Archive for July, 2010

« Older Entries
Newer Entries »

Purdue center selects 3 medical software vendors

July 31st, 2010
Share

The Indiana Health Information Technology Extension Center has selected three software vendors to help it achieve its goal of helping primary care providers adopt electronic health records and meet federal standards.

From more than 200 vendors, Purdue has chosen athenahealth Inc., Boston; iSALUS Healthcare, Indianapolis; and MDLand, New York.

The three vendors were chosen for their ability to meet the needs of small or rural health care providers.

The vendors have agreed to provide preferred pricing and terms, and they are working toward a definitive agreement with the center.

The center, which was awarded a $12 million grant from the American Recovery and Reinvestment Act in February, aims to help 2,200 primary care providers adopt and implement electronic health records.

The new records systems can be used in a variety of ways, such as giving patients electronic access to their medical records or allowing providers to write prescriptions electronically.

The practitioners targeted by the program work in small practices or with disadvantaged populations in rural clinics, community health centers or federally qualified health centers.

The Purdue center, which began operations in April, is accepting health care providers into the program.

Source:http://www.jconline.com/article/20100731/NEWS0501/7310329/Purdue-center-selects-3-medical-software-vendors

Comments Off »

Posted in Software News

Tags:

Smooth-talking hackers test hi-tech titans’ skills

July 31st, 2010
Share

Hackers at an infamous DefCon gathering are proving that old-fashioned smooth talk rivals slick software skills when it comes to pulling off attacks on computer networks.

A first-ever “social engineering” contest here challenges hackers to call workers at 10 companies including technology titans Google, Apple, Cisco, and Microsoft and get them to reveal too much information to strangers.

“Out of all the companies called today, not one company shut us down,” said Offensive Security operations manager Christopher Hadnagy, part of the social-engineer.org team behind the competition that kicked off on Friday.

The team kept hackers within the boundaries of the law, but had them coax out enough information to show that workers would have unintentionally made it easier to attack networks.

Workers that unknowingly ended up on calls with hackers ranged from a chief technical officer to IT support personnel and sales people.

One employee was conned into opening programs on a company computer to read off specifications regarding types of software being used, details that would let a hacker tailor viruses to launch at the system.

“You often have to crack through firewalls and burn the perimeter in order to get into the internal organization,” said Mati Aharoni of Offensive Security, a company that tests company computer defenses.

“It is much easier to use social engineering techniques to get to the same place.”

Other companies targeted were Pepsi, Coca Cola, Shell, BP, Ford, and Proctor & Gamble.

The contest, which continues Saturday at DefCon and promises the winner an Apple iPad tablet computer, is intended to show that hardened computer networks remain vulnerable if people using them are soft touches.

“We didn’t want anyone fired or feeling bad at the end of the day,” Aharoni said. “We wanted to show that social engineering is a legitimate attack vector.”

A saying that long ago made it onto T-shirts at the annual DefCon event is “There is no patch for human stupidity.”

“Companies don’t think their people will fall for something as simple as someone calling and just asking a few questions,” Hadnagy said.

“It doesn’t require a very technical level of attacker,” Aharoni added. “It requires someone with an ability to schmooze well.”

One worker nearly foiled a hacker by insisting he send his questions in an email that would be reviewed and answered if appropriate.

The hacker convinced the worker to change his mind by claiming to be under pressure to finish a report for a boss by that evening.

“As humans, we naturally want to help other people,” Hadgagy said. “I’m not advocating not helping people. Just think about what you say before you say it.”

Companies that got word of the social engineering contest before DefCon called in the FBI, which was assured by the event organizers that nothing illegal was afoot.

Source:http://www.google.com/hostednews/afp/article/ALeqM5gWXTsaTcS-HoAgelmcONMJyOBKnQ

Comments Off »

Posted in Software News

Tags:

Industry standard 3d model application poser

July 31st, 2010
Share

Poser ($250, buy-only) is an industry standard application that allows for the creation, importing, and manipulation of 3D figures, usually human beings.

These figures can be modified, posed and given clothing, hair, and accessories to an extreme degree. Then, these scenes can be imported into Anime Studio Pro, 3ds Max, or other applications and used further.

Or, the anatomy and light source of the posed figure can be studied for a 2D paper-and-pencil artist, in the same way he or she would manipulate a plastic figure or clay model.

From that paragraph alone, you might intuit that Poser is extraordinarily versatile, and you’d be right. Many webcomics, such as the extraordinary Dreamland Chronicles, are created from Poser figures alone.

Poser is also often used as a starting point for 3D characters found in many videogames.

Poser is easy to use for someone completely unfamiliar with graphics software. It’s fun to just fire up one of the eight example figures and manipulate the heck out of it with the included tools.

One of the most fun things to do is zoom in on the face and adjust each level of facial features. You can imagine criminologists using this in lieu of a sketch to track down bad guys.

Once you become more familiar with the software, you can even do crazy things like adding horns and realistic scales to characters. The sky’s the limit, really.

