They could be, but I assume say like an apple device won’t install a ccp root authority unconditionally. Huawei and xiamoi probably could be forced, but the browser too, like Chrome, Firefox and safari need to also accept the device certificates as trusted.
But the pressure in Europe would likely be to trade within Europe, you must comply.
It fundamentally destroys the whole trust of PKI if this did go ahead. We just need to hope it does not.
If your browser and device has a state sponsored CA certificate it’s not trivial to bypass. Transparently all certificate traffic could be intercepted by an ISP. Look at Europe already trying. Once someone malicious (to you) is a trusted certificate issuer you no longer can verify either the destination nor the privacy of the content.
Ssl based vpns are also decrypted. And vpns which use public key for identification would no longer be trusted.
A country for example could enact their mandatory certificate authority that they control. Then have ISPs who are in the middle use what was mandatory a trusted CA to act as the certificate issuer for a proxy. This already exists in enterprise, a router or proxy appliance is a mitm to inspect ssl traffic intercepting connections to a website say Google, but instead terminates that connection on itself, and creates a new connection to Google from itself. Since the Google certificate on the client side would be trusted from the proxy, all data would be decrypted on the proxy. to proxy data back to clients without a browser certificate trust issue, they use that already mandated CA that they control to create new certificates for the sites they’re proxying the proxy reencrypts it back to the client with a trusted certificate and browsers accept them.
It’s actually less than theoretical, it’s literally been proposed in Europe. This method is robust and is already what happens in practice in enterprise organisations on company devices with the organisations CA certificate (installed onto organisation computers by policy or at build time). I’ve deployed and maintained this setup on barracuda firewalls, Fortigate firewalls and now Palo alto firewalls.
I’m in my late 30s from Australia, now you don’t need to ask. G’day
Perhaps an anime with an ex-cop, ex-yakuza, a corgi, a young hacker, a gambling thief fugitive, and possibly the best intro and music in anime?
If Microsoft named it, it’s temporary. Let’s check intune no wait endpoint manager, no wait, intune again. First I’ll just make sure my login works in azure ad, no wait entra, no wait it’ll be copilot by the end of the year. Not to be confused with copilot (office) copilot (github) or copilot (azure) or power platform no wait copilot?
Would this not be the Linux subsystem on window? LSW
Ah okay thanks now I know what you’re taking about.
I’m trying to figure out the gap in the market you’re trying to fill other than “for steam fan boys it would allow us fans of steam games that already exist in a native place, in a non native place!”
Correct me what is going into it that isn’t already somewhere, and who that appeals to?
Or is this just thought experiment?
What would you suggest they sell on their Android store that users would be so encouraged to install a new store and then what they want?
Steam already has a store on Android, you just can’t play games there because most games on steam either already exist on the native google play store, or aren’t compatible with mobile architectures like Arm64. Most mobiles unlike a arm laptop, have no x86/amd64 emulator which is what those games are compiled as by their developers.
So what’s left?
Do you mean from steam?
You just turn up the quality settings in the menu. You already paid for the texture and models, you don’t need to pay again.
Enterprise applications are often developed by the most “quick, ship this feature” form of developers on the world. Unless the client is paying for the development a quick look at the sql table shows often unsalted passwords in a table.
I’ve seen this in construction, medical, recruitment and other industries.
Until cyber security requires code auditing for handling and maintaining PII as law, mostly its a “you’re fine until you get breached” approach. Even things like ACSC Australia cyber security centre, has limited guidelines. Practically worthless. At most they suggest having MFA for Web facing services. Most cyber security insurers have something but it’s also practically self reported. No proof. So if someone gets breached because someone left everyone’s passwords in a table, largely unguarded, the world becomes a worse place and the list of user names and passwords on haveibeenpwned grows.
Edit: if a client pays and therefore has control to determine things like code auditing and security auditing etc as well as saml etc etc, then it’s something else. But say in the construction industry I’ve seen the same garbage tier software used at 12 different companies, warts and all. The developer is semi local to Australia ignoring the offshore developers…
“Starry night” on one side, “the scream” on the other. But only if you can get the number plate “Van Go”.
Is that different from this one I remember watching years ago? https://youtu.be/OZzIvl1tbPo
Note I’m not really… Good at math nor really understand it.
I’ll still watch an entertainer and someone good at what they do for entertainment either way.
In my 20 years of outsource IT career I’ve helped lots of business moguls with their personal home mail servers, since I already support their business IT. This doesn’t mean it’s easy, it means they’ve got money to ask someone to do it.
I’m going to tell you, it’s all nice and easy if you understand servers, backup, networking, dns, and security. If you don’t, you’ll probably get it working, for a while, until it doesn’t.
Why do you pay IT if it’s already working? Why do you pay IT if it’s not working?
Yes but they’re hoping a percentage of people don’t go looking for news that their game has been removed and they need to take action to get a refund.
They remove it from the store automatically, but don’t refund automatically.
Though I bet there may be an argument that the payment platform being Apple means it’s opaque to square, it’s still always customers losing. Even if it’s just a percentage.
The charity is real, and it took me about 2 minutes to search for their 22-23 audited financial records here https://preventcancer.org/about-us/financials/financial-statements-and-990-forms/
If you go to page 16 you can see the event notes for AGDQ for those two years.
I spent an additional couple of minutes using the propublica lookup. https://projects.propublica.org/nonprofits/organizations/521429544
You could retire off this pun.