Happy to see the effort! Fresh blood in the authn space is always welcomed.
Without rehashing the other good points commenters have made already, I’ll just say that every project starts out immature. What makes a project great is how willing the maintainers will be to grow along with the project and incorporate feedback. I’m excited to see future evolutions of this one.
I think it's more of a logic problem. I suspect the engineers made a false assumption that bcrypt can hash a trivial amount of data like some other hashing algos.
Yes but PIV/CAC identity is not related to break-glass passwords. They both serve different purposes and it's safe to assume that the typical government worker will only ever need to use their smart card to authenticate into systems.
It’s the biggest stretch possible without it being technically dishonest. Everyone knows it: the researchers know it and gag a little as they write it, and the grant reviewers know it but pretty much require it without really ever saying that they require it (competitive landscape and all).
What else can you say when it gets to subject matter like this?
In experimental thermodynamic bench experiments, those who are familiar with boiling water in a common scientific vessel such as a tea kettle, are often familiar with how a system has its own characteristic rate of cooling, depending on the energy of the heated media to dissipate into whatever heat exchange facility is available at the time, usually ambient convection.
Under careful observation it can be seen that often it is possible to impart energy from an external source at a faster rate than the same amount of energy will later require to completely dissipate afterward.
People shouldn't be discouraged whether this is obvious or not.
Experimentation such as this can require quite a bit of dedication, especially among those who are not tea drinkers, but this is the workaround that would be required to arrive at such valid conclusions without the use of equations nor those pesky optical tweezers which are such a pain in the butt.
Both situations seem possible. I guess time will tell how Unity wants to move forward.
Others mentioned it earlier but it looks like Godot had a big boost in users from this fiasco. Perhaps Unity is concerned about real financial damages done to their bottom line because of all this? I’d expect them to try a lot of stuff and see what sticks to make sure they don’t miss their targets this year.
Well, the transition in leadership is uncommon but they don’t officially give us a reason, so we’re left to speculate until someone inside gives us more info.
But from a purely speculative standpoint, it seems very possible that they were ousted because of the pricing debacle. I could see a world where the stakeholders aren’t thrilled with the damage the pricing changes did to their brand and took action.
Same here. I also switch to light mode when I'm in a very bright environment and it seems to have helped a lot with eye strain since last year. I feel like these studies are being a bit 1-dimensional... but then again, maybe that's my own confirmation bias.
I’d say that’s normal (studies being one-dimensional). The idea being to isolate as many complications as possible to get at the heart of one single matter.
I didn’t read the study itself, but usually the scientists (if they aren’t pushing an agenda) are aware of the limitations of their studies. It’s the people reporting and commenting on those studies that extrapolate unwarranted conclusions and generalizations from them.
Without rehashing the other good points commenters have made already, I’ll just say that every project starts out immature. What makes a project great is how willing the maintainers will be to grow along with the project and incorporate feedback. I’m excited to see future evolutions of this one.