The Fallacy of Artificial General Intelligence: Microsoft's Recognition of the Limits of LLMs

-
  Microsoft released a research work last week [1] that claims that GPT-4 capabilities can be viewed as an early version of Artificial General Intelligence. The authors states that " the breadth and depth of GPT -4's capabilities, we believe that it could reasonably be viewed as an early (yet still incomplete) version of an artificial general intelligence (AGI) system. "  The researchers adopted the following definition of human Intelligence to reach this conclusion: " a very general mental capability that, among other things, involves the ability to reason, plan, solve problems, think abstractly, comprehend complex ideas, learn quickly and learn from experience. ". According to the same paper, the definition was proposed in 1994 by a group of psychologists. Interestingly, the authors of the paper [1] acknowledges that the definition of human intelligence is somehow restrictive. They also acknowledge that some components of this definition are currently missing
Post a Comment

statcert: a new tool to identify the type of X.509 certificates and their revocation status

-

Today three types of certificates are used by the web: DV, OV, and EV. The DV certificates only ensure that the certificate owner has the right to control the domain name. Still, it doesn't provide any information about the owner's identity. On the other hand, the OV certificate lets one know that the owner has the right to use the domain name, but it gives more information about the domain name's owner, such as the organization name and the country. Finally, the EV certificates are similar to OV, but they provide more information about the owner, and the verification procedures of the owner information are more strict.

Web users have to trust a website that uses an EV certificate more than a website that uses a DV or OV certificate. However, it is difficult for a web user to distinguish these certificates as the web browsers have decided to remove all the visual indicators for EV certificates.

We have built a new tool called statcert that allows us to know the type of X.509 certificate used by any website. The tool can be installed from this GitHub repository :

https://github.com/SamerW/statcert

This tool can also be used to check the revocation status of certificates. Some web browsers, such as Google Chrome, don't check the certificate status for OV and DV certificates. A user can use our tool to check the status of any certificate.

In addition, our tool can allow us to understand the trend of the web PKI market to know the types of certificates that are the most dominant. The tool automatically downloads the list of one top million websites from Tranco List (https://tranco-list.eu) and generates a report to give the number of EV, OV, and DV certificates found on these websites. The number of websites to check can be reduced to any value less than one million so that the user can reduce the time needed to generate the report. We are using Tranco List and not Alexa of Amazon because Tranco List provides a more reliable list that is hardened against manipulation.

I give here some quick examples:

statcert google.com --ocsp: allow to download the certificate of the web server of google.com domain and check its ocsp status (whether the certificate is revoked or not)



I can use the tool to check different domains simultaneously, but I will add the -v option that allows me to see the report generated for the three domains. Here is one example:

statcert -v google.com zu.ac.ae facebook.com --ocsp


 



Finally, I use the tool to check the types of certificates for the top 20 websites according to Tranco List. The generated report shows that only one website uses an EV certificate, while 13 websites use OV certificates and 5 websites use DV certificates.















Comments

Post a Comment

Popular posts from this blog

What does information security really mean?

-
Security is defined by Meriam-Webster Dictionary  [1] as  the quality or state of being secure.  Secure itself is defined as :  free from danger  or free from risk of loss If we have one million dollars and live in a utopian world, we will not be worried about the dangers that could exist to our money. We may leave our money in the street and label them with our name; no one will take them. Thus, the security and even trust concepts are not relevant in this world because we are sure that everyone is good and has good intentions. In a dystopian world, we are almost sure that dangers exist. Therefore, almost everyone is interested in our assets. In this world, Security is critical as it is the only way that allows us to survive. Trust is relevant also but should be used much less frequently than Security.   In the real world, we are between the utopia and dystopia worlds. We are not sure about the existence or absence of dangers, and yet we need to make decisions about protecting our ass
Read more

Can we build perfect secure ciphers whose key spaces are small?

-
We tend to believe that having a big keyspace is necessary to ensure the secrecy of our information. While this belief is correct for most of our communications, there will be cases when we can obtain perfect secure ciphers whose key spaces are small.  We need to check Shannon’s definition of Perfect Secrecy to see how it is possible. Claude Shannon has many contributions. One of his main contributions was the transformation of cryptography from an art into a rigorous science using probability theory.  In his work, entitled "Communication Theory of Secrecy Systems" 1 ,  Shannon defined the concept of Perfect Secrecy and   proved that the Vernam Cipher is perfectly secure.  Shannon stated that " “Perfect Secrecy” is defined by requiring of a system that after a cryptogram is intercepted by the enemy the a posteriori probabilities of this cryptogram representing various messages be identically the same as the a priori probabilities of the same messages before the intercept
Read more

ChatGPT or CheatGPT? The impact of ChatGPT on education

-
Image
On November 30, OpenAI launched its AI chatbot called ChatGPT. ChatGPT is the most important revolution we have ever had on the Internet, much more important than Blockchains and NFTs. The capacities of ChatGPT are phenomenal. It can do many things, such as writing poems, writing and summarising articles, writing and debugging codes, and solving puzzles and mathematical questions. In addition, the ChatGPT tool can also be used with other tools such as DALL.E 2 (https://openai.com/dall-e-2/) to generate drawings or the Philosopher AI to answer philosophical questions (https://philosopherai.com/). Some tools can also allow the creation of music based on our lyrics. For example, we may use ChatGPT to generate some lyrics and give them to another AI tool to develop our song. If we look at the impacts of these tools pessimistically, the development of AI tools would mean the end of human intelligence and the triumph of human stupidity when only influential individuals can access these tools
Read more