kyak changed the topic of #qi-hardware to: Copyleft hardware - http://qi-hardware.com | hardware hackers join here to discuss Ben NanoNote, atben/atusb 802.15.4 wireless, anelok and other community driven hw projects | public logging at http://en.qi-hardware.com/irclogs and http://irclog.whitequark.org/qi-hardware
infobot has joined #qi-hardware
wpwrak has joined #qi-hardware
luke-jr has quit [Ping timeout: 248 seconds]
luke-jr has joined #qi-hardware
<kyak> mth: safety and security are interrelated, but they are not the same thing. The system is safe (to a certain "level", this is part of the standard) when it satisfies all the "safety requirements".
<kyak> if the system is secure to attackers, but fails to satisfy safety requirements ("not safe"), this is just as bad (or arguably even worse) than the "safe" system which is not "secure"
<mth> I agree they're not being the same thing, but shouldn't security be considered as one of the safety requirements?
<kyak> It should, and it kind of what starts happening now in the related industries. Although very slow
<kyak> airplanes were designed in 80s and 90s when the (cyber) security was much less important than functional safety
<kyak> the situation is completely different now
<mth> in an airplane though, it is relatively easy to spot someone messing with the hardware
<mth> in a rail system with thousands of kilometers of rail and cables, it's impossible
<mth> copper theft has been an issue for rail safety already, so data cables aren't safe
<kyak> yeah, that's probably a bigger issue than malicious hacker trying to pretend to be a signalling equipment by crackign MD4 :)
<mth> yes and no: there will be more potential attackers interested in making a quick buck stealing copper, but the potential damage from sending fake messages could be much higher
<mth> even if it wouldn't cause any accidents, it could still be a massive denial of service
<kyak> it is more probable that a dead cow will be laying on a rail than this. So they try to think about more realistice threats, which use to be from natural factors rather than from malicious factors
<mth> a dead cow is easy to spot though; how many hours will it take to bisect the location of a device that only transmits once in a while?
<kyak> both can be very hard to spot :)
<kyak> don't get me wrong, i'm not saying that security is not needed or not important. Just saying that it is still a very long way for the industries to go. It took them a few dozen years to figure out the safety, and at the cost of human lives
jwhitmore has joined #qi-hardware
jwhitmore has quit [Ping timeout: 260 seconds]
tumdedum has quit [Ping timeout: 265 seconds]
tumdedum has joined #qi-hardware
eintopf has quit [Ping timeout: 264 seconds]
eintopf has joined #qi-hardware
tumdedum has quit [Ping timeout: 244 seconds]
tumdedum has joined #qi-hardware
zcrc has joined #qi-hardware
zcrc has quit [Quit: AtomicIRC: The nuclear option.]
DocScrutinizer has quit [Quit: EEEEEEK]
DocScrutinizer05 has joined #qi-hardware
DocScrutinizer05 has quit [Remote host closed the connection]
DocScrutinizer05 has joined #qi-hardware
jwhitmore has joined #qi-hardware
jwhitmore has quit [Ping timeout: 245 seconds]
duncan^ has quit [Ping timeout: 260 seconds]
jwhitmore has joined #qi-hardware
jwhitmore has quit [Ping timeout: 268 seconds]
jwhitmore has joined #qi-hardware
jwhitmore has quit [Ping timeout: 264 seconds]
duncan^ has joined #qi-hardware
duncan^ has quit [Changing host]
duncan^ has joined #qi-hardware
_whitelogger has joined #qi-hardware
jwhitmore has joined #qi-hardware
rozzin has joined #qi-hardware
jwhitmore has quit [Ping timeout: 256 seconds]