More commonly, voltage glitching does rely on removing capacitors etc., and extremely precise timing (nanosecond resolution, or below).
However, the fun part about this particular attack is that it does not require quite the same level of precision. The voltage is dropped incrementally until the CPU starts to make faulty calculations. It just so happens that AES is one of the most complex operations, and thus, the first to start faulting.
Also, some games are not native. The few which are, were ported with no care to make good use of the better linux features or syscalls. They were not optimized and it is a great feat of the kernel to still run them at good performance.
I'd much prefer a slightly dry but genuine personality, than a hyperactive and fake "youtuber personality". The content speaks for itself. He generally takes safety pretty seriously, too.
This requires the assumption that storage will continue to exponentially (or at the very least, linearly) decrease in cost. It also requires a certain amount of good luck. I would hope the IA has a reasonable amount of data resilience, but you never know.
I would bet my life savings on the fact that storage per normalized price will grow exponentially (with some tau) after 500 years. Supply/demand with gradually developing technology is one of most guaranteed forces in humanity, and people will demand cheaper data storage as long as we demand information.
I used to have access to papers via my university, but I never used that access. The UX of scihub is infinitely better. Anything else just added unnecessary friction to my research process.
How so? Did you have to go through your uni library website to search the paper? I usually find the paper through Google Scholar, log in to the website using my uni account and download the PDF from there directly.
I love SciHub. I used it a lot when I was in a small college that did not have that type of access, but after I moved, I never used it again.
That must be quite the convoluted interface at your university then - at my university, access is given automatically based on my being part of the university network. It is absolutely transparent, I only notice when I'm at home and forgot the turn on the VPN to be part of the university network.
Yes. It’s faster. I’m a scientist who authors papers and needs to read an enormous number of them. My ability to easily search and access dozens of papers per day is what makes my job possible. The purpose of the scientific publishing industry is to support that activity and the general dissemination of knowledge. The fact that a random website in Eastern Europe is able to simplify that task is a good thing, and reflects negatively on the existing publishing industry. (As the author of some of those papers publishers are charging to access, I can assure you that the scientists involved don’t mind that people are bypassing journals and their terrible web UX in order to read and cite scientific work.) The fact that my University already pays for all these journals and it’s still more efficient to access them via Sci-Hub only makes the publishing industry look worse, since it means they’re not accomplishing their core purpose, the one that’s supposed to justify their continued existence in this world.
This post is still getting linked from other places, so I think it's helpful to point out that it's almost certainly fake. (Hence its [flagged] status)
The images shown do appear to be adversarially generated inputs against some NN-based image hash or classifier, but there is no evidence to suggest that this is at all related to Apple's NeuralHash, or that the colliding hashes are from a real CSAM database (the target hashes are not public).
OP claimed they would "release 5 pieces of proof in the next 5 days" [1], and guess what, 11 days later they still haven't.
Look at OP's post and comment history, it's quite clear that they are a troll.
In the mean time, it has been actually proven that hash collisions against NeuralHash are trivially possible, see [2]
Codebases with high levels of abstraction and metaprogramming are often easier to understand in IDA/Ghidra, if your goal is to understand how a specific part of the program works.
"2 minutes setup" is mentioned in various places on the page, as well as on the chrome store page.
Why 2 minutes? I assume this is used as a stand-in for "very short time", because there's no way it actually takes two minutes to install unless your internet is particularly slow, and I don't imagine there's much to configure.
It seems a bit out of place, especially when the extension itself centers around the problem of 5 seconds feeling like an eternity.
Edit: I just installed it as a test, and it was ~instant.
However, the fun part about this particular attack is that it does not require quite the same level of precision. The voltage is dropped incrementally until the CPU starts to make faulty calculations. It just so happens that AES is one of the most complex operations, and thus, the first to start faulting.