TSMC To Build Second Japan Chip Factory, Raising Investment To $20 Billion

Taiwanese chipmaker TSMC announced plans to build a second chip factory in Japan by the end of 2027, bringing total investment in its Japan venture to more than $20 billion. “Taiwan Semiconductor Manufacturing Co announced plans in 2021 to build a $7 billion chip plant in Kumamoto in southern Japan’s Kyushu,” notes Reuters. From the report: In a statement, TSMC, the world’s largest contract chipmaker, said its majority-owned unit Japan Advanced Semiconductor Manufacturing in Kumamoto would build a second fabrication plant, or fab, in response to rising customer demand. The second fab will begin construction by the end of this year and with both factories the site is expected to have total monthly capacity of more than 100,000 12-inch wafers to be used for automotive, industrial, consumer and high performance computing-related applications, TSMC said. The capacity plan may be further adjusted based upon customer demand, it added.

TSMC’s expansion in Kyushu is central to the Japanese government’s efforts to rebuild the country’s position as a leading chip manufacturing centre and ensure the stable supply of chips amid trade tensions between the United States and China. The decision to build a second fab is a vote of confidence by TSMC in Japan where construction of the first fab has run smoothly and which, Reuters has reported, it sees as a source of diligent workers with a government that is easy to deal with.

Read more of this story at Slashdot.

Linux Foundation Forms Post-Quantum Cryptography Alliance

Jakub Lewkowicz reports via SD Times: The Linux Foundation has recently launched the Post-Quantum Cryptography Alliance (PQCA), a collaborative effort aimed at advancing and facilitating the adoption of post-quantum cryptography in response to the emerging threats of quantum computing. This alliance assembles diverse stakeholders, including industry leaders, researchers, and developers, focusing on creating high-assurance software implementations of standardized algorithms. The initiative is also dedicated to supporting the development and standardization of new post-quantum cryptographic methods, aligning with U.S. National Security Agency’s guidelines to ensure cryptographic security against quantum computing threats.

The PQCA endeavors to serve as a pivotal resource for organizations and open-source projects in search of production-ready libraries and packages, fostering cryptographic agility in anticipation of future quantum computing capabilities. Founding members include AWS, Cisco, Google, IBM, IntellectEU, Keyfactor, Kudelski IoT, NVIDIA, QuSecure, SandboxAQ, and the University of Waterloo. […] [T]he PQCA plans to launch the PQ Code Package Project aimed at creating high-assurance, production-ready software implementations of upcoming post-quantum cryptography standards, beginning with the ML-KEM algorithm. By inviting organizations and individuals to participate, the PQCA is poised to play a critical role in the transition to and standardization of post-quantum cryptography, ensuring enhanced security measures in the face of advancing quantum computing technology. You can learn more about the PQCA on its website or GitHub.

Read more of this story at Slashdot.

Report Reveals Decline In Quality of USB Sticks, MicroSD Cards

A new report from German data recovery company CBL found that devices using NAND chips from reputable brands are declining in quality, with reduced capacity and their manufacturers’ logo removed. Furthermore, some USB sticks use the old trick of soldiering a microSD card onto the board. TechSpot reports: Most of the janky USB sticks CBL examined were promotional gifts, the kind given away free with products or by companies at conferences. However, there were some “branded” products that fell into the same inferior-quality category, though CBL didn’t say if these were well-known mainstream brands or the kind of brands you’ve probably never heard of.

Technological advancements have also affected these NAND chips, but not in a good way. The chips originally used single-level cell (SLC) memory cells that only stored one bit each, offering less data density but better performance and reliability. In order to increase the amount of storage the chips offered, manufacturers started moving to four bits per cell (QLC), decreasing the endurance and retention. Combined with the questionable components, it’s why CBL warns that “You shouldn’t rely too much on the reliability of flash memory.”

The report illustrates how some of the components found in the devices had their manufactures’ names removed or obscured. One simply printed text over the top of the company name, while another had been scrubbed off completely. There’s also a photo of a microSD card found inside a USB stick that had all of its identifying markings removed. It’s always wise to be careful when choosing your storage device and beware of offers that seem too good to be true.

Read more of this story at Slashdot.

