Meeting 11th September 2025

Introductions & new members

Meet the Groups (not)

Helpdesk ?? A link on the Cardiff u3a website; other things to add, ie AbilityNet ??

Christmas Lunch

Phil’s Buzzword – Magsafe

News items

Jonny Ive joins up with OpenAI to create new enterprise

New supercomputer in Bristol

Expansion of Data Centres across the UK (including South Wales)

Digital ID – a step forward (or backwards, discuss)?

Hiya, Withheld and Private Numbers and this too. (Renee, Iain, Paul and me)

Useful guide to identify genuine (ie True, not False) info in the AI web

UK drops action against Apple to provide back-door access to iCloud

Apple’s continuing journey to differentiate it in the world of AI with its Siri replacement and this too

Apple’s announcements last week – new iPhones, AirPods, Watches, Hypertension measurements, etc

Discussions:

My first experience of computing

What do people want from Digital Matters ?

Next meeting

o   Presentation on TV in our lifetimes – the impact of digitisation by Iain King

How did it all start for me?

It was one of these three, I think probably the middle one …

… that kicked off my interest in computing. Of course these were very much analog mechanical calculating machines, and I never got the hang of how to use them however hard I tried in the Statistics Practical labs at UCW Aberystwyth in the period 1969-70, but they did revive my interest in mathematics which I’d had to drop as an ‘A’ Level subject, and soon after, multi-variate statistics became my focus for much of the next 10 years as I struggled to complete (#fail) a PhD.

However, when we went through the induction course and were told that we should sign-up for a course on programming in Wirth’s Algol 60, I didn’t delay. The die was cast, my future was sealed. I spent the next three years learning Fortran IV, then Dartmouth Basic (used on Teletypes) to submit jobs to the Elliot 4130, later a ICL 190x that the Computer Centre had. My data sets were so large I had to submit jobs to the Regional Computing Centre at Manchester which meant I had to work every evening to get the data set correct, then submit the job through a landline (modem connection) so that it ran through the night and returned the job the next day for me to print out the results and prepare my data set, or change the algorithm, for the next nights job. Oh happy days!!! Oh to be so young and energetic again!!!

Later when abandoning my lecturing role at a College of Education I did a MSc Computer Science conversion course at Bradford where I was given a Digital Equipment PDP 11/60 to play with and build my own Disk Operating System (Modos) using another of Wirth’s programming languages – Modula. He went on to develop Ada which was widely adopted in the defence and general scientific community. So that led me into Systems Programming.

I returned to Cardiff in 1981 at what was then South Glamorgan Institute of Higher Education as Systems Programmer for their brand new Prime 500 computer and had to learn a new operating system – Primos, and new programming languages – PLP (as well as using my Fortran experience).

Latterly as computing developed and fighting for time-share and batch-processing came to be a thing of the past – much as mechanical calculating machines had disappeared – I embraced the internet in the early 1990’s. I created the first website for what had become UWIC, and had learnt a fair bit about HTML, and scripting.

It all went downhill from then on as management responsibilities took over and programming became a thing of the past. Of course I do still dabble, but really – it’s way beyond me, as my eldest son tells me on more than one occasion.

Your first/funniest/most awkward/useful encounter with computing, and/or matters digital.

I await your contributions, which I’d like to record. We did something like this once before during Covid times on Zoom, in 2025, and several of us wrote “our encounters” up for Thought grazing.

I wrote the following post …

We had a number of other contributions, from Margaret …

… from David Hughes …

… from Paul de Guess …

… and from Renee …

There were many other amusing and interesting contributions, so we felt it worthwhile to kick the new year off with a trip down memory lane. Enjoy.

Here’s the audio recording. I’m afraid the transcript is far from perfect, and life is too short to go in and edit it …

Digital Identity

We’ve touched on this topic in number of ways “over the years”, but never specifically looked at Identity – our identity and how it is handled, and yes mistreated, in the digital world.

I don’t intend to go over old ground again, but will provide a basis to introduce what will be the main subject of today – Passkeys, which Iain will present. I will do that through referencing previous posts on this website.

