like to do as your primary source of income? Or does this not matter to you?||I'm in my late 20s. I don't see myself doing this for the rest of my life, but this is a means to free up my time. My time is invaluable to me since I can spend it building businesses outside the adult arena.|
|It matters very much to me. I'm not a genius and I'm not a wonder child. I started below middle class. I've had to work 4x harder than a lot of the talented people in my industry. The important thing is that I understand this and I'm willing to put the work in.|
|"What I lack in talent, I make up for with raw tenacity." - Henry Rollins.|
|Is is awkward or embarrassing saying what you do to friends and family? What about in relationships?||If I were making millions, I'd be a little less "embarrassed". It's not so much embarrassing, I just understand that in current society it's frowned upon. For example, if I were looking for a job, some companies may not hire me because of my site. Some girls wouldn't date me because of it. It really depends on the person I tell.|
|Are you considering retiring soon or do you really wanna see your site take off?||I've gone back and forth on whether or not to finish the new platform, but its so cool from a technological standpoint. Plus, I'm sitting on 20,000 clips with full permission to sell -- how could I not make a better site and give it a real go?|
|Do you watch your own clips?||For humor content, sometimes yes. Nothing like a gorgeous girl backing her ass up to the camera and ripping the LOUDEST, JUICIEST fart you can imagine. I have pulled stomach muscles laughing at some of the clips.|
|Other than that, the content doesn't really interest me.|
|What is your view on 'NoFap'? or furthermore, the emerging evidence that porn addiction is a widespread problem that is affecting thousands/millions of people?||I wasn't aware of it. I don't really have an opinion? I think as with all things, moderation is key. A lot of people are addicted to alcohol, but nobody is shaming liquor stores. At the end of the day, nobody is responsible for you but yourself. Might be a Libertarian thing, though.|
|Working hard, or hardly working? :D.||I see this, and I understand it.|
|Do you have a girlfriend or wife? What did they think of the idea?||I don't. But quite a few girls know and don't really care.|
|What's the difference between a website like yours and websites like the nsfw version of youtube?||My site sells clips. You buy a clip for a price, you download it and its yours to view over and over. We have a profit sharing split with the studios who produced the clip. We're essentially a video sales platform.|
|How does the whole licensing thing go? Just shoot an email to a porn studio and be like "hey can I use your videos on my website? You get 30% of the revenue (; (; (;" I've always wondered how this sort of stuff worked in the "entertainment" field.||They have to sign up on my site. I send out 1099s to domestic studios at the end of the year.|
|How did you get started, what made you decide to run a porn site?||I had a friend who urged me to make it (She runs a studio). After about a year of constantly asking, and the timing was right, we ran numbers and it looked doable.|
|Do you have a fav porn star?||I don't really have any favorites. I prefer "good girls".|
|Hi, do you ever have any trouble getting developers and designers to work on an 'Adult' website?||I've never tried.|
|Also, can you recommend an adult payment gateway provider?||As for the payment gateway, I'd recommend Netbilling. They'll work with you to find a merchant account provider and a gateway partner (they don't sell direct).|
|a more serious question, what is password cracking like? Bruteforcing hashes, looking through source code for vulnerabilities, doing advanced maths or something fourth?||First I'd try to figure out if the software was merely using access denial or encryption. With access denial, the data isn't encrypted, but the software won't show you the data without the password. For purposes of criminal forensics, you're not allowed to change the data in any way for it to be admissible in court, but getting access to the file before you have a password can often be helpful. To figure that out, I'd just look at the file in a hex editor; if I could read it, it wasn't encrypted. The next easy step is to scan the program for cryptographic constants; these are things like s-boxes or tables of rotation constants or such that tell me what crypto functions, if any, are being used. For example, if I see 637c777b anywhere, I know it's probably using AES. If I see 77073096, that's a CRC32. If I see 67452301, it's using MD5. After that I'd use a debugger and a program like IDA Pro to start at the point where you type the password and figure out what the program does with it. This is what often took the most time and was the most tedious. Early versions of MS Access, for instance, just XORed the password with a fixed constant; anyone could break those passwords immediately. The toughest one that I was able to break was the encryption on WinZip; it was much better than most stuff I ran into, but still weak enough that I could break it. That was the one I enjoyed the most, like an extra-challenging Sudoku or something.|