Bluesky Opens To the Public

An anonymous reader quotes a report from TechCrunch: After almost a year as an invite-only app, Bluesky is now open to the public. Funded by Twitter co-founder Jack Dorsey, Bluesky is one of the more promising micro-blogging platforms that could provide an alternative to Elon Musk’s X. Before opening to the public, the platform had about 3 million sign-ups. Now that anyone can join, the young platform faces a challenge: How can it meaningfully stand up to Threads’ 130 million monthly active users, or even Mastodon’s 1.8 million?

Bluesky looks and functions like Twitter at the outset, but the platform stands out because of what lies under the hood. The company began as a project inside of Twitter that sought to build a decentralized infrastructure called the AT Protocol for social networking. As a decentralized platform, Bluesky’s code is completely open source, which gives people outside of the company transparency into what is being built and how. Developers can even write their own code on top of the AT Protocol, so they can create anything from a custom algorithm to an entirely new social platform.

“What decentralization gets you is the ability to try multiple things in parallel, and so you’re not bottlenecking change on one organization,” Bluesky CEO Jay Graber told TechCrunch. “The way we built Bluesky actually lets anyone insert a change into the product.” This setup gives users more agency to control and curate their social media experience. On a centralized platform like Instagram, for example, users have revolted against algorithm changes that they dislike, but there’s not much they can do to revert or improve upon an undesired app update.

Read more of this story at Slashdot.

Boston Dynamics’ Atlas Tries Out Inventory Work, Gets Better At Lifting

In a new video released today, Boston Dynamics’ Atlas robot is shown performing “kinetically challenging” work, like moving some medium-weight car parts and precisely picking stuff up. Ars Technica reports: In the latest video, we’re on to what looks like “phase 2” of picking stuff up — being more precise about it. The old clamp hands had a single pivot at the palm and seemed to just apply the maximum grip strength to anything the robot picked up. The most delicate thing Atlas picked up in the last video was a wooden plank, and it was absolutely destroying the wood. Atlas’ new hands look a lot more gentle than The Clamps, with each sporting a set of three fingers with two joints. All the fingers share one big pivot point at the palm of the hand, and there’s a knuckle joint halfway up the finger. The fingers are all very long and have 360 degrees of motion, so they can flex in both directions, which is probably effective but very creepy. Put two fingers on one side of an item and the “thumb” on the other, and Atlas can wrap its hands around objects instead of just crushing them.

Atlas is picking up a set of car struts — an object with extremely complicated topography that weighs around 30 pounds — so there’s a lot to calculate. Atlas does a heavy two-handed lift of a strut from a vertical position on a pallet, walks the strut over to a shelf, and carefully slides it into place. This is all in Boston Dynamics’ lab, but it’s close to repetitive factory or shipping work. Everything here seems designed to give the robot a manipulation challenge. The complicated shape of the strut means there are a million ways you could grip it incorrectly. The strut box has tall metal poles around it, so the robot needs to not bang the strut into the obstacle. The shelf is a tight fit, so the strut has to be placed on the edge of the shelf and slid into place, all while making sure the strut’s many protrusions won’t crash into the shelf.

Read more of this story at Slashdot.

Self-Proclaimed Bitcoin Inventor’s Claim ‘a Brazen Lie,’ London Court Told

In a London court, lawyers for a group supported by the Crypto Open Patent Alliance (COPA) argued that Craig Wright’s assertion of being the inventor of bitcoin is “a brazen lie,” challenged by accusations of extensive document forgery to substantiate his claim. Wright’s defense disputes these allegations, maintaining that he has presented definitive proof of his role in creating bitcoin. Reuters reports: Craig Wright says he is the author of a 2008 white paper, the foundational text of bitcoin and other cryptocurrencies, published in the name “Satoshi Nakamoto”. He argues this means he owns the copyright in the white paper and has intellectual property rights over the bitcoin blockchain. But the Crypto Open Patent Alliance (COPA) — whose members include Twitter founder Dorsey’s payments firm Block — is asking London’s High Court to rule that Wright is not Satoshi.