We start with the first post I wrote way back in 2015, aptly entitled “Let’s start at the beginning …“. In this I go through the basic steps in creating a strong password and a few other things besides.

Then in 2020 we discussed using Password Managers in the post “Using a Password Manager and implementing Two Factor Authentication” which again reviews setting a password before moving into the area of using password managers – which have the advantage of your passwords being configurable to be available on any many machine, anywhere as they’re held in encrypted form, in the cloud. This post also introduces the idea of Two Factor Authentication (2FA) whereby having logged into a website you’re challenged to use an application (usually held on your smartphone), eg Google’s Authenticator or Authy (the one I use) to provide a second credential to the website to confirm you are who you said you are! [I’m afraid the images appear to be missing, but I’ll try and find them!!!]

Earlier this year (in January, I touched on Passkeys) in this post “Prevention and protection from Scams“, which also referenced my main post on the subject – “Keeping safe online” – which I’ve tried to keep up-to-date and will review again in the near future.

And then, in March 2025, I made you aware of the value of having an Apple ID and account – even if you’re not an Apple user, as a means of getting a set of user credentials (Identity) that you can use instead of supplying your regular email address, and creating a password, when requested, when visiting a website – often for purchases. Apple is well recognised for its privacy and security concerns, and unlike Microsoft, Google, Facebook or X, is more likely than any of the others to not use your Identity for any other purpose other than providing you with a digital identity.

That leads nicely into a bit of history from my working life at Cardiff University that I’ve never shared with you before which I’m very pleased to have been part of. Let me paint a picture, you need to go back 20 years; I’ll share a number of scenarios.

First. You’re a student, or a member of staff, you want an email address, you want to access file store, you want to access the growing number of resources available from the internet through the library, or even just manage your library subscription. You need a UserID and Password, or multiple UserIDs and Passwords to do what you want to do online. Nothing new here, it’s what you experience every time you access a new website! But quite a drudge when you’re in the same institution.

Solution. The IT department creates a unified Identity system that all departments can use. A single UserID and Password for each user.

However. If the staff member or student (on vacation at home say) wants to access their email, file store, whatever from another institution, they most normally couldn’t and the best they could hope for was applying for a “temporary”, or “guest user” account which would at best only provide limited privileges to the visited institution. Rather frustrating.

Solution. Cardiff University through the work of a young researcher – Rhys Smith (who’s tragically not with us anymore) – investigated and implemented (with external funding from JISC) the possibility of using a technology which went by the name of Shibboleth, but more accurately used Security Assertion Markup Language (SAML) architecture to provide Single Sign On to all resources within an organisation in the first instance …

In information technologyShibboleth is a community-wide password that enables members of that community to access an online resource without revealing their individual identities. The origin server can vouch for the identity of the individual user without giving the target server any further identifying information.[25] Hence the individual user does not know the password that is actually employed – it is generated internally by the origin server – and so cannot betray it to outsiders.

… but then by binding other organisations together into Federations, allowed all users of a federated organisation to access the resources they were entitled to use (from their host organisations’ permission policies) from any other institution in the same federation. In the UK this became the UK HE Federation. Nirvana! [Following on from this in due course, individual Federations applied to become members of more universal federated access and Microsoft and Google (for instance) implemented federated access using SAML v.2]

But how about WiFi, wasn’t that the solution anyway? Well yes, it was in one sense but if you wanted to move from one campus to another and use that institutions’ WiFi network you still had to apply for a separate UserID and Password. The work Cardiff did was to extend their work with SAML/Shibboleth to provide WiFi Roaming which meant that you could move between institutions and your host institution would provide the credentials that allowed you to login on different campuses.

End of history, but a fine exemplar of the implementation of Single Sign On. My role … I led a UK project to encourage and develop good practice in Identity Management within institutions, and then to encourage the institutions to take-up Shibboleth and Federated Access Management. For more information on this you can refer to Perplexity (of course!!!)

And so to Passkeys …


Link to the Google video on YouTube about Passkeys.

