I came across a top tier compliance auditor doing the same thing recently. I tried to talk to them about it and rather than approaching this from a constructive point of view they wanted to know the name of the company that got certified so they could decertify them and essentially asked me to break my NDA. That wasn't going to happen, I wanted to have a far more structural conversation about this and how they probably ended up missing some major items (such as: having non-technical auditors). They weren't interested. They were not at all interested in improving their processes, they were only interested in protecting their reputation.
I'm seriously disgusted about this because this was one of the very few auditors that we held in pretty high esteem.
Pay-to-play is all too common, and I think that there is a baked in conflict of interest in the whole model.
Yes. But I'm not working at either company and I'm 99.9% sure that it would lead to absolutely nothing other than a lot of misery for myself. The NDA's I sign have some pretty stiff penalties attached. I was actually hoping to see my trust in the auditing company confirmed and I'm still more than a little bit annoyed that they did not respond in a more constructive way.
My response however is a simple one: I used to steer (a lot of) business their way and I have stopped doing that.
I've already established that it was improper. It's up to them to make the most of that knowledge and then to determine of this is a singleton or an example of a class that has more representation. In that sense it is free to them, I'm under absolutely no obligation to provide them with a service. But I'm willing to expend the time and effort required to get them to make the most of it. What I'm not going to do is to allow them to play the blame game or 'shoot the messenger'.
I didn't mean it as a criticism, I think giving them the opportunity to improve and refusing to offer a scapegoat were both standup things to do. I'm just wondering if they were ever in a position to take that opportunity.
Similar boat. Seen the same shenanigans being played with actors who really should know better - everything from military secrets to medical data, and absolutely YOLOing it with an audit mill. I have it on good authority that there are superuser credentials floating around for their production systems that they’ve lost track of.
And no, I won’t whistleblow either, as it would mostly be me that would face repercussions, and I am unafraid to say that I am a coward.
We choose the battles we fight, and I’d like to believe that ultimately, entropy will defeat them without me lifting a finger.
I'd called out fraud (blatant lying in investor updates) at a VC backed startup where I was a technical co-founder, once. I emailed all the investors and presented all the evidence to them. They decided to not rock the boat and keep my charlatan co-founder. So, I left. Now, the company is slowly bleeding to death.
It's auditing, nobody that is good at doing anything goes to auditing, unfortunately its one of those jobs. I haven't interacted with any auditor that actually understood all they were auditing, some are better than others but the average is worse than almost any other job description I have dealt with.
If you care about this stuff you need to in-house auditing and do your own audits with people who care. Then get certified by an external auditor for the paper.
You can start very lightweight with doing spec driven development with the help of AI if you're at a size where you can't afford that. It's better than nothing.
But the important part is you, as a company, should inherently care.
If you rely on an auditor feedback loop to get compliant you've already lost.
You should check out the banking industry sometime if you'd like to interact with a competent auditor.
Compliance gets taken quite seriously in an industry where one of your principal regulatory bodies has the power to unilaterally absorb your business and defenestrate your entire leadership team in the middle of the night.
I've seen this up close. The regulatory bodies as a rule are understaffed, overworked and underpaid. I'm sure they'd love to do a much better job but the reality is that there are just too many ways to give them busywork allowing the real crap to go unnoticed until it is (much) too late.
That's the problem: the cost doesn't really go down. You can only operate nuclear if you guarantee the prices a decade ahead. That's just not realistic and the end result is that you'll end up subsidizing ever KWh produced and then you still have to factor in decommissioning costs. Nuclear is fantastic technology, but we can do so much better.
Sweden builts a lot of nuclear reactors and they have been amazingly profitable for us.
Unfortunately, many were dismantled before their end of life and we are now stuck with high energy prices.
There is no natural law that says nuclear must be expensive. Correctly managed, it is an excellent power source.
No, what they should do instead is decentralize energy generation to the point that we're in cockroach mode. And if that means that transportation of goods gets priority over transportation of people then so be it until we've figured that one out.
The sooner we get this over with the better. Install as much solar and wind as we can and get to the point where we have a glut and then back the up with decentralized storage.
Get decentralized to the point that no single point of failure will result in wholesale outages: resilient as cockroaches. You can't do that if you have interconnects that have to work for society to work. The centralized electrical grid was a great idea and it got us very far. But it is just too fragile. Much better if you can have many (millions) of points of generation, storage and consumption and a far more opportunistic level of interconnect.
> decentralized to the point that no single point of failure will result in wholesale outages
This is a good goal. But it needs to be more rigorously defined. Autarky can be done. But then you need to accept North Korean living standards.
> Much better if you can have many (millions) of points of generation, storage and consumption and a far more opportunistic level of interconnect
Again, to a degree. You can't decentrally power a modern city. So that means either no more cities, which is expensive, or ruinously-expensive power in cities, which again, in practice, means de-industrialisation.
> But then you need to accept North Korean living standards.
I'm not sure that's true.
> Again, to a degree. You can't decentrally power a modern city.
I'm not sure that that is true either, but it will take a lot more work than to do this for less densely populated areas. In general I'm not sure if 'modern cities' are long term sustainable.
To be clear, I'm not either. But decentralisation requires sacrificing economies of scale. And total autarky is a proven failure. Between that and complete integration is probably a more-independent equilibrium for Europe. But it will require paying a price.
