Tuesday, 17 October 2017

公衆ホットスポット上のHTTPSウェブサイトを安全に訪問していますか?

HTTPS SSL / TLS接続は暗号化されており、サーバーと私の間の通信が暗号化されているため(サーバ認証も提供されるため)、安全であると言われることが多いので、誰かがパケットを盗聴すると、理論では力。
私が公開Wi-Fiに接続していると仮定し、同じパケットにすべてのパケットを盗聴する悪意のあるユーザーがいるとしましょう。 今、このwifiを使って私のGmailアカウントにアクセスしようとしていると仮定しましょう。 私のブラウザはサーバとのSSL / TLSハンドシェイクを行い、暗号化と復号化に使用する鍵を取得します。
その悪意のあるユーザーがすべての着信および発信パケットを盗聴した場合。 彼は同じ鍵を計算し、暗号化されたトラフィックを読むことができますか、暗号化されたメッセージを私の名前でサーバーに送信することはできますか?HTTPSは公開されているホットスポットよりも安全です。 HTTPSで使用されるセキュリティレイヤであるTLSの設定時には、公開鍵と暗号化されたメッセージのみが送信されます(これらもルート証明書で署名されます)。 クライアントは公開鍵を使用してマスターシークレットを暗号化し、サーバーはその秘密鍵で復号化します。 すべてのデータは、各側で生成されたマスターシークレットと擬似乱数を使用する関数で暗号化されています。
このように、SSL / TLS自体は、「通常の」インターネットに比べて、公共のWiFi接続で脆弱ではありません。 オープンチャンネルで使用するように設計されています。
ただし、考慮すべき点はいくつかあります。
  • 多くの場合、ユーザーはHTTPSサイトを直接参照せず、HTTPサイトから開始し、そこからリダイレクトします。 たとえば、 http://example.org/ ://example.org/を参照し、[ Email ]リンクをクリックすると、 https://mail.example.org/リダイレクトされhttps://mail.example.org/ 元のHTTPページは暗号化されていないため、その悪意のあるユーザーはトラフィックを変更することができ、 EmailリンクはHTTPSにリダイレクトされませんが、おそらく他の場所にリダイレクトされます。 たとえば、example.orgのホームページの[ Emailリンクをクリックした場合、 http://mail.exxxample.org/に移動したことがhttp://mail.exxxample.org/ますか? (例として)。 他の人がそうでないかもしれない。
  • ユーザーが接続を乗っ取り、example.orgではなく自分の偽のSSL証明書を提供する場合、ブラウザエラー表示され、証明書が有効でないことが表示されます。 ただし、ほとんどのユーザーはこれをクリックするだけで、攻撃者がSSL経由でセキュリティ保護されたサイトにMITMできるようになります。
  • 考慮すべきもう1つの側面は、公衆ホットスポットが安全に設定されていると仮定しないことです。 この質問が示すように 、pwnedルータはすべてあまりにも一般的であり、あなたのSSLと無関係に大きな損害を引き起こす可能性があります。

  • マスタシークレットと擬似乱数によって署名されているため、データは安全です。
  • マスタシークレットと疑似乱数はTLSハンドシェイクが発生したときに公開/秘密キー暗号化を使用するため安全です
  • 公開鍵暗号化は以下の理由により安全です。
    • 秘密鍵は秘密に保たれる
    • 公開鍵暗号化は秘密鍵なしでは役に立たないように設計されています
    • 公開鍵はルート証明書によって署名されているため正当であることが知られています。
    • あなたのコンピュータに付属しています
    • ブラウザの警告に注意してください。
したがって、あなたのHTTPS接続とデータは以下のように安全です。
  1. あなたのコンピュータに付属の証明書を信頼し、
  2. 信頼する証明書だけを認可するように注意します。ブラウザからのすべての要求とサーバーによって送信されたページが暗号化されるため、HTTPSを完全に超過したセッションはかなり安全です。 ただし、HTTPS経由でアクセスすると、多くのサイトでHTTPS経由の認証手順が実行され、残りのセッションではHTTPに戻されます。 したがって、パスワード自体は安全ですが、サーバーがそのセッションのためにあなたを識別するために使用するセッションIDは、ブラウザによってクリアに送信されます。 これにより、Webサーバーの負荷が軽減されます(暗号化/復号化はCPUを大量に消費するため)、サイトの安全性は低下します。 Gmailはセッション全体でHTTPSを使用するため安全ですが、Facebookや他の多くのサイトではそうではありません。
    攻撃者が暗号化されていないワイヤレスネットワークを共有しているときに、 Firesheepなどのツールがユーザーのアカウントを乗っ取りできる仕組みです。
    この攻撃から保護するには、VPNを使用してすべてのセッションデータを暗号化するか、WPA-PSKなどの強力なユーザーごとの暗号化を使用するネットワークのみを使用します(WEPはすべてのユーザーに同じキーを使用します。この攻撃からの保護を提供する)。

【ティアック株式会社】お問い合わせありがとうございました。process by which TEAC Hi-Res Editor is able to convert PCM to DSD and vice versa?

