About the Standards Blog
The IEEE Global Initiative on Ethics of Autonomous and Intelligent Systems Announces New Standards ProjectsPress Release
IEEE.org –November 20, 2017 - IEEE and the IEEE Standards Association (IEEE-SA), today announced the approval of three new standards projects inspired by work being done by The IEEE Global Initiative on Ethics of Autonomous and Intelligent Systems (â€œThe IEEE Global Initiativeâ€). The new standards projects are the latest additions to the IEEE P7000â„¢ standards family, which supports a principal goal of the IEEE to prioritize ethical concerns and human wellbeing in the development of standards that address all aspects of autonomous and intelligent technologies. These objectives are further addressed in the IEEE publication Ethically Aligned Design: A Vision for Prioritizing Human Wellbeing with Artificial Intelligence and Autonomous Systems, a living document that encourages technologists to prioritize ethical considerations in the creation and proliferation of these technologies.
The new IEEE P7000 standards projects are chaired by leading subject matter experts in their respective fields of study and include:
Chinaâ€™s National Peopleâ€™s Congress Officially Promulgates Standardization Law
- IEEE P7008â„¢â€”Standard for Ethically Driven Nudging for Robotic, Intelligent and Autonomous Systems
Nudges, as exhibited by robotic, intelligent or autonomous systems, are defined as overt or hidden suggestions designed to influence human behavior or emotions...
- IEEE P7009â„¢â€”Standard for Fail-Safe Design of Autonomous and Semi-Autonomous Systems
Malfunctioning autonomous and semi-autonomous systems can disadvantage and harm users, society, and the environment. Effective fail-safe mechanisms can help mitigate risks related to system malfunction and provide developers, installers and operators with clear technical criteria to terminate unsuccessful or compromised operations in a safe and consistent manner...
- IEEE P7010â„¢â€”Wellbeing Metrics Standard for Ethical Artificial Intelligence and Autonomous Systems
Today, with the advancement of autonomous and intelligent systems, programmers, engineers, and technologists need to consider how the products and services they create can increase human wellbeing based on a wider spectrum of measure than economic growth and productivity alone (i.e., emotional health, societal impacts, environment, etc.)... Full Story
ANSI.org –November 16, 2017 - The National Peopleâ€™s Congress of the Peopleâ€™s Republic of China officially promulgated Chinaâ€™s Standardization Law on November 4, 2017. The original Chinese version can be accessed on the China legislature site...The Standardization Law serves as the legal underpinning for Chinaâ€™s system, and its revision (the first since 1988) is a major component of Chinaâ€™s ongoing standardization reform initiative...ANSI has prepared a reference translation for the final law, which tracked the changes since the last draft, as a courtesy available to ANSI members only.
Changes in the standardization law from the version released in September 2017 mainly comprise restructured provisions. There are some promising additions such as the state encouraging the extensive seeking of comments in the development of standards (Article 4), and the clarification that standards would be reviewed every five years (Article 29). However, ANSI believes that more can be done in addressing the following concerns which were conveyed in earlier comments:
IEEE Standards Association (IEEE-SA) and TRON Forum Sign Agreement to Advance IoT Development and InteroperabilityPress Release
- Referencing and upholding the World Trade Organization (WTO)â€™s Technical Barriers to Trade (TBT) Agreement;
- Limiting and focusing the self-disclosure requirements for so-called â€œenterprise standardsâ€;
- Including more language on fair and open participation in standards development activities;
- Clarifying the circumstances under which one type of standard might become another type of standard; and
- Referencing the copyright law... Full Story
IEEE.org –November 15, 2017 - IEEE and the IEEE Standards Association (IEEE-SA), today announced the signing of an agreement with the TRON Forum, a forum that supports a development project called TRON Project that addresses real-time architecture for embedded systems. The agreement transfers ownership of the TRON ÂµT-Kernel 2.0 to IEEE-SA and provides a license to TRON Forum for use of the intellectual property. The signing of this agreement is anticipated to greatly expand development and global utilization of the specification already sourced by more than 12,000 licensed IoT manufacturers and others worldwide...
The TRON Project is a project launched in 1984 by Prof. Ken Sakamura, now dean of the Faculty of Information Networking for Innovation and Design (INIAD) at Toyo University. The Project aims to build an open architecture for embedded systems. Rather than imposing a closed ecosystem of hardware and software requirements, its founders have defined a set of interfaces that ensure broad interoperability between the various devices supplied by different vendors...
The agreement signed by IEEE and TRON Forum allows the two parties to jointly develop IEEE standards based on the TRON Forum specification... Full StoryGoogle: Chrome is backing away from public key pinning, and here's whyLiam Tung
ZDNet –November 14, 2017 - Google has announced plans to deprecate Chrome support for HTTP public key pinning (HPKP), an IETF standard that Google engineers wrote to improve web security but now consider harmful.
HPKP, as described in IETF 7469, was designed to reduce the risk of a compromised Certificate Authority misissuing digital certificates for a site, allowing an attacker to perform a man-in-the-middle attack on encrypted Transport Layer Security (TLS) connections. Using HPKP, any website can tell browsers to remember, or 'pin', which public keys belong to a specific web server for a set period of time. After that, the browser ignores all other public keys for the set duration.
Currently Chrome, Firefox, and Opera are the only browsers that support HPKP, but Google's Chrome security team have announced plans to remove support for HPKP in Chrome 67, which is due for stable release around May 29, 2018.
Security researchers have highlighted a number of problems with HPKP, including the possibility for an attacker to install malicious pins or for a site operator to accidentally block visitors...