Finally, a couple of links to hardware implementations of Identity Security …

Claude

Can you detail and describe physical devices used for identity purposes to allow access to systems, ie dongles or USB-stick based devices

Physical identity devices for system access come in several forms, each with different security mechanisms and use cases:

Hardware Security Keys

FIDO2/WebAuthn Keys (like YubiKey, Google Titan, SoloKeys)

  • Small USB, NFC, or Bluetooth devices that implement open authentication standards
  • Generate cryptographic signatures to prove identity without transmitting secrets
  • Often feature a physical button that must be pressed to authorize access
  • Resistant to phishing attacks since they’re bound to specific domains
  • Support multiple authentication protocols (FIDO2, U2F, PIV, OATH)

Smart Cards and Tokens

PIV/CAC Cards

  • Credit card-sized devices with embedded chips
  • Common in government and enterprise environments
  • Require PIN entry and card reader
  • Store certificates and cryptographic keys securely

USB Cryptographic Tokens

  • Larger than security keys, often with displays and keypads
  • Can store multiple certificates and keys
  • Some generate time-based one-time passwords (TOTP)
  • Examples include SafeNet eToken, Nitrokey Pro

Biometric Devices

USB Fingerprint Readers

  • Standalone devices that authenticate users via fingerprint
  • Often used with Windows Hello or similar systems
  • Can be integrated into keyboards or mice

Facial Recognition Dongles

  • Less common but emerging technology
  • Small cameras that perform facial authentication

Specialized Security Dongles

Software License Dongles

  • Protect expensive software from piracy
  • Contain encrypted keys that applications check
  • Examples include HASP dongles, Sentinel keys

Cryptocurrency Hardware Wallets

  • Secure devices for managing digital currency private keys
  • Examples include Ledger, Trezor devices
  • Often require physical confirmation for transactions

Technical Characteristics

These devices typically feature:

  • Tamper-resistant hardware that protects stored secrets
  • Secure elements or trusted platform modules (TPMs)
  • Various connectivity options (USB-A, USB-C, NFC, Bluetooth)
  • Battery-free operation (powered by host device)
  • Cross-platform compatibility

The main security advantage is that sensitive cryptographic material never leaves the device, making them highly resistant to remote attacks and credential theft compared to software-only solutions.

… and from ChatGPT.

Meeting 10th July 2025

Steering Group and next year

Phil on AI


Amazon Prime Day [DIH]

The Indy Best Buys

Best buys from Which?

What have I been up to

MacMini [DIH]

Smart Plugs -> Octopus (Solar) savings [DIH]

Banking switch [DIH]

Phone and Message blocking on iPhone [DIH]

How to get rid of annoying notifications

Hardware

Anker Battery recalls

Over a million recalls for Anker Battry Packs

The fastest USB port on your computer

AI

OpenAI to launch browser to rival Chrome [DIH]

Research reviews and AI [Iain]

Review of Claude

Grok and intelligence (or NOT)! [IAIN]

What LLM does Perplexity use [DIH]

Finding a thread in your Perplexity Library [DIH]

Teslas fail the AI test [Iain]

ISO Standard for AI [Iain]

https://www.archai.io [Iain]

Fraudulent music generated by AI [Iain]

Health

https://www.youtube.com/watch?v=CRGNPnVNNCE [Iain]

British entrepreneur championing health AI with Microsoft

Good news on AI test for Prostrate Cancer [Iain]

Apple

Live translation in next release of Apple’s OS

Why Mac users need VPNs

Ditching Siri for another AI offering [DIH]

Apple considers using ChaptGPT or Claude to provide Apple Intelligence [DIH]

Free Mac apps you should consider

Apple pays loads of tax in the UK

PCs and Windows

Different versions of Outlook [Iain]

Windows 11 and passkeys

More Win11 installations than Win10 finally

Why isn’t Windows free? [DIH]

Google

Google slows down YouTube to foil Ad Blockers [DIH]

Twenty years of Google Earth [DIH]

Gemini can now identify songs

New features for Google messages

Make your Android phone minimal

New Google Photos features coming to iOS before Android

Google Scanner to Drive [DIH]

Making Google Search better ???

