Tranquil PC, a computer maker in the U.K., is taking orders for two home servers based on Intel's upcoming Atom processor, formerly called Diamondville.
The two home servers, the T7-HSAi and T2-WHS-A3i, are both based on Intel's 1.6GHz Atom 230 processor, which will be launched at the Computex exhibition in Taipei next week.
The £278 (US$550) T7-HSAi comes with 512M bytes of RAM, a 500G-byte hard disk, and Windows Home Server. The T2-WHS-A3i costs £299 and has the same basic specifications, but has room for two 3.5-inch hard disks, while the smaller T7-HSAi can hold a single 3.5-inch hard disk or two 2.5-inch hard disks.
The Atom-based systems replace earlier systems based on Via Technologies' older and less powerful C7 processor. The C7-based home servers are no longer available, although Tranquil still sells other computers based on Via processors.
The home servers are not the first products to be offered by Tranquil that use Atom, a chip designed for low-cost laptops and desktops. Last week, the company began accepting preorders for a motherboard with an Atom processor, priced at £53.
Tuesday, May 27, 2008
Vodafone CEO Sarin steps down, to be replaced by Colao
Vodafone Group CEO Arun Sarin will step down from the top job at the mobile operator in July, the company said Tuesday.
Sarin will leave the CEO's chair, a position he has occupied for the last five years, on July 28 at the company's annual general meeting, Vodafone said. He will be replaced by Vittorio Colao, the group's deputy CEO.
Vodafone also announced its full-year results, posting a £6.66 billion (US$13.1 billion) net profit for its fiscal 2008, compared to a loss of £4.93 billion for fiscal 2007.
Sarin was appointed CEO of Vodafone in July 2003, after serving as a non-executive director of the company. He also did a stint as CEO of Vodafone United States and Asia-Pacific. Sarin joined Vodafone in 1999, when the company acquired AirTouch Communications, where he served as president and CEO.
"Sarin has done a very good job, but has he done everything right? Of course not," said Martin Gutberlet, analyst at Gartner.
Gutberlet gave Sarin high marks for transforming Vodafone from a pure mobile operator into more of a service provider.
Under Sarin's tenure, Vodafone continued to expand its international reach, most recently with the acquisition of Indian operator Hutchison Essar, Gutberlet said. Fixed networks are also part of Vodafone's services now, he said.
Through this expansion, the number of Vodafone subscribers worldwide increased from 120 million to more than 260 million, Vodafone said.
Sarin received a lot of credit for his frank comments about what he thinks the vendors' development plans. At the Mobile World Congress in February, Sarin said WiMax and LTE (Long-Term Evolution) should be merged into one technology. Last year, Sarin challenged vendors to develop LTE faster.
Sarin's comments, along with other pressure from companies such as NTT Docomo and T-Mobile, lit a match under the vendor community resulting in faster LTE development, Gutberlet said.
Colao previously served as head of Vodafone Italy and regional CEO for Southern Europe. He left Vodafone in 2004 to become group CEO of the Italian publisher RCS MediaGroup. He rejoined Vodafone in 2006 as CEO of Vodafone's European region before taking on his current position.
The CEO of Vodafone is one of the most important roles in the industry. The rest of the mobile operators look to Vodafone for technology leadership, according to Richard Webb, directing analyst at Infonetics.
"He has to have a very clear vision and be very vocal about it, but I don't think Vodafone would pick someone who hasn't got that," Webb said.
"Colao's biggest challenge will be to keep Vodafone from turning into a bit pipe, but that is true for all mobile operators. Colao needs a dedicated Internet approach, including areas like advertising," Gutberlet said.
Sarin will leave the CEO's chair, a position he has occupied for the last five years, on July 28 at the company's annual general meeting, Vodafone said. He will be replaced by Vittorio Colao, the group's deputy CEO.
Vodafone also announced its full-year results, posting a £6.66 billion (US$13.1 billion) net profit for its fiscal 2008, compared to a loss of £4.93 billion for fiscal 2007.
Sarin was appointed CEO of Vodafone in July 2003, after serving as a non-executive director of the company. He also did a stint as CEO of Vodafone United States and Asia-Pacific. Sarin joined Vodafone in 1999, when the company acquired AirTouch Communications, where he served as president and CEO.
"Sarin has done a very good job, but has he done everything right? Of course not," said Martin Gutberlet, analyst at Gartner.
Gutberlet gave Sarin high marks for transforming Vodafone from a pure mobile operator into more of a service provider.
Under Sarin's tenure, Vodafone continued to expand its international reach, most recently with the acquisition of Indian operator Hutchison Essar, Gutberlet said. Fixed networks are also part of Vodafone's services now, he said.
Through this expansion, the number of Vodafone subscribers worldwide increased from 120 million to more than 260 million, Vodafone said.
Sarin received a lot of credit for his frank comments about what he thinks the vendors' development plans. At the Mobile World Congress in February, Sarin said WiMax and LTE (Long-Term Evolution) should be merged into one technology. Last year, Sarin challenged vendors to develop LTE faster.
Sarin's comments, along with other pressure from companies such as NTT Docomo and T-Mobile, lit a match under the vendor community resulting in faster LTE development, Gutberlet said.
Colao previously served as head of Vodafone Italy and regional CEO for Southern Europe. He left Vodafone in 2004 to become group CEO of the Italian publisher RCS MediaGroup. He rejoined Vodafone in 2006 as CEO of Vodafone's European region before taking on his current position.
The CEO of Vodafone is one of the most important roles in the industry. The rest of the mobile operators look to Vodafone for technology leadership, according to Richard Webb, directing analyst at Infonetics.
"He has to have a very clear vision and be very vocal about it, but I don't think Vodafone would pick someone who hasn't got that," Webb said.
"Colao's biggest challenge will be to keep Vodafone from turning into a bit pipe, but that is true for all mobile operators. Colao needs a dedicated Internet approach, including areas like advertising," Gutberlet said.
Via releases laptop design as open source
Via Technologies released the hardware design for a low-cost laptop with WiMax support under an open-source license on Tuesday, a move intended to make customization easier and shorten design cycles for system makers.
The CAD (computer-assisted design) files for the OpenBook reference design can be downloaded for free and made available to anyone under the Creative Commons Attribution ShareAlike 3.0 license. The terms of this license allow the CAD files to be freely copied, shared and modified.
The only requirements are that use of the design is attributed to Via and changes made to the design can only be distributed under the same license or one that has similar terms.
"We're hoping we'll get some interesting feedback, and look forward to seeing what the community thinks about this concept," said Richard Brown, vice president of marketing at Via.
The OpenBook is based on Via's 1.6 GHz C7-M processor and VX800 chipset. The design includes an 8.9-inch screen with a resolution of 1,024 pixels by 600 pixels and calls for a hard disk with a capacity of 80G bytes or more. The basic wireless module included in the design supports Wi-Fi and Bluetooth. Optional modules include Assisted GPS (AGPS), WiMax, and support for high-speed cellular networks based on EV-DO (Evolution Data Optimized), HSPA (High-Speed Packet Access), and WCDMA (Wideband Code Division Multiple Access).
Other features of the 1 kilogram (2.2 pounds) OpenBook include a full-size keyboard, up to 2G bytes of DDR (double data rate) memory, a 2-megapixel camera, a memory-card reader, and a 4-cell battery that offers up to three hours of life. The laptop is designed to run Windows Vista, Windows XP, or Linux, including G/OS, SuSE Linux, and Ubuntu.
The OpenBook design is similar in appearance to Everex's CloudBook Max unveiled at the CTIA Wireless exhibition in April, but the two designs are different, Brown said, pointing to subtle design changes made to suit the requirements of Sprint, the operator that commissioned the CloudBook Max.
Depending on the exact configuration, OpenBook systems will likely cost between US$500 to $800, Brown said, adding that the first products will likely hit the market during the third quarter.
Via isn't the first company to release a hardware design as open source. In March, Openmoko, a company set up by Taiwanese hardware maker First International Computer (FIC), released an open-source smartphone design, the Neo 1973. The handset, which runs Linux, supports GSM (Global System for Mobile Communication) and GPRS (General Packet Radio Service) networks, and includes Bluetooth and AGPS.
Like Via's OpenBook, the Neo 1973 hardware design was released under a Creative Commons ShareAlike license.