Ryan Sleevi, one of the Chrome members who wrote the standard, has since described pinning as "terrible", admitting it harms the ecosystem more than it helps it... Full StorySCO vs IBM: Never-ending Linux case springs back to life after surprise rulingGraeme Burton
The Inquirer –November 13, 2017 - NOW-DEFUNCT UNIX VENDOR SCO has won a surprise victory in the US Court of Appeals against systems giant IBM.
The victory will spark new life - not a lot, but some - into the company's intellectual property claims.
This particular judgement involves SCO's Project Monterey Unix development effort with IBM to create a version of Unix for 64-bit servers...Project Monterey - in which both SCO and IBM contributed code and know-how - proved too complex. Sequent and Intel were also involved.
SCO, though, as part of its machine-gunning of legal claims as it went down, claimed that IBM was never interested in Project Monterey and improperly incorporated code from the Project Monterey into its AIX version of Unix...
In the last legal round, SCO's claims were roundly rejected, but the Court of Appeals has ruled that the District Court's interpretation of what constitutes "misappropriation" and "tortious interference" was too narrow - and has sent the case back for them to try again...
However, the legal case - now in its 14th year - shouldn't concern Linux users unduly, but any ensuing payout will come out of IBM's shrinking pockets. Full StoryAfter a seven-year wait, PCI Express 4.0 will turbocharge your next PCJon Martindale
Digital Trends –November 10, 2017 - A new iteration of the humble PCI Express (PCIe) port could open up the floodgates for even more powerful graphics cards in the future, by increasing the available bandwidth by 100 percent. The new PCI Express 4.0 standard allows for the transfer of up to 64GBps in a duplex Ã—16 port.
PCI Express technology has improved by leaps and bounds over the past decade and a half. Itâ€™s gone through several iterations, each one doubling available bandwidth. That has helped improve the capabilities of single and multiple graphics card configurations, and has also enabled the use of high-speed solid state drives (SSD) in form factors like M.2... Full StoryGitLab Changes its Contributor Licensing to Better Serve Open-Source ProjectsPatricio Robles
Programmable Web –November 9, 2017 - Self-hosted Git repository management tool GitLab today announced that it is abandoning its Contributor Licensing Agreement (CLA) and adopting a Developer Certificate of Origin (DCO) and license.
According to the company, which claims 67% market share in the self-hosted Git market, "the DCO gives developers greater flexibility and portability for their contributions."
While CLAs have been an industry standard for open-source projects, many developers don't like CLAs because they require them to review and accept legal terms, often giving up some of their rights in the process...As a result of its change, the high-profile Debian and GNOME projects are planning to migrate to GitLab... Full StoryEDM Council Advances Industry Standard to Harmonize Financial Data Incorporates Semantic Web Tools and Principles to Accelerate AdoptionPress Release
EDM Council –November 8, 2017 - The Enterprise Data Management (EDM) Council has released a new version of its Financial Industry Business Ontology (FIBO) along with new tools and functionality to accelerate adoption of the industry standard.
FIBO is used by many financial institutions to ease the operational burden of managing disparate sources of financial data in support of complex data analytics. It does this by harmonizing data definitions at a business level to establish a common language that promotes interoperability between systems used to manage financial data.
The need for interoperability has become particularly acute in recent years given mounting pressure to simplify and consolidate siloed data architectures. A wide range of cross-asset regulatory reporting and risk management mandates - including Dodd Frank, BCBS 239, CCAR, MiFID, GDPR and FRTB - are driving the need for true enterprise-wide data management and a focus on data quality...The latest release of FIBO incorporates many semantic web standards; such as the ability to generate UML (unified modelling language) diagrams, SKOS vocabulary (simple knowledge organization systems), enhanced spreadsheets for business review and machine-readable files in the W3C standard OWL (Web Ontology Language). This means FIBO is now a driving force for the semantic web community within the financial services industry - making it easier for the community to collaborate with financial application developers to further accelerate adoption... Full StoryNew PCI standard lets card users self-authenticate by web or mobile
SC Media –November 7, 2017 - Consumers are now able to authenticate themselves with their credit and debit card issuers when buying online by using web browsers or via mobile applications using the new EMVÂ® 3DS standard, designed to cut online card fraud.
With the move from signature to chip and pin credit card use, card fraud largely went online, but yesterday at the PCI Europe Community Meeting the PCI Security Standards Council (PCI SSC) announced two new security standards to support secure implementation of EMVCo's EMVÂ® 3-D Secure (3DS) protocol... Full StoryDELOITTE PUBLISHES SIX CONTROL PRINCIPLES FOR FINANCIAL SERVICES BLOCKCHAINS
Irish Tech News –November 6, 2017 - Blockchain technology has so far been discussed outside traditional institutional governance, accounting and legal frameworks and there is a need for controls to ensure that these long-standing practices and working principles are protected and disruption is minimised, according to the Blockchain Control Principles Report, published by Deloitte today...
Commenting on the report, Lory Kehoe, EMEA Blockchain Lab Lead at Deloitte said: â€œBlockchain has attracted significant attention from the financial services industry in EMEA and around the globe with many organisations exploring different structures and governance models as they move from exploration to implementation. It is becoming more critical to look at blockchain implementation from a holistic, not just IT standpoint, and to ensure that consideration is given to each key control principle and the impact they may have on the entire organisation. Failure to consider these principles, or to consider them in isolation, may become riskier as alignment between business and IT is critical for successful implementation of this new and powerful technology.â€..With this in mind Deloitte has considered what it deems essential to the widespread adoption of blockchain technology within the financial community in the long term and has published six control principles for financial services blockchains. These are:.. Full Story