Open Edtech: Can K-12 Learn from Higher Ed?
Open standards, open architectures, open educational resources (OER) and open source software have contributed to a more open edtech ecosystem in higher education than currently exists in K-12....

By: Troy Anderson

Originally posted here:
Open Edtech: Can K-12 Learn from Higher Ed? - Video

The Basics, Economics and Strategy of FOSS for Startups
In his keynote address at the "FOSS for Startups" event organized by NSRCEL @IIMB, Professor Rahul De shares an "academician #39;s" perspecive on Free and Open Source Software (FOSS) and why FOSS...

By: IIMB KITE

More:
The Basics, Economics and Strategy of FOSS for Startups - Video

Android minus the Google Apps. We've got some work to do.

Ron Amadeo

Android is a Google productit's designed and built from the ground up tointegrate with Google services andbe a cloud-powered OS. A lot of Android is open source, though, and there's nothing that says youhave to use it the way that Google would prefer.With some work, its possible to turn a modern Android smartphone into a Google-less, completely open deviceso we wanted to try just that. Afterdusting off the Nexus 4 and grabbing a copy of the open source parts of Android,we jumped off the grid and dumped all theproprietaryGoogle and cloud-based services you'd normally use on Android. Instead, this experiment runs entirely onopen source alternatives. FOSS or bust!

But, wait... did we say we'd dump "all" services? Not going to happen. Almostinstantly, wehad tocompromise our open source ideals due to hardware.The SoC in the Nexus 4 is made by Qualcomm, and manyof the drivers for it are closed source(this is the case with nearly all smartphones, not just our sacrificial Nexus 4). The firmware and drivers for the cellular modem, Wi-Fi, Bluetooth, GPS, NFC, and camera are closed source, too. The CyanogenModrepository has a list of closed source drivers ineach device branch called "proprietary-blobs.txt." You can see the list for our Nexus 4 here, which is 184 items long.

These chunks of proprietary code come from the component manufacturers themselves (Qualcomm, Broadcom, Synaptics, Sony, Samsung), and seeing what's in them usually requires you to be a big developer with an NDA in place. While some of this code is locked downfor competitive reasons,there's also a concern that modifying the firmware for basic components could damage the device or, in the case of the modem,disrupt the cellular network. There is reallyno escaping proprietary component firmwareon any device (though some are trying), so we had to hold our nose and just deal with it. With that disclaimer, the journey begins:

It starts withCyanogenMod (CM), what we're going with for our software build. The "Android" that ships on phones today is a mix of open source software from the Android Open Source Project (AOSP) and proprietary Google software. CyanogenMod takes AOSP, adds a bunch of handy enhancements, and ports it to tons of devices.While most people install CyanogenMod and immediately sideloadthe proprietary Google Apps, that's an extra, optional step. This experience isall about FOSS, so we're going to skip the Googley parts and just run raw AOSP-based CM.

Installing CyanogenMod today is a relatively simple affair, thanks to the CyanogenMod installer.If you're interested in what installing CM looks like, check out our previous article on the process.

Ron Amadeo

Time to install, boot up, andhey, this doesn't look so bad! At only one page, theapp selection is a little sparse, but it looks like we're starting with a good amount of base functionality. We still get software buttons and a status bar. The home screen (CM's "Trebuchet")even looks like Google's KitKat version, minus the Google Now integration.

Even with the seriously slimmed down app selection, a lot of these apps are junk. DSP Manager isCyanogenMod's audio equalizer, which really belongs in thesettings somewhereinstead of theapp drawer. Movie Studio, Sound Recorder, and Voice Dialerare part of AOSP, but like a lot of AOSP apps, they aren't actively developed and aren't meant to be taken seriously. Terminal Emulator is definitely one of those apps that belongs in an app store, since the majority of users won't touch it.

Go here to see the original:
The great Ars experiment—free and open source software on a smartphone?!

If youre making a phone call with your iPhone, you used to have two options: Accept the notionthat any wiretapper, hacker or spook can listen in on your conversations, or pay for pricey voice encryption software.