The CAD (computer-assisted design) files for the OpenBook reference design can be downloaded for free and made available to anyone under the Creative Commons Attribution ShareAlike 3.0 license. The terms of this license allow the CAD files to be freely copied, shared and modified.
The only requirements are that use of the design is attributed to Via and changes made to the design can only be distributed under the same license or one that has similar terms.
"We're hoping we'll get some interesting feedback, and look forward to seeing what the community thinks about this concept," said Richard Brown, vice president of marketing at Via.
The OpenBook is based on Via's 1.6 GHz C7-M processor and VX800 chipset. The design includes an 8.9-inch screen with a resolution of 1,024 pixels by 600 pixels and calls for a hard disk with a capacity of 80G bytes or more. The basic wireless module included in the design supports Wi-Fi and Bluetooth. Optional modules include Assisted GPS (AGPS), WiMax, and support for high-speed cellular networks based on EV-DO (Evolution Data Optimized), HSPA (High-Speed Packet Access), and WCDMA (Wideband Code Division Multiple Access).
Other features of the 1 kilogram (2.2 pounds) OpenBook include a full-size keyboard, up to 2G bytes of DDR (double data rate) memory, a 2-megapixel camera, a memory-card reader, and a 4-cell battery that offers up to three hours of life. The laptop is designed to run Windows Vista, Windows XP, or Linux, including G/OS, SuSE Linux, and Ubuntu.
The OpenBook design is similar in appearance to Everex's CloudBook Max unveiled at the CTIA Wireless exhibition in April, but the two designs are different, Brown said, pointing to subtle design changes made to suit the requirements of Sprint, the operator that commissioned the CloudBook Max.
Depending on the exact configuration, OpenBook systems will likely cost between US$500 to $800, Brown said, adding that the first products will likely hit the market during the third quarter.
Via isn't the first company to release a hardware design as open source. In March, Openmoko, a company set up by Taiwanese hardware maker First International Computer (FIC), released an open-source smartphone design, the Neo 1973. The handset, which runs Linux, supports GSM (Global System for Mobile Communication) and GPRS (General Packet Radio Service) networks, and includes Bluetooth and AGPS.
Like Via's OpenBook, the Neo 1973 hardware design was released under a Creative Commons ShareAlike license.
Sierra Leone set for solar-powered school PC center
Plans are set to install the first computer center powered by solar energy in Sierra Leone.
The beneficiary, the Prince Of Wales (POW) Secondary School, is located less than a third of a mile from Kingtom Power Station, a major Freetown electricity distribution center, but has no power.
The Prince Of Wales Alumni Association (POWAA) branch in the U.S. state of Georgia has proposed to provide the center with new desktop and laptop computers, a solar-power system and high-speed satellite Internet access – which is the only broadband option -- for their school. The estimated total capital cost of the project is between $60,000 and $70,000.
The government-owned school was officially inaugurated by the prince of Wales in 1925, and chartered to foster science education and studies in modern languages. The POWAA in Georgia was founded in 2002 by former POW students residing in the U.S.
The alumni also plan to extend Wi-Fi capability so that students and teachers who already have their own laptops can access the Internet without going to the computer center.
The solar power basics will comprise photovoltaic (PV) panels, batteries, three charge controllers, inverters, meter and breakers. The system will require about 30 solar panels to produce a total wattage of between 5 kilowatts and 6kw.
According to POWAA President Samuel O. Atere-Roberts, the solar equipment including panels and other accessories was procured from African Energy in Arizona. Atere-Roberts said that there have been delays in shipping the equipment to the U.S., due to fluctuating costs, and that installation of the center depends on when the equipment will arrive in Freetown.
POW school principal Millicent Ogoo confirmed the plans, and said that the school is expecting laptops next week.
"We’ve been getting support from organizations but this is the first time we’ll be getting a solar power system. We are also expecting 20 laptops next week. We are very proud of the project. They have really done well. It also shows that they have concern for the school," she said.
A contract for securing the classroom that will host the new computer center has been awarded to Sky Construction in Freetown and work has started in earnest, Atere-Roberts said. He charged more donors to join the project and change history in Sierra Leone as they follow the footsteps of Myeka High School in South Africa. In 2000, Myeka overcame many logistical problems courtesy of a similar project. Pass rates at Myeka school reportedly increased from 55 percent to 69 percent.
The beneficiary, the Prince Of Wales (POW) Secondary School, is located less than a third of a mile from Kingtom Power Station, a major Freetown electricity distribution center, but has no power.
The Prince Of Wales Alumni Association (POWAA) branch in the U.S. state of Georgia has proposed to provide the center with new desktop and laptop computers, a solar-power system and high-speed satellite Internet access – which is the only broadband option -- for their school. The estimated total capital cost of the project is between $60,000 and $70,000.
The government-owned school was officially inaugurated by the prince of Wales in 1925, and chartered to foster science education and studies in modern languages. The POWAA in Georgia was founded in 2002 by former POW students residing in the U.S.
The alumni also plan to extend Wi-Fi capability so that students and teachers who already have their own laptops can access the Internet without going to the computer center.
The solar power basics will comprise photovoltaic (PV) panels, batteries, three charge controllers, inverters, meter and breakers. The system will require about 30 solar panels to produce a total wattage of between 5 kilowatts and 6kw.
According to POWAA President Samuel O. Atere-Roberts, the solar equipment including panels and other accessories was procured from African Energy in Arizona. Atere-Roberts said that there have been delays in shipping the equipment to the U.S., due to fluctuating costs, and that installation of the center depends on when the equipment will arrive in Freetown.
POW school principal Millicent Ogoo confirmed the plans, and said that the school is expecting laptops next week.
"We’ve been getting support from organizations but this is the first time we’ll be getting a solar power system. We are also expecting 20 laptops next week. We are very proud of the project. They have really done well. It also shows that they have concern for the school," she said.
A contract for securing the classroom that will host the new computer center has been awarded to Sky Construction in Freetown and work has started in earnest, Atere-Roberts said. He charged more donors to join the project and change history in Sierra Leone as they follow the footsteps of Myeka High School in South Africa. In 2000, Myeka overcame many logistical problems courtesy of a similar project. Pass rates at Myeka school reportedly increased from 55 percent to 69 percent.
RIM says it can't provide e-mail interception in India
Research In Motion (RIM) has said it is unable to give the Indian government access to messages sent by its enterprise clients over the BlackBerry service.
The BlackBerry security architecture for enterprise customers is specially designed to exclude the capability for RIM or any third party to read encrypted information under any circumstances, the company said in an update to its Indian customers on Monday.
For enterprise customers, the security architecture is based on a symmetric key system whereby the customer creates his own key, and only the customer possesses a copy of his encryption key, RIM said. The company does not possess a "master key", nor does any "back door" exist in the system that would allow RIM or any third party to gain unauthorized access to the key or corporate data, it said.
Further, RIM would be unable to accommodate any request for a copy of an enterprise customer's encryption key, as neither RIM nor any wireless network operator possess a copy of the key, it said.
RIM also offers a separate product for individual customers, BlackBerry Internet Service, hosted by telecommunications operators. It did not comment on that service Monday, and a spokesman was unsure whether carriers offering such a service would have access to the security keys.
The Indian government had refused to allow an Indian network operator, Tata Teleservices, to offer BlackBerry services until the government was able to intercept BlackBerry messages for security reasons. Other mobile service providers, who were already offering the BlackBerry service, were also asked to introduce measures that would allow the government to intercept and read BlackBerry messages whenever necessary.
Governments have a wide range of resources and methodologies to satisfy national security and law enforcement needs without compromising commercial security requirements, RIM said.
The use of strong encryption in wireless technology is not unique to the BlackBerry platform, and is a mandatory requirement for all enterprise-class wireless e-mail services, it added.
Government sources were not immediately available for comment. Discussions between RIM and the government continue, according to informed sources.
The BlackBerry security architecture for enterprise customers is specially designed to exclude the capability for RIM or any third party to read encrypted information under any circumstances, the company said in an update to its Indian customers on Monday.
For enterprise customers, the security architecture is based on a symmetric key system whereby the customer creates his own key, and only the customer possesses a copy of his encryption key, RIM said. The company does not possess a "master key", nor does any "back door" exist in the system that would allow RIM or any third party to gain unauthorized access to the key or corporate data, it said.