The five-week hearing, at which Wright will give evidence from Tuesday, is the culmination of years of speculation about the true identity of Satoshi. Wright first publicly claimed to be Satoshi in 2016 and has since taken legal action against cryptocurrency developers and exchanges. COPA, however, says Wright has never provided any genuine proof, accusing him of repeatedly forging documents to support his claim, which Wright denies. Wright sat in court as COPA’s lawyer Jonathan Hough said his claim was “a brazen lie, an elaborate false narrative supported by forgery on an industrial scale.” Hough said that “there are elements of Dr Wright’s conduct that stray into farce,” citing his alleged use of ChatGPT to produce forgeries.

But he added: “Dr Wright’s conduct is also deadly serious. On the basis of his dishonest claim to be Satoshi, he has pursued claims he puts at hundreds of billions of dollars, including against numerous private individuals.” Wright’s lawyer Anthony Grabiner, however, argued in court filings that he has produced “clear evidence demonstrating his authorship of the white paper and creation of bitcoin.” Grabiner added that it was “striking” that no one else had publicly claimed to be Satoshi. “If Dr Wright were not Satoshi, the real Satoshi would have been expected to come forward to counter the claim,” he said.

Read more of this story at Slashdot.

Hugging Face Launches Open Source AI Assistant Maker To Rival OpenAI’s Custom GPTs

Carl Franzen reports via VentureBeat: Hugging Face, the New York City-based startup that offers a popular, developer-focused repository for open source AI code and frameworks (and hosted last year’s “Woodstock of AI”), today announced the launch of third-party, customizable Hugging Chat Assistants. The new, free product offering allows users of Hugging Chat, the startup’s open source alternative to OpenAI’s ChatGPT, to easily create their own customized AI chatbots with specific capabilities, similar both in functionality and intention to OpenAI’s custom GPT Builder â” though that requires a paid subscription to ChatGPT Plus ($20 per month), Team ($25 per user per month paid annually), and Enterprise (variable pricing depending on the needs).

Phillip Schmid, Hugging Face’s Technical Lead & LLMs Director, posted the news on the social network X (formerly known as Twitter), explaining that users could build a new personal Hugging Face Chat Assistant “in 2 clicks!” Schmid also openly compared the new capabilities to OpenAI’s custom GPTs. However, in addition to being free, the other big difference between Hugging Chat Assistant and the GPT Builder and GPT Store is that the latter tools depend entirely on OpenAI’s proprietary large language models (LLM) GPT-4 and GPT-4 Vision/Turbo. Users of Hugging Chat Assistant, by contrast, can choose which of several open source LLMs they wish to use to power the intelligence of their AI Assistant on the backend, including everything from Mistral’s Mixtral to Meta’s Llama 2. That’s in keeping with Hugging Face’s overarching approach to AI — offering a broad swath of different models and frameworks for users to choose between — as well as the same approach it takes with Hugging Chat itself, where users can select between several different open source models to power it.

Read more of this story at Slashdot.

Ask Slashdot: How Can I Stop Security Firms From Harvesting My Data?

Slashdot reader Unpopular Opinions requests suggestions from the Slashdot community:
Lately a boom of companies decided to play their “nice guy” card, providing us with a trove of information about our own sites, DNS servers, email servers, pretty much anything about any online service you host.

Which is not anything new… Companies have been doing this for decades, except as paid services you requested. Now the trend is basically anyone can do it over my systems, and they are always more than happy to sell anyone, me included, my data they collected without authorization or consent. It’s data they never had the rights to collect and/or compile to begin with, including data collected thru access attempts via known default accounts (Administrator, root, admin, guest) and/or leaked credentials provided by hacked databases when a few elements seemingly match…

“Just block those crawlers”? That’s what some of those companies advise, but not only does the site operator have to automate it themself, not all companies offer lists of their source IP addresses or identify them. Some use multiple/different crawler domain names from their commercial product, or use cloud providers such as Google Cloud, AWS and Azure â” so one can’t just block access to their company’s networks without massive implications. They also change their own information with no warning, and many times, no updates to their own lists. Then, there is the indirect cost: computing cost, network cost, development cost, review cycle cost. It is a cat-and-mice game that has become very boring.

With the raise of concerns and ethical questions about AI harvesting and learning from copyrighted work, how are those security companies any different from AI, and how could one legally put a stop on this?

Block those crawlers? Change your Terms of Service? What’s the best fix… Share your own thoughts and suggestions in the comments.
How can you stop security firms from harvesting your data?

Read more of this story at Slashdot.