As of today theres a third option: The open source software group known as Open Whisper Systems has announced the release of Signal, the first iOS app designed to enable easy, strongly encrypted voice calls for free. Were trying to make private communications as available and accessible as any normal phone call, says Moxie Marlinspike, the hacker security researcher who founded the nonprofit software group. Later this summer, he adds, encrypted text messaging will be integrated into Signal, too, to create what he describes as a single, unified app for free, easy, open source, private voice and text messaging.

Signal encrypts calls with a well-tested protocol known as ZRTP and AES 128 encryption, in theory strong enough to withstand all known practical attacks by anyone from script-kiddy hackers to the NSA. But WIREDs test calls with an early version of the app, after a few false-starts due to bugs that Marlinspike says have now been ironed out, were indistinguishable from any other phone call. The only sign users have that their voice has been encrypted is a pair of words that appear on the screen. Those two terms are meant to be read aloud to the person on the other end of the call as a form of authentication. If they match, a user can be sure he or she is speaking with the intended contact, with no man-in-the-middle eavesdropping on the conversation and sneakily decrypting and then re-encryptingthe voice data.

Like any new and relatively untested crypto app, users shouldnt entirely trust Signals security until other researchers have had a chance to examine it. Marlinspike admits there are always unknowns, such as vulnerabilities in the software of the iPhone that could allow snooping. But in terms of preventing an eavesdropper on the phones network from intercepting calls, Signals security protections are probably pretty great, he says.

After all, the technology behind Signal isnt exactly new. Marlinspike first took on the problem of smartphone voice encryption four years ago withRedphone, an Android app designed to foil all wiretaps.Signal and Redphone both use an encryption protocol called ZRTP, invented by Philip Zimmermann, the creator of the iconic crypto software PGP.

Zimmermann has developed his own iPhone implementation of ZRTP for his startup Silent Circle, which sells an iPhone and Android app that enables encrypted calls and instant messaging. But unlike Open Whisper Systems, Silent Circles charges its mostly corporate users $20 a month to use its closed-source privacy app. Signal offers the same services gratis, making it the first free encryption app of its kind for iOS.

Since Silent Circle users are limited to calling only contacts with the same paid software installed, its practicality for non-business users has been limited. Though Signal and Redphone users similarly cant make encrypted calls to users without Open Whisper Systems apps installed, they can make secure calls from one app to the other, a feature that will make both Android and iOS-encrypted calling apps vastly more practical. Marlinspike notes that journalists hoping to communicate privately with a source, for instance, would have a difficult time convincing them to shell out for an expensive subscription app. If you want the ability to, in principle, call anyone securely, it really has to be free, says Christine Corbett Moran, one of the lead volunteer coders on Signal.

Instead of taking the for-profit startup route, Open Whisper Systems will instead by funded by a combination of donations and government grants. Marlinspike says the project has received money from the free-software-focused Shuttleworth Foundation and the Open Technology Fund, a U.S. government program that has also funded other privacy projects like the anonymity software Tor and the encrypted instant messaging website Cryptocat.

That government funding is ironic given the last years boost in encryption interest from the Snowden Effect: Open Whisper Systems argues, like other encryption projects, that the eavesdropping countermeasures Signal and its Android counterpart provide are more important than ever in the wake of Snowdens year of revelations of blanket spying by the NSA. When I call the United States Im hearing more and more self-censorshiprelatives in the U.S. saying, Id rather talk about this in person, says Moran, who is pursuing a PhD in Astrophysics at the University of Zurich. Thats not a climate anyone should have to live in.

Open Whisper Systems founder Marlinspike has been a fixture of the security and cryptography community for years, demonstrating groundbreaking hacks like ones that revealed vulnerabilities in the Web encryption SSL and Microsofts widely used VPN encryption MS-CHAPv2. He co-founded the San Francisco-based startup Whisper Systems in 2010 with the intention of hardening the security of Googles Android and providing tools for encrypted communications. But that work took a hiatus when Whisper Systems was acquired by Twitter in late 2011.

Read more from the original source:
Your iPhone Can Finally Make Free, Encrypted Calls