Further, RIM would be unable to accommodate any request for a copy of an enterprise customer's encryption key, as neither RIM nor any wireless network operator possess a copy of the key, it said.
RIM also offers a separate product for individual customers, BlackBerry Internet Service, hosted by telecommunications operators. It did not comment on that service Monday, and a spokesman was unsure whether carriers offering such a service would have access to the security keys.
The Indian government had refused to allow an Indian network operator, Tata Teleservices, to offer BlackBerry services until the government was able to intercept BlackBerry messages for security reasons. Other mobile service providers, who were already offering the BlackBerry service, were also asked to introduce measures that would allow the government to intercept and read BlackBerry messages whenever necessary.
Governments have a wide range of resources and methodologies to satisfy national security and law enforcement needs without compromising commercial security requirements, RIM said.
The use of strong encryption in wireless technology is not unique to the BlackBerry platform, and is a mandatory requirement for all enterprise-class wireless e-mail services, it added.
Government sources were not immediately available for comment. Discussions between RIM and the government continue, according to informed sources.
San Francisco's BART in talks for full Wi-Fi rollout
The San Francisco Bay Area Rapid Transit District is negotiating with a startup for a Wi-Fi network that would provide fast Internet access to riders throughout its 104-mile (167 kilometers) regional rail system.
BART would not pay anything for the network, which would be paid for by rider subscriptions and advertising, according to Wi-Fi Rail, a company based near Sacramento that says it has four patents pending on its Wi-Fi technology for predetermined paths such as railways and roads.
Municipal wireless networks have had a hard time financially, but public transit offers a daily captive audience that is growing as gasoline prices rise. Wi-Fi Rail estimates that within three years, as many as 20 percent of BART's 180,000 regular riders will subscribe to the service, according to Michael Cromar, chief financial officer of Wi-Fi Rail.
Wi-Fi Rail has been testing the system for about a year on a stretch of track in downtown San Francisco as well as on an outdoor test track. More than 9,000 people have signed up to use the system and have signed on more than 42,000 times, Cromar said.
Now BART and the company are in negotiations on the terms of a full deployment, in phases, which would take as much as two years. On Thursday, BART staff presented an update at a meeting of the transit system's board of directors.
Unlike other, established Wi-Fi providers, Wi-Fi Rail was willing to build the network, for an estimated US$20 million, at no cost to BART, the agency said. Like Sprint Nextel, which operates cellular base stations along a busy stretch of track in San Francisco, Wi-Fi Rail will have to offer wholesale capacity to other service providers to resell, said BART spokesman Linton Johnson.
The transit agency will use the wireless bandwidth to set up its in-car security cameras for live viewing, and it plans to also put screens in cars that give service information to riders, he said. BART would also receive a licensing fee from Wi-Fi Rail.
Riders will be able to use the service free with commercials that pop up every few minutes or buy a monthly subscription, Cromar said. The monthly fee would be competitive with other hot-spot services that are priced between about $20 and $30, according to Cromar. Daily and other types of subscriptions would also be offered. For that, subscribers would share between 15M bps (bits per second) and 22M bps -- both upstream and downstream -- with other riders in a car. Tests have shown no noticeable slowdown between one and eight riders on a car, he said earlier this year. In tests, the system worked on trains moving as fast as 65 miles per hour.
Riders will connect directly to a standard Cisco Systems access point on each car, which in turn will link up to the trackside network. Underground, that system will use deliberately unshielded coaxial cable, called "leaky coax," and outdoor sections of the track will be served using solar-powered parabolic antennas.
Neither side estimated how long negotiations for the full buildout would take. But once talks are concluded, the first phase of the network should be finished and paid commercial service launched in about four months, according to Cromar.
BART would not pay anything for the network, which would be paid for by rider subscriptions and advertising, according to Wi-Fi Rail, a company based near Sacramento that says it has four patents pending on its Wi-Fi technology for predetermined paths such as railways and roads.
Municipal wireless networks have had a hard time financially, but public transit offers a daily captive audience that is growing as gasoline prices rise. Wi-Fi Rail estimates that within three years, as many as 20 percent of BART's 180,000 regular riders will subscribe to the service, according to Michael Cromar, chief financial officer of Wi-Fi Rail.
Wi-Fi Rail has been testing the system for about a year on a stretch of track in downtown San Francisco as well as on an outdoor test track. More than 9,000 people have signed up to use the system and have signed on more than 42,000 times, Cromar said.
Now BART and the company are in negotiations on the terms of a full deployment, in phases, which would take as much as two years. On Thursday, BART staff presented an update at a meeting of the transit system's board of directors.
Unlike other, established Wi-Fi providers, Wi-Fi Rail was willing to build the network, for an estimated US$20 million, at no cost to BART, the agency said. Like Sprint Nextel, which operates cellular base stations along a busy stretch of track in San Francisco, Wi-Fi Rail will have to offer wholesale capacity to other service providers to resell, said BART spokesman Linton Johnson.
The transit agency will use the wireless bandwidth to set up its in-car security cameras for live viewing, and it plans to also put screens in cars that give service information to riders, he said. BART would also receive a licensing fee from Wi-Fi Rail.
Riders will be able to use the service free with commercials that pop up every few minutes or buy a monthly subscription, Cromar said. The monthly fee would be competitive with other hot-spot services that are priced between about $20 and $30, according to Cromar. Daily and other types of subscriptions would also be offered. For that, subscribers would share between 15M bps (bits per second) and 22M bps -- both upstream and downstream -- with other riders in a car. Tests have shown no noticeable slowdown between one and eight riders on a car, he said earlier this year. In tests, the system worked on trains moving as fast as 65 miles per hour.
Riders will connect directly to a standard Cisco Systems access point on each car, which in turn will link up to the trackside network. Underground, that system will use deliberately unshielded coaxial cable, called "leaky coax," and outdoor sections of the track will be served using solar-powered parabolic antennas.
Neither side estimated how long negotiations for the full buildout would take. But once talks are concluded, the first phase of the network should be finished and paid commercial service launched in about four months, according to Cromar.
TJX staffer sacked after talking about security problems
A low-level TJX employee has lost his job for speaking in public about information security problems he uncovered while working for the company.
The employee, Nick Benson, is a University of Kansas student who worked at T.J. Maxx's Pine Ridge Plaza store in Lawrence, Kansas. In an e-mail interview, he said he was fired Wednesday for violating corporate policy by disclosing proprietary information.
TJX is sensitive about information security after being the victim of a massive data theft, apparently made possible by poor security on the company's wireless networks. That breach, which compromised 94 million credit and debit card accounts, has cost the company tens of millions of dollars in legal settlements.
Benson, also known by his hacker name, Cryptic Mauler, is a frequent poster to computer security discussion groups such as Full Disclosure and the Sla.ckers.org Web forum, where he criticized the company's password policy, its server security settings, and the competence of the technicians who install firewalls at the company's stores.
"I never use anything but cash at their stores, but it's hard to sleep at night knowing the same network stores my employee information," he wrote on Aug. 22, 2007. "For all I know that information has already been picked cleaned by the hackers and [the] company could have swept it under the rug."
Although Benson didn't disclose anything that would have been news to a "vaguely smart" criminal, he did make a mistake by not disclosing the problems he'd found through the proper channels, said Robert Hansen, the CEO of Sectheory.com and owner of the Sla.ckers.org site. He first blogged about Benson's termination on Thursday.
Hansen said he felt bad for Benson, as did many of the contributors to his Web site. "He's a young guy," he said. "He didn't know the rules."
It's an all-too-common story in the information security industry, Hansen said. "When people are new to information disclosure ... they're idealistic and young and they tend to make mistakes," he said. "A good chunk of the people who sympathize with him have had almost exactly the same thing happen to them."
Benson said he reported the issues to his store manager and the company's district loss prevention manager but no immediate action was taken.
Just last week, Benson expressed concern that he might be fired for reporting the problem. "I don't want to lose my job for reporting this," he wrote. "Unfortunately anonymously reporting this will not work, since it would require me giving the store location which would then easily zero me out. "
Apparently TJX zeroed Benson anyhow, identifying him from the IP address he used to post his comments to the Web site, Hansen said.