Dear Leo Graf

This is TEAC customer support in TEAC corp.
Thank you for your inquiry this time.
Our reply for your question is informed.
Please check the following contents.

[Your Inquiry]
Could you briefly explain the process by which TEAC Hi-Res Editor is able to convert PCM to DSD and vice versa?
I would like to know the exact tap no. of, say the FIR filter among other processes.
Is DSD to PCM conversion done in one stage like SBM Direct?

[Our reply]
TEAC Hi-Res Editor is possible to convert PCM(WAV) and DSD mutually.
However, we have not published any information about conversion process and so on.
We would like you to understand it.

*Even if you reply to this mail address, we are not able to receive your inquiry.
Although we are sorry to trouble you, please inquire from the inquiry form
on our website again.
https://teac.jp/jp/support/contact/product/teac

==============================
===================================================
Your personal information we received has been controlled with the responsibility
 in accordance with personal information protection law and guideline.
Regarding personal information protection policy in our company, you are able to
check it on the following website.
https://www.teac.co.jp/jp/privacypolicy (Japanese language)
=================================================================================

[CASE-ID:171001195058930]お問合せの件について

Dear Sir/Madam、

This is Ishi from the Customer Support Desks at Sony Marketing (Japan) Inc.

We are very sorry for the late reply.

This time we would like to re-acknowledge your inquiry that
other than Walkman, you have also expected a DSEE HX function that should be installed in "Music Center for PC" software, haven’t you?

If there is no difference as mentioned above, we have recognized that
in case that DSEE HX function is also equipped in "Music Center for PC",
you can enjoy music with better sound quality on your PC.

In order to meet our customer's expectation, we shall send your expectation
to relevant in-charge departments for future product development.

Although we cannot promise that your expectation shall come true,
we are still looking forward to your ongoing support in the future.

Thank you for kind understanding.

Sincerely,
Ishi (Ms.)
Customer Support Desks
Sony Marketing (Japan) Inc

Dear Sir/Madam,

This is Phuong from Sony Customer Supporting Service Window (Japan).

Regarding your inquiry, we would like to give you the answer as follows:

Regarding your inquiry, we just received, although you stated that
"In addition to my HX question...”,
unfortunately, from this window we cannot check and confirm any content in your previous mail.

We are sorry for any incurred inconvenience, however in the mail subject of the mails
you sent to our window, there are reference number starting from [CASE-ID:].

※ The CASE-ID of this mail is 171002195118450.

Regarding all mail contact before, we would be grateful
if you please let us know the number starting with [CASE-ID:] in previous emails?

In case you reply to this email, could you please do not
change the mail subject?

Sincerely,
------------------------------
---------
Sony Customer Supporting Service Window (Japan).
Email Contact: Phuong (Ms.)
---------------------------------------
Dear Ms Phuong,

Thankyou for putting up with me, it is CASE-ID:171001195058930. ※ The CASE-ID of this mail is 171002195118450.
Please do tell the engineers/coders to fix the WASIO CD playing that's failing on the Music Center and also quickly port DSEE HX with 5 presets finetuned for all PCs into it.
Hopeful regards,
Leo

[CASE-ID:170826193827030]お問合せの件について

Dear Leo Graf,

This is Sato from Sony Customer Service Window (Japan).

We are truly sorry for the late reply.

Regarding the inquiry, in which the software such as "CPB-N2010" etc.
have already mentioned, we would like inform you as follows:

We are sorry that we cannot provide an answer that meets your expectation,
even if we would like.
For the following two reasons, it will be impossible for our company to
offer you the desired softwares.

(1) The final support OS of Community Place Product is
Windows 95 and at this window supporting Services had been closed.

(2) Community Place Products was sold about 20 years ago
As of September 3, 2017, manufacturing and sales for such products
had been completed.

We understand that it might be good if we could give the above explanations earlier
but in fact it took so much time for getting result.
So we are truly sorry again for that.

Regrettably, for this matter, we cannot help you any more,
If there is something unclear and/or any matter, please do not hesitate
to contact us.

Sincerely,

------------------------------
---------
Sony Customer Service Window (Japan)
Email Contact: Sato
---------------------------------------
Dear Mr Sato,
A reminder also that CP supported Win 2000 and continued as Fusionetics.
 
Dear Mr/Mrs.Leo Graf

This is from Duong who is in charge of the Customer Support Desk
at Sony Marketing (Japan) Inc.

In response to your question, please kindly see our answer below.

Regarding to your information ”A reminder also that
CP supported Win 2000 and continued as Fusionetics.”
we are sorry that we do not have
any information that can help us give you an instruction.

Besides、we also have stopped supporting Windows 2000 preinstalled PC.

For that reason, though we understand that you are in a difficult situation
we are sorry for any duplicated guidance that we do not have infomation about
software which can be provided.

Your kind understanding is greatly appreciated.

Sincerely,
Duong (Ms.)
Customer Support Desk
Sony Marketing (Japan) Inc.