The one drawback to Poser is that there’s no demo at all for version 8. Your only option is to buy the $250 software blind. Going by reviews is your only option, and this particular review recommends Poser highly.

If you’re looking for a lot of example content from which to build, you can find many paid Poser objects and scenes at Smith Micro’s Content Paradise site.

If you don’t wish to pay past the software’s high price tag, a Google search or a visit to unofficial Poser site Poserpedia will garner you thousands of free choices.

Whether using the 3D figure as reference, making 3D comics, or importing into other software and going from there, Poser is the gold standard for 3D figure reference.

Source:http://www.businessweek.com/idg/2010-07-30/industry-standard-3d-model-application-poser.html

Comments Off »

Posted in Software News

Tags:

Bringing academic insights to the software industry

July 31st, 2010
Share

The ITEA D-MINT project has turned the academic discipline of model-based testing into an industrial reality to cut the cost of producing complex software-based systems.

Demonstrators in a wide range of industrial domains from street lighting and process control to mobile communications and automotive electronic control units clearly show how such an approach allows the cost-effective development of high quality software.

The resulting techniques are already being exploited in their product development by several major European companies.

Quality is crucial to continuing European competitiveness. Cost-effective and efficient development of complex software systems is essential for future European success in many key industrial sectors.

A wide range of industries across many sectors must invest in and be the best at the development of complex software systems. For example, half the components in modern cars rely on software, while software is the main differentiator between increasingly standard off-the-shelf hardware in telecommunications.

“To be competitive in the future, we need to invest in and be the best in the development of such systems,” says Colin Willcock of Nokia Siemens Networks in Germany, co-ordinator of the D-MINT project. “However 40 to 60% of the overall costs of developing software systems are in testing.

” D-MINT sought to find out how to test complex software systems more effectively. This was important to a wide range of industries as represented in a consortium that included ABB industrial systems, Nokia mobile phones and automotive manufacturer Daimler.

Model-based testing potential

Model-based testing appeared to offer a technology with a lot of promise but no-one seemed to have achieved that potential on an industrial scale. “We decided on a EUREKA project as it offered the advantage of low overheads, which we find attractive, and it is nearer products,” explains Willcock.

“This project had an industrial focus and was driven by the industrial partners that all have same problem and are all desperately searching for a solution.”

In classical software testing, the software and the tests for the software are written in parallel, involving the same level of complexity on the product and test sides. But, working at higher levels of abstraction and using models rather than actual code offers the potential for reuse as the models are in more general terms.

After a knotty early phase, “much time and effort is saved later because errors are detected rapidly” says Willcock. Effectively, the classic advantages of model-based software development are brought across to the testing side.

While model-based testing has been around for 20 to 30 years in academic circles, practically no-one had used this approach in industry. “There is a gap between the academic work and industrial reality,” explains Willcock. “D-MINT was put in place to solve that problem – to make an academic discipline into an industrial reality.”

Model-based testing was applied at an industrial scale with industrial quality across eight separate domains – unusual for an ITEA project.

Applications ranged from street lighting to video-conference units, from telecommunications to cars, and from industrial engineering to machine tools. “Trying to make a common project was a struggle but we came out with surprisingly homogeneous results and comments,” he adds.

Fast exploitation possible

While productivity figures may have appeared modest in some applications, they could be backed up in real industrial cases with real figures and are more than sufficient to justify use of model-based testing.

One result is that three test-tool vendors have already put their products on the market: iXtronics Toolbox, Testing Tech TTmodeler and Conformiq Qtronic.

Moreover, several of the industrial partners are already starting to use the D-MINT techniques in their product development. Major industrial engineering company ABB is using D-MINT results for the next version of its Softstarter control products. Carmaker Daimler will use D-Mint technology for electronic control unit software testing.

Most impressively perhaps, information and communication technology specialist ELIKO has already used the D-MINT approach for a street-lighting control card which is now widely employed in Estonia.

The hardware had already been developed and the software tested when the customer completely revised the specifications to avoid the high cost of regular battery replacement.

Classical testing would have required three man-months of effort to re-establish the current situation. Use of model-based testing enabled the company to generate the new test cases needed with only ten days of effort.

Moreover, while classical and model-based software development took the same time because of the initial training required, subsequent use would eliminate this learning phase – exactly what happened with the radical redesign of the board.

“The ELIKO case validated that model-based testing is not just more efficient, but the greater the change, the more the improvement obtained,” concludes Willcock.

Source:http://www.physorg.com/wire-news/41945125/bringing-academic-insights-to-the-software-industry.html

Comments Off »

Posted in Software News

Tags:

Smart911 for emergency calls launched by nashville

July 31st, 2010
Share

On Friday, A leading provider of software safety solutions, Nashville Emergency Communications Center and Rave Mobile Safety has launched Smart911 Service for Emergency Calls.

Smart911 allows citizens to submit information such as medical conditions or disabilities through a secure web site that can be accessed during an emergency call.

Smart911 For Emergency Calls Launched by Nashville

Smart911 is a web-based program, wherein people can sign up for free, register their phone and take immediately any critical information about themselves or their family by calling at 911.