Privacy, security etc.

VPN myths

Removing personal info from Google search

Malicious “Unsubscribe” links

Why Passkeys are more secure than Passwords [Iain]

Quishing scams warning: how to spot and avoid dodgy QR codes [Don]

Software

WhatsApp and ads – 1 [DIH]

WhatsApp and ads – 2

Moving to Libre Office for a Danish ministry

Discussion

Post Office Horizon Scandal report volume one – BCS response [Iain]

Digital Photography – an update

Previously on Thought grazing

Computational editing (AI) on the iPhone

Project Indigo (Adobe – on iOS only currently)

https://petapixel.com/2025/06/19/adobes-new-computational-iphone-camera-app-looks-incredible

https://research.adobe.com/articles/indigo/indigo.html

Apps that control your camera

Halide – iOS only – https://halide.cam/supportnew

Blackmagic ? 

Tutorials on mobile photography

https://photzy.com/category/mobile-photography

iPhone Photography School – https://iphonephotographyschool.com/blog/

iPhone Editing in 8 minutes – https://www.shutterbug.com/content/master-iphone-photo-editing-8-minutes-video

On your desktop

Apple Photos

https://uk.pcmag.com/photo-editing/158554/dear-apple-thanks-for-fixing-the-photos-app-sincerely-everyone

Google Photos

https://www.howtogeek.com/google-photos-editor-just-got-a-big-revamp

General Software for photo editing

Special effects

Adobe Photoshop Express – all platforms

Create effects from your images. Turn them into watercolours. Waterlogue – £3.99 (iOS

Picaso -> Google -> Google Photos

Snapseed (Nik) -> Google -> Snapseed – Apple App Store or Google Play

Snapseed Free, available for iOS (v.3 – June 2025), iPAD OS and Android (v.2.22); not available for Desktops in native form.

Finally scanning

Google Photoscan – Free (iOS and Android)

Research from Perplexity

https://www.perplexity.ai/search/is-there-an-equivalent-to-hali-ju8AAPOGS9q0wW4DmbB3Xg?login-new=false&login-source=sharedThreadLoginGate

Meeting 12th June 2025

“The Buzz” – Bluetooth – Phil (now that he can see)!



USB adaptors

A no-fuss smartphone for “oldies”??? (PressReader)

VPN or Proxy – which is better for protecting your identity online

Best Android smartphones in 2024 (Anne)

Maximising iOS Battery Performance

Get your passwords off Authenticator if you’re using it as a Password Manager (Iain)

Support for Office apps on Windows 10 continues until 2028 and Outlook (Iain)

Alternatives to Google Search that protect your privacy better

Use an eSIM for travel??? (Sheila)

A not surprising suggestion to move folk from Windows to Linux and LibreOffice

A Marmite question – Edge and CoPilot – love it or hate it? (Anne)

Apple WWDC posts

Live blog of announcements

Commentary on WWDC from PC Mag (UK)

Whats new with MacOS26

What’s new with iOS26

You might have missed these – 1

You might have missed these – 2

Apple Photos app “fixed” and changes to Camera app on iOS26

Google announcements

Better editing with Google Photos

Google photos hosts a lot of photos!

Artificial Intelligence slot

Link between Energy usage and climate change (Iain)

Best AI search engines currently

Try clothes on using Google AI

What do you want to know about ChatGPT? (also an article in Computer Active – a review on AI Chatbots – PressReader)

A hope for standards for developers using AI (Iain)

From Iain re. Article in Wired: the key messages are that Perplexity is becoming more commercialised and that the CEO thinks that AI “agents” are the future:

Despite the furor, Perplexity today says that its service gets 650 million queries per month and is said to be chasing investment that would value the company at $18 billion. The company is pushing AI assistants for mobile devices and working on its own web browser. In April, Motorola announced that Perplexity would come bundled with its new Razr Ultra phones. Last month the company partnered with PayPal to make it easier for users to buy products using its assistant. Samsung is also said to be in talks to possibly include Perplexity on its devices, according to a report from Bloomberg. (Perplexity declined to comment on this after the interview).