試作品である



初心者でも馴染み易い操作性とキャラクターにより、当時の他のチャットに比してインターネット初心者を含む幅広い層のユーザーが存在し、ユーザー同士のコミュニティなども多数結成されていた為、かつてのユーザーの間でサービスの復活を望む声も多い。Community Place2002年に販売終了になった。さぱりアルファはソニーのSpaceStream技術を使用したのだ。しかし、本来さぱりは昔のサーカスパークと同じく、野間 恒毅氏によって製作されたワールドであるため、試作品である。
ソニーのほかのチャットに比べれば、シンプルでプロトタイプ的な存在である。(例えばワールド内のVRMLオブジェクトとインタラクションはできない。

Sunday, 16 July 2017

Many thanks and best wishes to you and other old CP pals



Dear Tsunetake Noma,

Thank you again for actually clarifying what was already a doomed idea. Is Hiroshi Ueno a part of the CP teams?
I still can’t understand how engineers can just discard of their source code at Sony.
And they’re still telling you how difficult Sony has made the process of releasing code!
There has got to be a limit to this thing. Anyway, Sony’s alright at times, but I’m pretty sure my perspective of them has changed.
For example, do you agree with the current accelerating development of all things robot? This is a big issue because it means jobs will be less available while the important issues like smoke from chimneys and cars is unsolved. (I live in Adelaide) or even the problem of Antarctica-as one IMAX documentary said-why is the human race exploring outer space when there are all these issues on our planet?
I say: Let us tackle things one by one. Let us not attempt everything when it comes to large issues.
For reasons unclear now to even me, I’ve made a draft site https://vscommunityplace.blogspot.com.au/p/blog-page_12.html
Which has your company on it-is that alright?
As always, thank you; you’ll be the last, concluding email for CP-it took me half a year to get to this!
It’s funny then, why does石川 真之 actually have the code for his authoring tool? At times I feel like these devious engineers are really lying to me. They answer well to renowned Dr Lea but not me, who is almost nobody… well I’ll show them anyway.
May the worthless 3D vs proposal/idea of Kitano be trashed even in future AR/WebVR interactive projects!
I understand that I must solve the real problems facing us today.

Many thanks and best wishes to you and other old CP pals,

NSK/NRI's Blendo Development Team

The end of an era-Conversations with T.Noma-




You can't repeat the past
Gatsby replies, "Why of course you can."
Dr Kouichi Matsuda advised me that I should ask you for the contact details of senior software engineer 宮下健 MIYASHITA KEN of Sony as well as 松田 哲 (Satoru Matsuda) and Hiroshi Ueno (- Section Manager at Sony Corporation)
These three people may have the source code to the long lost Community Place Browser and/or Bureau (server)

I would be much obliged if you could do so, since the VAIO software and CP/SAPARi are big passing points in your life.



Thank you for taking the time (your precious time) to reply to my email and to search for the facebook page of Mr Miyashita Ken. In any case, I can see that the CP team have been disconnected for a long time.
Firstly I do not have Facebook, secondly I cannot discuss matters related to CP which is official business over Facebook, and thirdly I would much prefer to contact them via email.
Actually, I'm very sorry to have bothered you with this.

The truth here is that Mr Kamachi promised to find their emails etc. sometime; Dr Matsuda doesn't want to help in finding their emails; and Mr Masayuki has decided to completely ignore me- i.e. I seem to be unable to contact 松田 哲 or Hiroshi Ueno easily at all. Don't get me wrong: This aspect of the project is very important for many people as well as myself, and I truly believe that it is a trifle matter which could have been solved ages ago.

Which all boils down to one thing relating to you: Do you have any of the actual source code relating to CP still in your hands? I.e. Maybe the server software for Bureau? As I said, it is very important.


Unfortunately, I don't have any source code of Community Place software. I did only create contents for CP such as Sapari series.
I'm still waiting for approval from Miyashita-san, so if I can contact him, let you know.


Thank you for all the help!  

Meanwhile, I suddenly remembered, can you clarify for me, who was the actual designer of the Circus Park and SAPARi contents? Was it GCO using NewTek社の3DCGソフト「LightWave3D」のプラグインto
VRML出力?
G. Sawai says: ‘「さぱり」はVAIO用のコンテンツとして別の事業部が企画していて「本所時代村」のコンテンツを発表していたGCOに、デザインを含めて発注がありました。
Does this mean GCO made さぱり or did some other designer make the Dxf files?
Also, I’d like to know whether the Dxf original files are still in your possession. If the only available copies are in VRML format, it would be fine, but detail does make a difference.


The original model data of Sapari was created by GCO which I ordered as the director. However I received only VRML files maybe, so the actual modeler and model data are in GCO.


AH! Wow, ok, so GCO did it all! They’re a weird bunch but they created really cool stuff- their designers etc must have been pretty good with 3D, I know 2D worlds are easy to design and make attractive, but 3D is difficult.


I've contacted Miyashita-san and Satoru Matsuda-san who both don't have any source code of Community Place.
And what's more, if they have source codes, they cannot open the source code outside of Sony.
I'm sorry about that.