People can register landlines or Cell phones and as many as you want for your household. If you are in particular types of medicine that could be critical in a medical event, you can put that information in there as well.

Smart91l provides citizens with the facility to submit information that they want to make available to 9-1-1 call takers through a secure web site at www.Smart911.com.

People can include information like children’s photos, medical conditions, home addresses of mobile phone callers, disabilities or other rescue-related information.

After submitting this information, Smart911 sends this information automatically with any 9-1-1 call to the call taker’s work station at participating Public Service Answering Points (PSAPs).

This service supports citizen demand for the ability to easily provide and manage special needs data.

Source:http://today24news.com/business/smart911-for-emergency-calls-launched-by-nashville-312487

Comments Off »

Posted in Software News

Tags:

Security experts release software to attack Android phones

July 31st, 2010
Share

The root-kit tool was released to “to persuade manufacturers to fix a bug that lets hackers read a victim’s email and text messages,” according to report by Reuters.

“It wasn’t difficult to build,” said Nicholas Percoco, who leads Spider Labs. Working with a colleague, Percoco said it took about two weeks to develop the tool, which allows nefarious users to take control of the device and steal email and text messages.

Percoco distributed the root kit on DVDs at the Defcon conference, which is a meeting of around 10,000 security experts who can attend anonymously. Reuters noted that “law enforcement posts undercover agents in the [Defcon] audience to spot criminals and government officials recruit workers to fight computer crimes and for the Department of Defense.”

Security issues hitting Android are contradicting the perception that malicious attacks are primarily directed at the largest installed base. The global installed base of Apple’s iOS devices is at least four times as large as Android, which despite a lot of media attention, is still similar to Microsoft’s beleaguered Windows Mobile in terms of market share.

Android’s open-ended security defended

A day ago, security researchers at Lookout reported the potential for mobile software to take invisible actions that users were not aware were happening, noting that many apps on all platforms can gain access to private data, and specifically calling out a wallpapers app on Android for collecting device data, phone numbers, and voicemail numbers of users who downloaded the app, forwarding the information to servers in China.

At least one Android blog, Android Tapp, rushed to defend the platform, insisting that an initial report by Venture Beat was inciting “fear. uncertainty and doubt” by describing the data collection as “malicious.”

The blog indicated that there was nothing wrong with developers collecting Android users’ data without disclosure and for unknown purposes, suggesting instead that users should anticipate the full consequences of downloading third party software based on the permissions that software requests during installation.

While defending the developer involved in harvesting Android users’ phone numbers, voicemail phone numbers, and device IDs through his “Jackeey Wallpaper” app, the Android fan blog pointed out that other Android wallpaper apps request permissions to read phone call information, read SD Card storage, and access contact data.

Following Lookout’s report, Google pulled the wallpaper app in question, but other apps that do the same thing while requesting even more access to users’ data are still available for download.

“True all users should indeed be aware of what they are installing from the Android Market,” the Android blog concluded. “But was the mass negative press without covering the complete story warranted???”

Source:http://www.appleinsider.com/articles/10/07/30/security_experts_release_software_to_attack_android_phones.html

Comments Off »

Posted in Software News

Tags:

Software released for attacking Android phones

July 31st, 2010
Share

Two security experts said on Friday they released a tool for attacking smartphones that use Google Inc’s Android operating system to persuade manufacturers to fix a bug that lets hackers read a victim’s email and text messages.

“It wasn’t difficult to build,” said Nicholas Percoco, head of Spider Labs, who along with a colleague, released the tool at the Defcon hacker’s conference in Las Vegas on Friday.

Percoco said it took about two weeks to build the malicious software that could allow criminals to steal precious information from Android smartphones.

“There are people who are much more motivated to do these things than we are,” he added.

The tool is a so-called root kit that, once installed, allows its developer to gain total control of Android devices, which are being activated by consumers at a rate of about 160,000 units per day, according to Google.

“We could be doing what we want to do and there is no clue that we are there,” Percoco said.

The test attacks were conducted on HTC Corp’s Android-based Legend and Desire phones, but he believed it could be conducted on other Android phones.

The tool was released on a DVD given to conference attendees. Percoco was scheduled to discuss it during a talk on Saturday.

Google and HTC did not immediately return calls for comment.

Some 10,000 hackers and security experts are attending the Defcon conference, the world’s largest gathering of its type, where computer geeks mix with federal security officials.

Attendees pay $140 in cash to attend and are not required to provide their names to attend the conference. Law enforcement posts undercover agents in the audience to spot criminals and government officials recruit workers to fight computer crimes and for the Department of Defense.

Organizers of the conference say presenters release tools such as Percoco’s root kit to pressure manufacturers to fix bugs.

Source:http://www.abs-cbnnews.com/lifestyle/gadgets-and-tech/07/31/10/software-released-attacking-android-phones

Comments Off »

Posted in Software News

Tags:

Get Adobe Flash playerPlugin by wpburn.com wordpress themes