The company met with him on Wednesday and asked him to explain all the security issues he'd found. After that, he was "fired on the spot," he said.
TJX did not return calls seeking comment for this story.
Benson said the company has threatened to take legal action against him if he talks any more about the company's security problems.
The employee, Nick Benson, is a University of Kansas student who worked at T.J. Maxx's Pine Ridge Plaza store in Lawrence, Kansas. In an e-mail interview, he said he was fired Wednesday for violating corporate policy by disclosing proprietary information.
TJX is sensitive about information security after being the victim of a massive data theft, apparently made possible by poor security on the company's wireless networks. That breach, which compromised 94 million credit and debit card accounts, has cost the company tens of millions of dollars in legal settlements.
Benson, also known by his hacker name, Cryptic Mauler, is a frequent poster to computer security discussion groups such as Full Disclosure and the Sla.ckers.org Web forum, where he criticized the company's password policy, its server security settings, and the competence of the technicians who install firewalls at the company's stores.
"I never use anything but cash at their stores, but it's hard to sleep at night knowing the same network stores my employee information," he wrote on Aug. 22, 2007. "For all I know that information has already been picked cleaned by the hackers and [the] company could have swept it under the rug."
Although Benson didn't disclose anything that would have been news to a "vaguely smart" criminal, he did make a mistake by not disclosing the problems he'd found through the proper channels, said Robert Hansen, the CEO of Sectheory.com and owner of the Sla.ckers.org site. He first blogged about Benson's termination on Thursday.
Hansen said he felt bad for Benson, as did many of the contributors to his Web site. "He's a young guy," he said. "He didn't know the rules."
It's an all-too-common story in the information security industry, Hansen said. "When people are new to information disclosure ... they're idealistic and young and they tend to make mistakes," he said. "A good chunk of the people who sympathize with him have had almost exactly the same thing happen to them."
Benson said he reported the issues to his store manager and the company's district loss prevention manager but no immediate action was taken.
Just last week, Benson expressed concern that he might be fired for reporting the problem. "I don't want to lose my job for reporting this," he wrote. "Unfortunately anonymously reporting this will not work, since it would require me giving the store location which would then easily zero me out. "
Apparently TJX zeroed Benson anyhow, identifying him from the IP address he used to post his comments to the Web site, Hansen said.
The company met with him on Wednesday and asked him to explain all the security issues he'd found. After that, he was "fired on the spot," he said.
TJX did not return calls seeking comment for this story.
Benson said the company has threatened to take legal action against him if he talks any more about the company's security problems.
Future Apple devices may be solar powered
Employees at Apple have filed a patent for integrating solar cells into portable devices by placing them underneath the layers of a touch-sensitive display, according to the filing.
Solar power could help make devices truly portable, freeing from the need for wires to connect them to a power supply.
When generating electricity from solar panels, the larger the panel the better -- but as the patent "Solar cells on portable devices" warns, after allowing space for buttons, screens and a way to hold the device, only a small area is left on most devices for solar cells.
One of the ways around that suggested in the patent is to stack a touch-sensitive layer, a display and solar panel on top of one another. That could make Apple's iPhone and iPod Touch good candidates for such a power supply, as the display occupies almost the entire face of those devices.
The use of solar powered charging in portable devices is starting to get more attention, for more immediate consumer use as well.
When Vodafone announced its plan in April to reduce its emissions of the greenhouse gase CO2 by 50 percent by 2020, it also announced plans for solar-powered phone chargers and universal phone chargers for Vodafone-branded handsets.
At the recent ITU Telecom Africa 2008 conference, Ugandan Minister for Communications and Information and Communication Technologies Ham-Mukasa Mulira talked about trials of solar-powered charging conducted there, which had showed promise.
Solar power could help make devices truly portable, freeing from the need for wires to connect them to a power supply.
When generating electricity from solar panels, the larger the panel the better -- but as the patent "Solar cells on portable devices" warns, after allowing space for buttons, screens and a way to hold the device, only a small area is left on most devices for solar cells.
One of the ways around that suggested in the patent is to stack a touch-sensitive layer, a display and solar panel on top of one another. That could make Apple's iPhone and iPod Touch good candidates for such a power supply, as the display occupies almost the entire face of those devices.
The use of solar powered charging in portable devices is starting to get more attention, for more immediate consumer use as well.
When Vodafone announced its plan in April to reduce its emissions of the greenhouse gase CO2 by 50 percent by 2020, it also announced plans for solar-powered phone chargers and universal phone chargers for Vodafone-branded handsets.
At the recent ITU Telecom Africa 2008 conference, Ugandan Minister for Communications and Information and Communication Technologies Ham-Mukasa Mulira talked about trials of solar-powered charging conducted there, which had showed promise.
Samsung shows 256GB SSD, plans launch this year
Samsung Electronics plans to launch within this year a flash memory-based solid-state disk that boasts a 256G byte capacity and high-speed interface, it said Monday.
The drive, which was unveiled in prototype form at a Samsung event in Taipei, has the same form factor as a 9.5-millimeter high 2.5-inch hard-disk drive for which it is designed to be a drop-in replacement.
Solid-state disks (SSDs) are an emerging type of storage device that use flash memory chips in place of the spinning magnetic disks used in hard-disk drives. The memory chips mean the drives are more sturdy and typically have a higher performance but the per-byte storage cost is also much higher, so they are generally more expensive. That has largely restricted them to niche applications but as flash prices come down they are expected to become more widely used.
Samsung, which is one of the world's largest makers of flash memory chips, is eager to see the drives become popular as their widespread use will represent a big new market for its chips.
The prototype drive announced by the company has a read speed of 200M bytes per second (Bps) and a sequential write speed of 160M Bps, said Samsung.
Samples of the drive will be available to customers from September with mass production due by the end of the year.
A version with a similar form factor to a 1.8-inch drive is also expected to be available in the fourth quarter of the year, the company said.
The drive isn't the first SSD launched at this capacity. Last month a competitor, U.S.-based Super Talent, began sales of a 256G byte SSD but that drive is thicker than Samsung's at 12.5 millimeters. It has a SATA I interface, which means read speeds of 65M bytes per second and write speeds of 50M bytes per second.
The drive, which was unveiled in prototype form at a Samsung event in Taipei, has the same form factor as a 9.5-millimeter high 2.5-inch hard-disk drive for which it is designed to be a drop-in replacement.
Solid-state disks (SSDs) are an emerging type of storage device that use flash memory chips in place of the spinning magnetic disks used in hard-disk drives. The memory chips mean the drives are more sturdy and typically have a higher performance but the per-byte storage cost is also much higher, so they are generally more expensive. That has largely restricted them to niche applications but as flash prices come down they are expected to become more widely used.
Samsung, which is one of the world's largest makers of flash memory chips, is eager to see the drives become popular as their widespread use will represent a big new market for its chips.
The prototype drive announced by the company has a read speed of 200M bytes per second (Bps) and a sequential write speed of 160M Bps, said Samsung.
Samples of the drive will be available to customers from September with mass production due by the end of the year.
A version with a similar form factor to a 1.8-inch drive is also expected to be available in the fourth quarter of the year, the company said.
The drive isn't the first SSD launched at this capacity. Last month a competitor, U.S.-based Super Talent, began sales of a 256G byte SSD but that drive is thicker than Samsung's at 12.5 millimeters. It has a SATA I interface, which means read speeds of 65M bytes per second and write speeds of 50M bytes per second.
China plans telecom restructuring, clears way for 3G
China announced a restructuring plan for the country's fixed-line and mobile operators on Saturday, a final step towards the long-awaited release of 3G (third-generation) mobile licenses.
The plan, long a focus of discussion among Chinese government organizations, will merge or split the operations of Chinese carriers, creating three new operators that will have both mobile and fixed-line services. At present, Chinese fixed-line operators -- which are split along geographical lines -- are not permitted to offer mobile services, while mobile operators may not offer fixed-line services.
When the restructuring is completed, China will issue 3G licenses, the government said in a statement (in Chinese) that was signed by the newly formed Ministry of Industry and Information, the National Development and Reform Commission, and the Ministry of Finance.
The 3G licenses may even be issued before the restructuring process is completed, said Bryan Wang, Springboard Research's Greater China country manager and director of connectivity research. "Optimistically, it could happen before end of this year," he said.