|The hash function wasn't cryptographically strong, so I was able to run a lot of it backwards and get a enough constraints on the input to skip most possibilities. What is this process called if I wanted to learn about it in an academic setting?||Cryptanalysis.|
|WinZip; it was much better than most stuff I ran into Is it any better than 7Zip?||My attack was on the old encryption method. WinZip has since upgraded to AES, like 7-Zip. The only way to attack an archive made by a recent version of either of these is with a dictionary attack, trying every password.|
|What was the biggest password you ever cracked?||Nowadays, most software companies use strong crypto, so the difficulty of cracking the password increases exponentially with the length. Back in the late 90s, it was mostly "roll your own", so the strength depended a lot more on the software than the password chosen.|
|That said, the password I was most pleased with was a 60-character randomly chosen password on a WinZip file using the ciphertext-only attack that later got published.|
|Was the content worth the effort? What was the content?||The content was irrelevant to me; the fact that I had broken the encryption so thoroughly on such an important file format was the exciting bit. When it was in beta, the FBI started sending us files with suspected child porn for us to open. Thankfully I never had to look at any of it---that was someone else's job---but it felt good to know that I was able to help with that. Once we integrated it into the toolkit, of course, the FBI would just use our software themselves.|
|Now, though, I think that it's more important that people be taught what is right and have freedom---even if such drimes still exist---than to have a society in which every activity is so policed that crime is impossible. I think we should make it hard for the government to do such enormous, sweeping surveillance as we've discovered they've been doing.|
|If there's sufficient evidence to suspect someone of a crime, the government has plenty of resources to target that individual, and no software will prevent them getting the information they want. Splicious, if it is funded, will help in preventing surveilllance at national scales.|
|It's funny how no one seems to be responding to the thing you're actually talking about... it seems to me you're raising awareness about splicious. Can you say more about that?||EDIT: I need to make clear that it doesn't fully exist yet! We need money to continue to make it real.|
|As I wrote above, it's a platform for encouraging the creation and curation of content. The idea is to reward both those who create content and those who share it. You may have seen that picture of handing out Facebook likes to 3rd world kids; merely "liking" something or upvoting it doesn't actually help somebody make a living. So all likes/upvotes have real money behind them in this system. The originator of content gets 90% of each upvote, while the remaining 10% is distributed down the chain of resharers to the donator.|
|We want artists and musicians to use it, but also scientists, authors, and journalists. We think the journalists will be particularly interested both because of the potential to get supported directly in the wake of digital media, but also because of the security features we intend to implement, like perfect forward secrecy.|
|We hope scientists will like it, because big academic publishers like Elsevier charge tens of millions of dollars for bundled access to their journals and have something like a 36% profit margin. The scientists write and review the articles and edit the journals for free; Elsevier turns around and charges them for the privilege. Splicious would allow people to set up electronic journals quickly, while contributions go directly to the authors and the editors.|
|Could you inbox me my password if you wanted or felt the need?||That would require getting Reddit's collection of password hashes. It would take some effort, but probably a lot more than would be worth my while.|
|Well, it used to be easier.||Wow! Yeah, hopefully they learned something after that. :P.|
|Could you be a very rich man if you used your powers for evil?||I could have in the 90s. I think the FBI are a lot better at dealing with crime on the internet now than they were then.|
|Hi, I'm a math/CS undergraduate and find this stuff fascinating. However, I haven't a clue how to get started. Any reccomendations on how to get into password cracking and hacking?||As to your specific topics, the days of easy password cracking are largely over: any software worth spending money on will use strong crypto. The best one can usually do is a dictionary attack distributed over many computers.|
|Awesome! What is your ed background?||When I got the job I was getting my undergrad degree in physics. I went on to get a MSc and have just finished my PhD.|
|How much were you taught on the job vs what you had learned through self study?||All of the math I learned in school or from Schneier's Applied Cryptography. I taught myself the rudiments of programming as a kid and all my electives at university were computer science classes. I learned to read assembly code on the job.|
