The second quarter of the year is in the books. Or to put this in less financial terms: Happy almost Fourth of July! Please take a moment during this holiday to remember that democracy is not a spectator sport.
6/25/2018: Sprint’s $15 unlimited data plan required a ‘hard pull’ credit report, and it’s not the only one, USA Today
The Collision conference gets an assist here for introducing me to CreditKarma co-founder Nichole Mustard, who on short notice provided a concise explanation of different levels of credit inquiries.
6/25/2018: Four things to note about the Supreme Court’s location privacy ruling, The Parallax
I applaud the Supreme Court ruling that the government has to get a search warrant to see my location history as tracked by my wireless carrier. But it also left many things unclear, like the validity of the “third-party doctrine” that originally allowed warrantless access to that location data.
6/29/2018: Apple’s Safari has dropped the ball on security, Yahoo Finance
News that Twitter would finally support two-step verification based on cryptographically-signed “U2F” USB keys gave me a timely peg for a piece recounting how Apple’s browser has been late to implement many security advances–even as Safari has led the industry in adding privacy protection.
6/30/2018: Facebook’s listening patent, Al Jazeera
I got a call from a producer as I was walking to Metro to meet friends for brunch, asking if I could talk about recent reports of Facebook obtaining a patent that appears to describe turning on a phone’s microphone when an ad broadcasts a special, inaudible-to-humans tone. I said this patent only showed that Facebook has aggressive patent lawyers. Why? See Nilay Patel’s debunking of this allegation in the Verge, based on a close reading of the claims in the actual patent.
Apple also do not correctly implement the S/MIME and PKIX email standards. Only Apple treat the left side of “@“ in secure email certificates as case-sensitive. People (who live in No Va) who helped write those standards have talked with Apple about this, but Apple willfully refuses to fix their code.