By restructuring the operators into companies that offer both types of services, the Chinese government hopes to enhance the competitiveness of local operators and clear the way for 3G licenses to be released. China has one of the world's biggest mobile markets, but will be one of the last to roll out commercial 3G services.
Under the restructuring plan, fixed-line carrier China Telecommunications (China Telecom) will acquire the CDMA (Code Division Multiple Access) mobile network from China United Telecommunications (China Unicom). China Telecom will also acquire China Satcom, which offers satellite-based communications services.
China Unicom will retain its GSM (Global System for Mobile Communication) network and merge with fixed-line operator China Network Communications (China Netcom).
China Mobile Communications, China's largest mobile operator, will merge with China Tietong Telecommunication, which operates a national fixed-line network.
The most difficult part of the restructuring process will involve splitting out China Unicom's CDMA network and transferring it to China Telecom. "China Telecom has already set up a team for CDMA, but obviously that's a smaller team conducting some studies to understand Unicom's network," Wang said.
Growing that team will be a challenge, as some important China Unicom executives may not join China Telecom. "Unicom plans to keep all the key guys for its GSM business," he said.
The statement that announced the plan did not offer a deadline for when the restructuring will be completed, but a report by the official Xinhua News Agency estimated the process could take 12 months to 18 months.
However, Wang estimated the process may be completed sooner, perhaps "within 12 months."
The plan, long a focus of discussion among Chinese government organizations, will merge or split the operations of Chinese carriers, creating three new operators that will have both mobile and fixed-line services. At present, Chinese fixed-line operators -- which are split along geographical lines -- are not permitted to offer mobile services, while mobile operators may not offer fixed-line services.
When the restructuring is completed, China will issue 3G licenses, the government said in a statement (in Chinese) that was signed by the newly formed Ministry of Industry and Information, the National Development and Reform Commission, and the Ministry of Finance.
The 3G licenses may even be issued before the restructuring process is completed, said Bryan Wang, Springboard Research's Greater China country manager and director of connectivity research. "Optimistically, it could happen before end of this year," he said.
By restructuring the operators into companies that offer both types of services, the Chinese government hopes to enhance the competitiveness of local operators and clear the way for 3G licenses to be released. China has one of the world's biggest mobile markets, but will be one of the last to roll out commercial 3G services.
Under the restructuring plan, fixed-line carrier China Telecommunications (China Telecom) will acquire the CDMA (Code Division Multiple Access) mobile network from China United Telecommunications (China Unicom). China Telecom will also acquire China Satcom, which offers satellite-based communications services.
China Unicom will retain its GSM (Global System for Mobile Communication) network and merge with fixed-line operator China Network Communications (China Netcom).
China Mobile Communications, China's largest mobile operator, will merge with China Tietong Telecommunication, which operates a national fixed-line network.
The most difficult part of the restructuring process will involve splitting out China Unicom's CDMA network and transferring it to China Telecom. "China Telecom has already set up a team for CDMA, but obviously that's a smaller team conducting some studies to understand Unicom's network," Wang said.
Growing that team will be a challenge, as some important China Unicom executives may not join China Telecom. "Unicom plans to keep all the key guys for its GSM business," he said.
The statement that announced the plan did not offer a deadline for when the restructuring will be completed, but a report by the official Xinhua News Agency estimated the process could take 12 months to 18 months.
However, Wang estimated the process may be completed sooner, perhaps "within 12 months."
Monday, May 26, 2008
Microsoft's ODF support points to OOXML challenges
Microsoft's plan to include ODF support in its Office suite next year reflects continued challenges for the OOXML file format, as the industry moves ahead with adopting ODF and sorts out OOXML's troubles.
Though OOXML (Open Office XML) was approved by the ISO on April 1, it continues to face impediments to widespread adoption. On Friday, it was revealed that South Africa is appealing ISO (International Organization for Standardization) approval of the standard. And earlier this week, New York state officially promoted ODF (OpenDocument Format) as a standard file format based on customer demand as it launched a new initiative for technology openness and open standards.
"If all that proprietary vendors are waiting for before they directly support ODF is a 'broad based customer request' then they should be aware that such a demand already exists in New York State," according to the report, which has been posted online.
Even Microsoft has delayed full support of the current OOXML specification, yet will support ODF in Office in a service pack to be released early next year, a move the company announced Wednesday. Office will not natively support the current OOXML specification until its next version code-named Office 14, a release date for which has not been announced.
Jay Lyman, an analyst with The 451 Group, said Microsoft coming out in favor of supporting ODF first shows that Microsoft, "is being steered toward greater support for open source, open standards and interoperability" by customers, "which in this case are primarily governments in the U.S. and around the world."
While OOXML will certainly be adopted and used in the future, ODF has a head start because it was approved by the ISO first and is not plagued by lingering questions or doubts about its merit as an international standard.
"Governments that must move now on their format plans are seeing benefits in ODF, which is approved, backed by a number of large vendors and being adopted around the globe," Lyman said.
The decision to appeal casts doubt on OOXML as a viable alternative to the already approved ODF, said Andrew Updegrove, an open-source advocate and attorney with Gesmer Updegrove in Boston. "No one can now say, until this is resolved, that OOXML 'is a global standard,'" he said.
Updegrove also noted that because Microsoft is delaying Office support for OOXML, there is reason to take the appeal very seriously because there is no sense of urgency around resolving it and deploying the format in the near term.
Microsoft declined to comment on South Africa's appeal, saying only that the ISO and the IEC (International Electrotechnical Commission) have a clear process for evaluating and resolving appeals and that the issue remains between them and the South African standards body. The company also promoted its moves toward interoperability in a statement through its public relations firm.
As for New York's decision to promote ODF, Jason Matusow, senior director of interoperability at Microsoft, noted in an e-mail that in the New York study the state calls for technology to be considered on a "value-for-money" basis and that openness is just one consideration among many.
He also said that New York officials recommend that the state legislature "not mandate in statute the use of any specific document creation and preservation technology," implying that it's likely the state will not officially favor ODF over any other file format.
(Peter Sayer in Paris contributed to this report.)
Though OOXML (Open Office XML) was approved by the ISO on April 1, it continues to face impediments to widespread adoption. On Friday, it was revealed that South Africa is appealing ISO (International Organization for Standardization) approval of the standard. And earlier this week, New York state officially promoted ODF (OpenDocument Format) as a standard file format based on customer demand as it launched a new initiative for technology openness and open standards.
"If all that proprietary vendors are waiting for before they directly support ODF is a 'broad based customer request' then they should be aware that such a demand already exists in New York State," according to the report, which has been posted online.
Even Microsoft has delayed full support of the current OOXML specification, yet will support ODF in Office in a service pack to be released early next year, a move the company announced Wednesday. Office will not natively support the current OOXML specification until its next version code-named Office 14, a release date for which has not been announced.
Jay Lyman, an analyst with The 451 Group, said Microsoft coming out in favor of supporting ODF first shows that Microsoft, "is being steered toward greater support for open source, open standards and interoperability" by customers, "which in this case are primarily governments in the U.S. and around the world."
While OOXML will certainly be adopted and used in the future, ODF has a head start because it was approved by the ISO first and is not plagued by lingering questions or doubts about its merit as an international standard.
"Governments that must move now on their format plans are seeing benefits in ODF, which is approved, backed by a number of large vendors and being adopted around the globe," Lyman said.
The decision to appeal casts doubt on OOXML as a viable alternative to the already approved ODF, said Andrew Updegrove, an open-source advocate and attorney with Gesmer Updegrove in Boston. "No one can now say, until this is resolved, that OOXML 'is a global standard,'" he said.
Updegrove also noted that because Microsoft is delaying Office support for OOXML, there is reason to take the appeal very seriously because there is no sense of urgency around resolving it and deploying the format in the near term.
Microsoft declined to comment on South Africa's appeal, saying only that the ISO and the IEC (International Electrotechnical Commission) have a clear process for evaluating and resolving appeals and that the issue remains between them and the South African standards body. The company also promoted its moves toward interoperability in a statement through its public relations firm.
As for New York's decision to promote ODF, Jason Matusow, senior director of interoperability at Microsoft, noted in an e-mail that in the New York study the state calls for technology to be considered on a "value-for-money" basis and that openness is just one consideration among many.