|What would you say is the most lucrative area of infosec (both for black and white hats)?||If you want to make enormous amounts of money, you start a company and get bought out or have a successful IPO. That's very risky, though; if you want stable good money in infosec, go join Google's security team: I did and loved it!|
|Are you employed now by Google?||No, I left last year to start working on splicious. I'd like to keep doing so, but we need funding!|
|Whats this splicious you keep referring to?||It's a distributed secure communications and computation platform. It has features to encourage the creation and curation of new content, but is intended to be a general purpose secure distributed computation platform.|
|The computation framework is based on pi calculus; I've written a paper with Greg Meredith and Sophia Drossopolou showing that we can use Caires' sspatial/behavioral types as a security policy language and let the compiler check that the implementation fits the policy. (TL; DR: We can prove that we don't have security flaws of various kinds.)|
|Are you Hackers or War Games fan?||I loved it when you nuked Las Vegas. Suitably biblical ending to the place, don't you think?|
|Have you ever hacked people?||Not without their permission.|
|That sounds a bit weird. Hahahaha.||It's not much weirder than tattooing: Link to io9.com|
|Of course they still had to get the hashes somewhere, but there are some pretty powerful tools in the public domain these days, who knows what is behind the curtains in the federal side of the house...(proposed quantum computing password cracking for instance)||People simply don't have the ability to remember passwords that are strong enough to resist the password crackers. If your service has the option to use two-factor authentication, use it; when attackers steal gmail accounts, the first thing they do is turn it on, because it makes it virtually impossible for the owner to get it back. If your service doesn't have 2-factor auth, use a long passphrase. Here's some math: if you just use lowercase letters and have a 16-character password, there are around 1022 passwords to try. If you start using numbers, too, there are around 1024, so a hundred times harder. But if instead you double the length of the password, there are around 1044, which is a sextillion times harder. Quantum computation is certainly interesting to the NSA, but the technology isn't up to code cracking yet; scientists are just at the edge of beating the error bound necessary for quantum computations with more than a handful of qubits. Link to www.news.ucsb.edu|
|How could a regular person like me learn the basics of this?||What did you mean by "this"? Reverse engineering, password cracking, or secure distributed communications?|
|All of it and where should one start? I've done custom rainbow salt sables and attempted wpa2 attacks for fun and cracking hashes using Cain and Able.||For reverse engineering, woodmann.com is the place to be. Get a copy of OllyDBG and IDA Pro; there is an older version available for free. Here's a reasonable intro to some of the techniques: Link to yurichev.com|
|Actual question how good is router security with passwords for example can you or have you hacked a router (guessing default passwords don't count)?||I haven't ever tried breaking router passwords; I have my own router, so I don't need to use anyone else's.|
|Are you the guy that made this video: Link to www.youtube.com ?||Yep. In addition to the content creation and curation stuff, there's also a notion of controlling who gets access to personal information. In the video, I drew how Alice can prevent Bob from knowing her name or address while still proving that she's 21.|
|But we need money to make it real.|
|Are you in fundraising mode? Are you doing crowd funding? Do you have a site?||Yes, we're doing crowd funding. The site is linked in the description.|
|How is there such a huge disconnect between you and I? I send hours on the computer and can't do shit with it other than reddit and excel spreadsheets. How do you get into it? Is it a lot of reading? How does it work?||I think you become good at doing what you spend time on, and you tend to spend time on things that you like doing. I learned this stuff because it made me happy. I get a thrill out of this sort of thing, so I keep coming back.|
|That said, with enough hard work, you can become good enough at something that it's no longer a drag: playing piano for the first few years sucks. Who wants to sit there plunking out "Mary had a little lamb"? But once you have the skill to actually read music and play it, then you're free to explore all your musical tastes. After you've played a lot of the music you love, you get a feeling for chord changes and what sounds good to you, so you can improvise your own music.|
|It's the same way with math and programming: there's some hard stuff at the start, but once you become good enough at it, you can start behaving like an artist and do your own thing.|