How might Apple embrace AI search alternatives

Using Perplexity’s Voice Assistant on iOS

Ditch Siri for Perplexity’s Voice Assistant

Meeting 8th May 2025

“The Buzz” – USB – Phil

News

u3a Online Learning Events

AbilityNet – TechShare Events

Royal Mail transforms postbox with parcel window and solar power – Stella

How do I get an eSIM on giffgaff?

Here’s What Actually Happens When You Use Incognito Mode

Google Photos will now let you edit shared pictures

RIP Passwords: Microsoft moves to Passkeys as the Default on New Accounts

7 Open Source Apps for Windows You Should Be Using

A Complete Guide for Removing Malware From Your PC

White House insists iPhones will be US-made – but Apple calls it a non-starter

Got an iPhone? Here are 11 features you’re probably not using–but should

Save your iPhone and Apple Account by setting up a recovery contact also ICE

Will iPhones cost more because of Trump’s tariffs on China?

Why an all-American iPhone is impossible

Papercut – Essential Apple User magazine (£2.99)

Martin Lewis: How to call your bank by dialling just three numbers

Don’t Fall for This New Gmail Phishing Scheme

Proton Mail Is Getting Some of Gmail’s Best Features

What Is Chromium, and Can You Use It as Your Browser?

WhatsApp Just Announced a Dozen New Features

Your issues

AI Spot

Problems with WhatsApp message store and Perplexity’s assistance – Nita

AI struggles to Debug Code but for how long

Google’s AI Mode Is Now Rolling Out Widely – not available in the UK just yet

Gemini could be integrated into Apple Intelligence this year

Google Gemini AI App Can Now Edit Your Photos

Why is it so hard to protect Seniors from scams

David W: This is great information. The explanation of cognitive changes in normal aging caught my attention. Both in terms of my profession and personal experience. I reserve morning when I’m fresh for financial matters, for example. Dividing attention refers to going back and forth between stimuli. I’m pretty certain the Trailmaking Test, created for enlistees in WW1, is open source. It’s a very good tool for assessing seniors cognitive health.

Iain: This is an interesting example of the genie being put back in the bottle. Drivers prefer physical controls to touchscreens in cars and studies have shown that they are safer. The safety regulators are now encouraging a return to physical controls for basic driving functions.

David W: I enjoyed the article. I’m interested in the interaction between normal aging and technology. Something to be aware of is that multitasking is a myth. The mind processes only one stimulus at a time. It divides and shifts attention back and forth and does so less quickly as we age. The interface that works fine at 22 may not be suitable at seventy. Because of this I never use the phone while driving.

Iain: This is an interesting study by Anthropic of how US students actually use Claude. The key finding:

Nearly half (~47%) of student-AI conversations were Direct—that is, seeking answers or content with minimal engagement. Whereas many of these serve legitimate learning purposes (like asking conceptual questions or generating study guides), we did find concerning Direct conversation examples including:

Provide answers to machine learning multiple-choice questions
Provide direct answers to English language test questions
Rewrite marketing and business texts to avoid plagiarism detection

I’ve been using Perplexity to the exclusion of any other search engine now for about a month and have had no need as yet to do deep research – but perhaps I’ll now give it a try. If anyone would like to do a comparative test of Gemini or ChatGPT, that would be interesting.

Not just Perplexity, but ChatGPT too … you can talk to Perplexity from WhatsApp
https://lifehacker.com/tech/you-can-now-talk-to-perplexity-ai-directly-from-whatsapp

Watching o3 guess a photo’s location is surreal, dystopian and wildly entertaining
Watching OpenAI’s new o3 model guess where a photo was taken is one of those moments where decades of science fiction suddenly come to life. This link should show Open AI acting like Sherlock Holmes and deducing the location shown in a photograph. Impressive and worrying in equal measure!

LG’s Integrated TV Ad Tech Analyzes Your Emotions

AI of dead Arizona road rage victim addresses killer in court
Clip of Chris Pelkey, who died in 2021, says: ‘I believe in forgiveness’ after his sister fed an AI model videos of him.