He also said that New York officials recommend that the state legislature "not mandate in statute the use of any specific document creation and preservation technology," implying that it's likely the state will not officially favor ODF over any other file format.
(Peter Sayer in Paris contributed to this report.)
Member of online piracy group faces prison term
A member of an online piracy group has been convicted of conspiracy to commit criminal copyright infringement and faces up to five years in prison, the U.S. Department of Justice said.
Barry Gitarts, 25, of Brooklyn, New York, was convicted Thursday in U.S. District Court for the Eastern District of Virginia. In addition to up to five years in prison, Gitarts could face a fine of US$250,000, three years of probation and a requirement that he make full restitution, the DOJ said.
Gitarts was a key member of the Internet music piracy group Apocalypse Production Crew (APC) from at least June 2003 through April 2004, the DOJ said. Gitarts paid for and administered a computer server located in Texas that APC group members used to upload and download hundreds of thousands of copies of pirated music, movies, software and video games, the agency said.
Gitarts also received payment from the leader of APC, the DOJ said.
APC was a "first-provider" or "release group" of unauthorized materials online, the agency said. Release groups are the original sources for a majority of the pirated works downloaded through the Internet, the DOJ said.
"Music piracy is stealing and, unless you want to end up in a federal prison, don't do it," Chuck Rosenberg, U.S. attorney for the Eastern District of Virginia, said in a statement.
The Recording Industry Association of America (RIAA) praised federal authorities for bringing the case to trial. The Gitarts case was the first time a federal prosecution of an online criminal copyright infringement case primarily featuring music has gone to trial, the RIAA said.
"The crimes committed here -- as well as the harm to the music community -- are severe, and so are the consequences," Brad Buckles, the RIAA's executive vice president for antipiracy, said in a statement. "Groups like APC that specialize in leaking pre-release music are at the top of the piracy pyramid, and the efforts of federal law enforcement have dealt a real blow to these kinds of operations."
The Gitarts case is part of an ongoing federal investigation into the organized piracy groups responsible for the distribution of movies, software, games and music on the Internet. There have been 15 criminal convictions of APC members and 56 total convictions in Operation FastLink, an international investigation into Internet piracy.
Barry Gitarts, 25, of Brooklyn, New York, was convicted Thursday in U.S. District Court for the Eastern District of Virginia. In addition to up to five years in prison, Gitarts could face a fine of US$250,000, three years of probation and a requirement that he make full restitution, the DOJ said.
Gitarts was a key member of the Internet music piracy group Apocalypse Production Crew (APC) from at least June 2003 through April 2004, the DOJ said. Gitarts paid for and administered a computer server located in Texas that APC group members used to upload and download hundreds of thousands of copies of pirated music, movies, software and video games, the agency said.
Gitarts also received payment from the leader of APC, the DOJ said.
APC was a "first-provider" or "release group" of unauthorized materials online, the agency said. Release groups are the original sources for a majority of the pirated works downloaded through the Internet, the DOJ said.
"Music piracy is stealing and, unless you want to end up in a federal prison, don't do it," Chuck Rosenberg, U.S. attorney for the Eastern District of Virginia, said in a statement.
The Recording Industry Association of America (RIAA) praised federal authorities for bringing the case to trial. The Gitarts case was the first time a federal prosecution of an online criminal copyright infringement case primarily featuring music has gone to trial, the RIAA said.
"The crimes committed here -- as well as the harm to the music community -- are severe, and so are the consequences," Brad Buckles, the RIAA's executive vice president for antipiracy, said in a statement. "Groups like APC that specialize in leaking pre-release music are at the top of the piracy pyramid, and the efforts of federal law enforcement have dealt a real blow to these kinds of operations."
The Gitarts case is part of an ongoing federal investigation into the organized piracy groups responsible for the distribution of movies, software, games and music on the Internet. There have been 15 criminal convictions of APC members and 56 total convictions in Operation FastLink, an international investigation into Internet piracy.
IBM-Cognos to refund $13 million to Massachusetts
IBM will repay US$13 million to Massachusetts for performance management software its subsidiary, Cognos, sold to the state in August 2007, according to an agreement reached this week.
The deal came under scrutiny last year following allegations the procurement process had been rushed to favor Cognos.
IBM declined to comment beyond a brief statement confirming it will give back the money and that the state will return the software. The statement also noted that Cognos struck the deal before IBM acquired it.
An IBM spokesman, Chris Andrews, refused to provide documentation pertaining to the agreement, as did Governor Deval Patrick's office, which issued a similar statement.
Massachusetts House Speaker Sal DiMasi has been at the center of a political firestorm over the controversy, with allegations flying over his connections to Cognos. The Boston Globe reported that Cognos was a sponsor of a memorial golf tournament DiMasi helped organize and that a DiMasi friend served as a lobbyist for the vendor.
DiMasi has adamantly denied any wrongdoing. His office declined to comment on Friday.
However, a March report by state Inspector General Gregory Sullivan's office provides a time line of an investigation the agency conducted into the software deal.
The inspector general began scrutinizing the procurement following a tip from a whistleblower, as well as a December request from Patrick's administration, according to Jack McCarthy, a spokesman for Sullivan's office.
"They accomplished what we asked them to do, it appears, to get the money back from a flawed procurement process," McCarthy said. "It's nice to know IBM recognized the flaws in the process and did the right thing for Massachusetts. We're also happy the Patrick administration hung tough and followed through."
The report does not mention DiMasi, but describes a number of alleged flaws in the way the Cognos pact was formed.
For one, the state's Information Technology Division did not widely advertise the fact it was looking for performance management software, according to the report.
Instead, "a staff member at ITD simply consulted a chart of leaders in performance management developed by the analytical firm Gartner Group and e-mailed the Request for Quotes to four companies identified as 'leaders.' "
Three vendors -- Cognos, Oracle and SAS -- responded to the e-mail, according to the report. ITD staffers developed a scoring sheet containing 104 criteria. The ITD team in charge never finished evaluating the vendors with the sheet, but at the time they stopped Cognos had the high score, with 69.39 points, followed by SAS with 57.38 and Oracle with 27.49, the report states.
The IG's investigation found that due to a typographical error in the spreadsheet's formula, the scores for all three vendors were flawed, with many points going uncounted.
The ITD procurement team never finalized or submitted the scoring document to the Patrick administration, and therefore the IG's office did not attempt to rework the calculations, according to the report.
Instead, after meeting with all three vendors the procurement team "unanimously felt that much more information had to be gathered because they did not adequately understand how various agencies and administrators would use performance management software," and recommended the procurement process be done over, the report states.
But on May 18, 2007, the acting CIO of ITD, Bethann Pepoli, told Henry Dormitzer, deputy to Patrick's secretary of administration and finance, Leslie Kirwan, that Cognos "was the best choice for performance management software procurement."
Dormitzer relayed the information to Kirwan, who subsequently signed an agreement to buy the software in August, the report states.
DiMasi allegedly met personally with Pepoli at some point to discuss the importance of performance management software, according to The Boston Globe. "The speaker and I never had a conversation about a vendor," Pepoli told the Globe. "I don't feel like my recommendation was influenced by any outside sources."
The ITD has "already approached us to help them go through the procurement process" as they once again seek to purchase performance management software," McCarthy said.
"It may not be Cognos' software," he noted.
The deal came under scrutiny last year following allegations the procurement process had been rushed to favor Cognos.
IBM declined to comment beyond a brief statement confirming it will give back the money and that the state will return the software. The statement also noted that Cognos struck the deal before IBM acquired it.
An IBM spokesman, Chris Andrews, refused to provide documentation pertaining to the agreement, as did Governor Deval Patrick's office, which issued a similar statement.
Massachusetts House Speaker Sal DiMasi has been at the center of a political firestorm over the controversy, with allegations flying over his connections to Cognos. The Boston Globe reported that Cognos was a sponsor of a memorial golf tournament DiMasi helped organize and that a DiMasi friend served as a lobbyist for the vendor.
DiMasi has adamantly denied any wrongdoing. His office declined to comment on Friday.
However, a March report by state Inspector General Gregory Sullivan's office provides a time line of an investigation the agency conducted into the software deal.