|The equivalent of learning "Mary had a little lamb" is introductory programming sites like KhanAcademy or codeacademy or code.org or a bazillion others.|
|What do you think of the new NSA, using the Patriot Act?||I think the Patriot Act traded an enormous amount of liberty for what turned out to be virtually no increase in security.|
|Is that the same platform that this ex-Googler was talking about in this video Link to www.youtube.com.||Yes, that's Vlad Patryshev. He was one of the guys who made Orkut. He was actually really excited about splicious and said, "I've been waiting for this since FidoNet."|
|Thanks. I'll look into all that. Lol, well that's a different story, a lucky one too. So you had no knowledge or experience with programming and they just hired you? What degree were you going to go after if you went to collee? Oh yeah, did you end up going to college after all or you just stuck with the job and learned from them?||I had plenty of programming experience, but no crypto experience. I couldn't decide for a while between computer science and physics. Eventually I compromised and got a degree in applied physics; basically, all my electives were CS. I finished my bachelor's degree, then lost the job when the dot com bubble burst, went to New Zealand and got a MSc in CS, then started a PhD but ran out of money, went to work for Google's security team and started working on the PhD part time. I worked there for six years, then quit to work on splicious. I just finished the thesis and will defend later this year.|
|I might be late to the party, but what do you think of the XKCD password comic? This is the method I'm currently using with the help of Make Me A Passwords generator.||It's spot on. When given the option, use long phrases rather than gibberish. LastPass can manage your online passwords by generating very long gibberish but only require you to use something memorable.|
|You actually suggest LastPass over KeePass(X)?||I was using LastPass as an example of the genre, like how the southern US refers to any carbonated soft drink as "coke". I haven't made an extensive study of the offerings.|
|Are you Jesus? 'cause you look a lot like him.||I was babysitting with another guy for a group of moms once, and when one of the moms dropped off her young kid---maybe four or five years old---he got really big-eyed and nervous. I thought he was afraid of the beard and hair: sometimes people would cross to the other side of the street when they saw me coming. So I invited him in, showed him the toys, and we all played and had a good time.|
|When his mom came to pick him up, he ran over and said, "Jesus is fun!"|
|Hey Mike, my understanding is that you've built a distributed platform and also adding on bitcoin support so that every post you make on splicious could potentially generate revenue. i would say that it's a new take on an alternate virtual economy and want to try as soon as they allow public use. are you planning to add some kind of reputation system to it? say, if i want to look for something a'la craig's list style rather than post my poetry?||We've been thinking about reputation systems, but don't have any firm plans. Part of the problem with reputation systems online is that people do "pump & dump", using their reputation to steal something. If anyone has ideas or references about fighting this, please PM me.|
|Was most of your work just using parallelism brute forcing, or did you look for vulnerabilities in encryption standards. Also what is your opinion on the vulnerabilities of dual eliptic curve cryptography?||Nearly all of my work was cryptanalysis of the relatively weak cryptography that was prevalent in the late '90s. We started turning to parallelism when MS Word improved its crypto to the 40-bit stuff that was the limit for software you could export.|
|The vulnerability in the PRNG for dual ECC was clearly inserted by the NSA and weakened everyone's crypto, even the US military and government's. I'm surprised that there's not more outcry from the other government organizations.|
|Last pass gotta remember that one. The o e thing I'm worried about though is my email is under yahoo and I've heard they are famous with being hacked because of crappy protection programs or leaks even is this true?||Looks like Yahoo has 2-factor auth available. If you turn it on, then even if crackers do figure out your password, they won't be able to log in with it because they don't have your phone. That's the single best thing you can do.|
|Can you explain this like you would to someone who's never heard of hacking?||There's no password you can remember that would stand up to modern cracking software. If you use a long passphrase, you might stand a chance. 2-factor auth is the only way to stay safe.|
|Can you tell me how to turn it on in a pm please.||I'll just put it here, since everyone ought to know this: Link to www.zonealarm.com|
|What's your computelaptop specs?||I had a Macbook Pro, like most of Google security team, and got myself another when I left. It has all the benefits of unix with really nice hardware and good suport.|