The inspector general began scrutinizing the procurement following a tip from a whistleblower, as well as a December request from Patrick's administration, according to Jack McCarthy, a spokesman for Sullivan's office.
"They accomplished what we asked them to do, it appears, to get the money back from a flawed procurement process," McCarthy said. "It's nice to know IBM recognized the flaws in the process and did the right thing for Massachusetts. We're also happy the Patrick administration hung tough and followed through."
The report does not mention DiMasi, but describes a number of alleged flaws in the way the Cognos pact was formed.
For one, the state's Information Technology Division did not widely advertise the fact it was looking for performance management software, according to the report.
Instead, "a staff member at ITD simply consulted a chart of leaders in performance management developed by the analytical firm Gartner Group and e-mailed the Request for Quotes to four companies identified as 'leaders.' "
Three vendors -- Cognos, Oracle and SAS -- responded to the e-mail, according to the report. ITD staffers developed a scoring sheet containing 104 criteria. The ITD team in charge never finished evaluating the vendors with the sheet, but at the time they stopped Cognos had the high score, with 69.39 points, followed by SAS with 57.38 and Oracle with 27.49, the report states.
The IG's investigation found that due to a typographical error in the spreadsheet's formula, the scores for all three vendors were flawed, with many points going uncounted.
The ITD procurement team never finalized or submitted the scoring document to the Patrick administration, and therefore the IG's office did not attempt to rework the calculations, according to the report.
Instead, after meeting with all three vendors the procurement team "unanimously felt that much more information had to be gathered because they did not adequately understand how various agencies and administrators would use performance management software," and recommended the procurement process be done over, the report states.
But on May 18, 2007, the acting CIO of ITD, Bethann Pepoli, told Henry Dormitzer, deputy to Patrick's secretary of administration and finance, Leslie Kirwan, that Cognos "was the best choice for performance management software procurement."
Dormitzer relayed the information to Kirwan, who subsequently signed an agreement to buy the software in August, the report states.
DiMasi allegedly met personally with Pepoli at some point to discuss the importance of performance management software, according to The Boston Globe. "The speaker and I never had a conversation about a vendor," Pepoli told the Globe. "I don't feel like my recommendation was influenced by any outside sources."
The ITD has "already approached us to help them go through the procurement process" as they once again seek to purchase performance management software," McCarthy said.
"It may not be Cognos' software," he noted.
Mozilla IDs 10 bugs, 3 'critical' in Firefox 3.0 RC1
Mozilla has identified 10 high-priority bugs in Firefox 3.0, three of them pegged "critical," but won't decide until next week whether to release the browser anyway or restart the final stretch by issuing a second release candidate (RC2).
"We are making a go/no go decision early next week, as we are still collecting feedback [on Release Candidate 1]," Mike Schroepfer, Mozilla's vice president of engineering, said in an e-mail Thursday.
Firefox 3.0 Release Candidate 1 (RC1) launched a week ago, but Mozilla has not yet committed to RC2. Previously, the company has only said it is targeting June as the release window for the final code.
On the "mozilla.dev.planning" newsgroup, Schroepfer also said that on May 27 Mozilla will either call Firefox 3.0 finished with RC1, or build RC2 with fixes for the 10 bugs that have been collected.
In the meantime, testing will begin on the 10 bugs. "If we need to do an RC2, they'll be ready to go," he said. "If we ship RC1, we can get them in the 3.0.1."
The bug list includes three marked "critical" on Bugzilla, Mozilla's bug-tracking database and management system. Eight of the bugs affect Firefox on Windows, Mac OS X and Linux, while two afflict only Linux.
One of Linux bugs has caught the eye of some Firefox users, in part, because of a short blog post that garnered attention on Digg.com. The blogger, Jason Clinton, who works for Advanced Clustering Technologies Inc., a Kansas City company that specializes in cluster-based systems and Linux servers, took Mozilla to task.
On Tuesday, Clinton called Mozilla's support for Linux "second-class" and blasted the open-source developer over a bug. "Release managers just made the call that Firefox 3.0 will release with a known bug which brings Linux systems to their knees."
The bug Clinton referenced, tagged as "421482" in Bugzilla, is one of the 10 on the list that Mozilla's using to decide whether to release Firefox 3.0 as is or craft RC2 for another go towards final code.
In Bugzilla, developers argued over the extent of the problem -- which some Linux users said seriously affected Firefox's performance, as well as their systems overall -- and where the fault lay -- in the browser or in SQLite, the database Firefox uses for its revamped bookmark and history feature, dubbed "Places."
On Wednesday, in a separate e-mail, Schroepfer said that Mozilla developers were looking into the bug and were confident a solution had been found. "You can see that a couple different issues have been accidently confused," he said. "Overall, I think we have some good options to make this work well."
Firefox 3.0 will be the first major upgrade to the browser since October 2006. But Mozilla may ship another version before the end of the year, Schroepfer has said, in order to add features that weren't ready in time for Firefox 3.0.
Firefox 3 RC1 can be downloaded for Windows, Mac OS X and Linux in 41 languages from Mozilla's site.
"We are making a go/no go decision early next week, as we are still collecting feedback [on Release Candidate 1]," Mike Schroepfer, Mozilla's vice president of engineering, said in an e-mail Thursday.
Firefox 3.0 Release Candidate 1 (RC1) launched a week ago, but Mozilla has not yet committed to RC2. Previously, the company has only said it is targeting June as the release window for the final code.
On the "mozilla.dev.planning" newsgroup, Schroepfer also said that on May 27 Mozilla will either call Firefox 3.0 finished with RC1, or build RC2 with fixes for the 10 bugs that have been collected.
In the meantime, testing will begin on the 10 bugs. "If we need to do an RC2, they'll be ready to go," he said. "If we ship RC1, we can get them in the 3.0.1."
The bug list includes three marked "critical" on Bugzilla, Mozilla's bug-tracking database and management system. Eight of the bugs affect Firefox on Windows, Mac OS X and Linux, while two afflict only Linux.
One of Linux bugs has caught the eye of some Firefox users, in part, because of a short blog post that garnered attention on Digg.com. The blogger, Jason Clinton, who works for Advanced Clustering Technologies Inc., a Kansas City company that specializes in cluster-based systems and Linux servers, took Mozilla to task.
On Tuesday, Clinton called Mozilla's support for Linux "second-class" and blasted the open-source developer over a bug. "Release managers just made the call that Firefox 3.0 will release with a known bug which brings Linux systems to their knees."
The bug Clinton referenced, tagged as "421482" in Bugzilla, is one of the 10 on the list that Mozilla's using to decide whether to release Firefox 3.0 as is or craft RC2 for another go towards final code.
In Bugzilla, developers argued over the extent of the problem -- which some Linux users said seriously affected Firefox's performance, as well as their systems overall -- and where the fault lay -- in the browser or in SQLite, the database Firefox uses for its revamped bookmark and history feature, dubbed "Places."
On Wednesday, in a separate e-mail, Schroepfer said that Mozilla developers were looking into the bug and were confident a solution had been found. "You can see that a couple different issues have been accidently confused," he said. "Overall, I think we have some good options to make this work well."
Firefox 3.0 will be the first major upgrade to the browser since October 2006. But Mozilla may ship another version before the end of the year, Schroepfer has said, in order to add features that weren't ready in time for Firefox 3.0.
Firefox 3 RC1 can be downloaded for Windows, Mac OS X and Linux in 41 languages from Mozilla's site.
Sunday, May 25, 2008
Symantec: Microsoft to blame for Windows XP SP3 registry
Symantec Thursday said it was Microsoft's code that crippled some PCs after upgrades to Windows XP Service Pack 3 (SP3) emptied Device Manager, deleted network connections, and packed the registry with thousands of bogus entries.
"We finally got to the bottom of this last night," said Dave Cole, Symantec's senior director for product management of its consumer software. "All of these problems are related to the same thing, a Microsoft file that created all the garbage entries [in the registry]."
He also said that some of the same symptoms had been acknowledged by Microsoft when users updated to Windows XP SP2 several years ago; Cole referenced a pair of Microsoft support documents to back up his claim.
Two weeks ago, after Microsoft launched Windows XP SP3 on Windows Update, users started reporting that their network cards and previously crafted connections had mysteriously vanished from Windows after updating with the service pack. The Device Manager had been emptied, they said, and Windows' registry, a directory that stores settings and other critical information, had been packed with large numbers of bogus entries.
Most users who posted messages on Microsoft's XP SP3 support forum said that the errant registry keys -- which started with characters such as "$%&" and appeared corrupted at first glance -- were located in sections devoted to settings for Symantec products. Not surprisingly, they quickly pinned blame on the security company.
Earlier this week, Symantec denied that its software was at fault, and instead pointed a finger at Microsoft.
Thursday, Cole said Symantec engineers had connected the current problem to a Microsoft file named "fixccs.exe." According to information on the Web, fixccs.exe stands for "Fix CCS MaxSubkeyName mismatch," and appears to be part of both XP SP3's and SP2's update packages.
Cole wasn't sure exactly what function fixccs.exe served. "But it caused similar problems with the Device Manager after SP2. It looks like it's reared its head again."
Two Microsoft support documents -- KB893249 and KB914450 -- both describe a problem remarkably similar to what users have reported recently. "After you install Windows XP Service Pack 2 (SP2) on a Windows XP-based computer, the Device Manager window is blank or some devices no longer appear," reads KB893249.
The fixccs.exe file attempts to make changes to the registry, said Cole, but in some cases also adds large numbers of unnecessary keys. When asked why so many users had reported seeing the errant entries in sections reserved for Symantec products, Cole called it "the luck of the draw. We have a fair number of keys in the registry, and we're on a lot of systems. This is not exclusive to Symantec."
Others have noted that too. A user identified as MRFREEZE61, who posted the first message on the Microsoft support forum thread two weeks ago, and later came up with a workaround, said as much today.
"The reported problems are not just limited to those using Symantec products," wrote MRFREEZE61 in a comment added to the original Computerworld story. "Folks on the forum report this specific registry corruption with no Symantec products installed at all. Some find this corruption in device control set enumerators associated with UPNP (Universal Plug and Play) and other 'legacy devices,' others from users of Avast [Antivirus]."
Fixccs.exe has also been linked to problems some users had installing early builds of XP SP3 late last year. In a support forum thread that started Dec. 22, 2007, Shashank Bansal, a Microsoft engineer helping users troubleshoot XP SP3 installation bugs, said: "This is a serious problem for us and we would like to investigate it to further depths. We would need help from all users on this forum for the same." Bansal then asked users who had had trouble updating from XP SP2 to SP3 to identify the process that had hung or had hogged CPU cycles. "Look out for cscipt.exe or fixccs.exe," he asked.
On Thursday, Cole said Symantec was working on a standalone tool that would delete the extraneous registry entries. "We hope to have it ready pretty quickly," he said. "We're working with Microsoft in the normal channels."
That word must not have trickled down to Microsoft's technical support representatives. Users who have posted to Symantec's support forum and others who have e-mailed Computerworld claim that they have been told by Microsoft support that the fault is all or partially Symantec's.
A user going by "ZLevee" copied messages received from Microsoft support to a Thursday post on the Symantec support site. "Based on the current research, the issue can probably be caused by the conflicts between SP3 and Norton. Please let me know if you have any Norton product installed.," ZLevee said the Microsoft support representative had claimed.
A Computerworld reader e-mailed an account of his experience last week with Microsoft's support. "I had an online chat with a tech support person named 'Obaid' on 5/18," said Thom Nielsen in the e-mail. "He told me that Symantec products do NOT work with XP SP3. He told me Symantec is aware of the problem(s) & is working on it."
"This is the first I've heard of this," said Cole when asked to comment. "I hope we can clear up any confusion."
When asked earlier Thursday whether it had uncovered any more information about the disappearing Device Manager and the corrupted registry entries, Microsoft said it nothing new to add beyond the recommendation it made Tuesday: that users contact the company's technical support desk if they have had problems upgrading to XP SP3.
Microsoft was not available for comment Thursday night.
"We finally got to the bottom of this last night," said Dave Cole, Symantec's senior director for product management of its consumer software. "All of these problems are related to the same thing, a Microsoft file that created all the garbage entries [in the registry]."
He also said that some of the same symptoms had been acknowledged by Microsoft when users updated to Windows XP SP2 several years ago; Cole referenced a pair of Microsoft support documents to back up his claim.
Two weeks ago, after Microsoft launched Windows XP SP3 on Windows Update, users started reporting that their network cards and previously crafted connections had mysteriously vanished from Windows after updating with the service pack. The Device Manager had been emptied, they said, and Windows' registry, a directory that stores settings and other critical information, had been packed with large numbers of bogus entries.
Most users who posted messages on Microsoft's XP SP3 support forum said that the errant registry keys -- which started with characters such as "$%&" and appeared corrupted at first glance -- were located in sections devoted to settings for Symantec products. Not surprisingly, they quickly pinned blame on the security company.
Earlier this week, Symantec denied that its software was at fault, and instead pointed a finger at Microsoft.
Thursday, Cole said Symantec engineers had connected the current problem to a Microsoft file named "fixccs.exe." According to information on the Web, fixccs.exe stands for "Fix CCS MaxSubkeyName mismatch," and appears to be part of both XP SP3's and SP2's update packages.
Cole wasn't sure exactly what function fixccs.exe served. "But it caused similar problems with the Device Manager after SP2. It looks like it's reared its head again."
Two Microsoft support documents -- KB893249 and KB914450 -- both describe a problem remarkably similar to what users have reported recently. "After you install Windows XP Service Pack 2 (SP2) on a Windows XP-based computer, the Device Manager window is blank or some devices no longer appear," reads KB893249.
The fixccs.exe file attempts to make changes to the registry, said Cole, but in some cases also adds large numbers of unnecessary keys. When asked why so many users had reported seeing the errant entries in sections reserved for Symantec products, Cole called it "the luck of the draw. We have a fair number of keys in the registry, and we're on a lot of systems. This is not exclusive to Symantec."
Others have noted that too. A user identified as MRFREEZE61, who posted the first message on the Microsoft support forum thread two weeks ago, and later came up with a workaround, said as much today.
"The reported problems are not just limited to those using Symantec products," wrote MRFREEZE61 in a comment added to the original Computerworld story. "Folks on the forum report this specific registry corruption with no Symantec products installed at all. Some find this corruption in device control set enumerators associated with UPNP (Universal Plug and Play) and other 'legacy devices,' others from users of Avast [Antivirus]."
Fixccs.exe has also been linked to problems some users had installing early builds of XP SP3 late last year. In a support forum thread that started Dec. 22, 2007, Shashank Bansal, a Microsoft engineer helping users troubleshoot XP SP3 installation bugs, said: "This is a serious problem for us and we would like to investigate it to further depths. We would need help from all users on this forum for the same." Bansal then asked users who had had trouble updating from XP SP2 to SP3 to identify the process that had hung or had hogged CPU cycles. "Look out for cscipt.exe or fixccs.exe," he asked.
On Thursday, Cole said Symantec was working on a standalone tool that would delete the extraneous registry entries. "We hope to have it ready pretty quickly," he said. "We're working with Microsoft in the normal channels."
That word must not have trickled down to Microsoft's technical support representatives. Users who have posted to Symantec's support forum and others who have e-mailed Computerworld claim that they have been told by Microsoft support that the fault is all or partially Symantec's.
A user going by "ZLevee" copied messages received from Microsoft support to a Thursday post on the Symantec support site. "Based on the current research, the issue can probably be caused by the conflicts between SP3 and Norton. Please let me know if you have any Norton product installed.," ZLevee said the Microsoft support representative had claimed.
A Computerworld reader e-mailed an account of his experience last week with Microsoft's support. "I had an online chat with a tech support person named 'Obaid' on 5/18," said Thom Nielsen in the e-mail. "He told me that Symantec products do NOT work with XP SP3. He told me Symantec is aware of the problem(s) & is working on it."
"This is the first I've heard of this," said Cole when asked to comment. "I hope we can clear up any confusion."
When asked earlier Thursday whether it had uncovered any more information about the disappearing Device Manager and the corrupted registry entries, Microsoft said it nothing new to add beyond the recommendation it made Tuesday: that users contact the company's technical support desk if they have had problems upgrading to XP SP3.
Microsoft was not available for comment Thursday night.
Subscribe to:
Posts (Atom)