|What makes one password cracker different than another? Edit: Wonderful beard.||Generally it's how well they take advantage of the parallelism in the GPU. And thanks!|
|Do you feel That bitcoin as a currency will make it even with all of the theft and ease at which people are being hacked and having coins stolen.||I have no particular attachment to bitcoin as a currency. Ben Laurie, for example, has some excellent points about how to keep bitcoin secure, you either have to trust the software authors or spend half of all computing power for the rest of eternity. If you're going to trust people, there are much more efficient ways to mint money. Link to www.links.org|
|For our purposes, bitcoin provides a fairly simple micropayments service; any other distributed currency would probably work just as well.|
|We also don't store the wallets ourselves; we use blockchain.info.|
|I feel the success will be based on micro payments. IE reading a Wall Street journal article for a .05 or .10 fee and not having to buy the whole newspaper or article. Just my 2 cents..||Exactly. A journalist would write an article and share it with WSJ. WSJ would reshare it, and readers could support the journalist by contributing a mBTC. WSJ would get a cut and the journalist would get the lion's share.|
|So how hard would it to be to break a password of say"iFuCkInGHate2001!!"||If crackers get hold of the file with the password hashes, nearly all passwords will be cracked, even quite long ones like yours. A similar password (18 printable chars) that has been hashed once with SHA with no salt would take less than an hour to crack on a single PC. Adding salt makes it harder to build tables where you can just look up the password instantly, but no slower to just brute force.|
|People REALLY need to use 2-factor auth to be secure.|
|So what can a person like me who doesn't know much on how to make a password more secure, except making it super long and complex to do to " feel safer" of not getting hacked.||First, choose reputable services like GMail, where they take security very seriously. A cracker who can't get to the database of password hashes is forced to attempt to log in repeatedly, which can be detected and throttled to a safe rate.|
|Second, use 2-factor auth if it's available.|
|Third, use something like LastPass that generates a long random password for each site and stores it encrypted under a single password that you remember. You never type that password into anything online.|
|I bet your computer is awesome||It's a Macbook Pro.|
“Bitcoin is giving banks a run for their money. Now the same technology threatens to eradicate social networks, stock markets, even national governments.” – Matthew Sparkes; Definition of Blockchain. A blockchain is an audit trail for a database which is managed by a network of computers where no single computer is responsible for storing or maintaining the database, and any computer may ... Rather than designing such a system yourself, you might want to take advantage of an existing File Integrity checker such as Aide:. Aide creates a database from your filesystem and stores various file attributes like permissions, inode number, user, group, file size, mtime and ctime, atime, growing size, number of links and link name. Si alguien marcas de bitcoin, no debe ser Satoshi, Gavin o una de las personas que realmente lo hizo[.] Tendrías que llevarlo con ellos. Hasta el momento, no lo han hecho. Quiero decir, si GOX quería, ¿no se pueda apagar Tradehill o al menos cobrar regalías, si fueron capaces de imponer su marca. Un muy peligroso perspectiva. Si eso es cierto, entonces había Mt. Gox no presentaron su ... As a result, you're stuck having to brute-force all the bits that the client checks in addition to those the server checks. If the client is lazy and only checks m bits, then overall you're looking at 2^(n+m) tries, which might be feasible. However, if the client validates the full server finished, you'll have to break all 12 bytes, or 96 bits, which won't be easy to brute force before the ... I restarted my computer and now bitcoin doesnt go further than "verifying database integrity" and staying in until now (about an hour now) also windows tells me that the program isnt responding. A...
[index]          
Bitcoin Revolution - CHANGE YOUR LIFE TODAY! Join Us and Start Getting Rich with Bitcoin Revolution! AWARD-WINNING TRADING APP. The Bitcoin Revolution app has won a number of awards. The most ... How is SHA-256 used to verify data integrity in Bitcoin? What does it mean to sign a message? Is there a difference in the validation process of compressed versus uncompressed keys? More: https ... Bitcoin Transaction (VJ Edition) ----- Bitcoin is a digital money, meaning it's Digital, simple. It is based on 0 and 1s, as they say. A more efficient way of showing 0 and 1s is by using their ... Any node on the Blockchain can calculate this hash, verifying the integrity of each block, making it tamper proof. Blockchain is de-centralized. Unlike traditional databases, it is not owned by ... Keep you Bitcoin Safe from Phishing and Scams. Verifying Electrum Download Signatures via GPG4Win. Verifying Electrum Download Signatures via GPG4Win. - Duration: 8:53.