> In general I'm not sure if 'modern cities' are long term sustainable
Sure. Maybe. Until then, the economies that field them will call the shots. (Based on everything I've read, cities are far more sustainable than dispersed living.)
I don't doubt that it requires paying a price. The only relevant question is whether that price is substantially lower or substantially higher than continuing on our current track. I'm open to be convinced that it is higher but I strongly believe that it is lower because with increased fragility you're playing the dice and one day they'll come up in a way that hurts you. The more people there will be in those baskets that harder it will hurt.
As for the future of cities: the internet has given us one thing: independence from having to go to cities to work. Combine that with the ridiculous energy expense on commuting and it seems like a complete no-brainer that we should just stop doing that. COVID has already shown us that this is far more possible than we ever thought it was.
> It's higher than prevailing prices. And it gets higher the more autarkic and decentralised the system needs to be.
I don't actually think that that is true. If I look at the cost / KWh + the network costs + various subsidies you can probably supply a house for a lifetime if you the energy consumption costs for that same lifetime and spent them up front on decentralized generation + storage.
It's all about the density, not so much about the cost and as the density goes up so do the complications and the costs. But if you have enough ground (which really isn't all that much) it is perfectly doable today, and probably you'll be in the black in a surprisingly low number of years. The higher the cost of oil the higher the cost of gas, and the higher the cost of gas the higher the cost per KWh (this may vary depending on where you live).
> How much extra are your citizens willing to pay every year to reduce supply disruptions?
That's a very good question. Probably not much until it starts to happen regularly, so I would expect that problem to solve itself over time. Energy has been a hot topic for the last decade and with every price shock it is getting easier to convince people that if they had more autonomy they would be less affected. Solar + heatpumps have exploded in Europe in the last decade and that trend has not stopped, in spite of a reduction in net metering. Ironically, the biggest stumbling blocks are the governments that want to tax energy but see no way of doing this if it is generated and consumed on the spot.
That very much depends on where in Canada you are! Canada is huge, and parts of it are further north than even Northern Sweden! But from what I understand most Canadians live in the southern end of the country, which is comparable to Germany. Stockholm is at ~60N for your reference
YC backing. That's all it takes. Taken an existing idea that has legs (preferably one you find in Europe or Asia), then take it to the US, apply to YC and say you already have validation see 'startup x'.
> Adding to the awkwardness: Sim.ai was actually a Delve customer, Karabeg told TechCrunch. Both startups were grads of the startup accelerator Y Combinator, and Y Combinator alumni frequently buy each other’s products. So while Sim.ai paid Delve, Delve did not do the same for Sim.ai.
So it’s not all it takes.
<s>Cheating</s> sorry hustling and <s>bullshitting</s> sorry storytelling are more important.
"By combining the evidence I collected together with what the sim.ai team provided, I will show that Delve has stolen an open-source company’s tech by violating their license and then making a lot of money with it."
->
You mean like OpenAI, Anthropic and all these other 'unicorns'?
I'm happy we're all clear on how bad Delve is but in essence what they were doing is exactly the same as what these AI companies do.
While I despise the sham commercial LLMs have made out of intellectual property, I think Delve is one step worse than that. The technology behind LLMs is innovative, even if the data used to train them have ethically and legally dubious origins. Delve doesn’t even have the ability to claim anything they’ve done as original, unless you count fraud as a service.
The only thing that makes delve worse in my book is that they're selling compliance, they have zero excuses. But the likes of OpenAI and Anthropic even if they don't sell compliance do whitewash bulk copyright violations and they have valuations far in excess of Delve. Too big to fail I guess.
My fantasy: After the salesman says (for the 4th time), "Sorry, the manager won't approve that price, but if you could add X hundred dollars, I'm sure I can convince them!", I wait until they are through high-fiving each other and then tell the salesman "Sorry, my trust manager didn't approve that price. I'm sure I can convince him if you lower the price by X hundred dollars".
My reality: I use my bank's car-buying service and pay the bank's negotiated price.
Honestly, I think if anything, we need an app to replace the dealers. Every other problem might evaporate (albeit not completely) if this is addressed. Dealerships are the largest extortionist racket in the car market IMO.
Then please explain, to me he brought up an unrelated point about ethanol (which is often poorly understood and mischaracterized anyways) consuming a portion of agriculturally productive land. Which BTW this agricultural land that produces ethanol is probably not even close to the best place in the country for industrial scale solar from a LOT of perspectives.
My "try to understand" take: We subsidize corn, then use it yo make a less efficient fuel. The money involved in this process likely takes away from subsidies to other forms of energy. There are a great many activities we do not subsidize, but solar is one that if we did, would produce an outsized benefit to society. And the more we do, the better. Redirecting an ethanol subsidy to solar would be a far more beneficial long term strategy for energy independence and overall standard of living in the US. Going all in on Solar would be a transformative and likely relatively short investment period that would last and benefit a long time. We have done many large scale infrastructure projects in the US, and it is frustrating to see the resistance to this one, being both less disruptive and more "all around win" than any other i can think of.
- Redistribution of food (both for livestock and human) production
- Environmental impacts of PV vs livestock vs depletion of native prairies
Point still stands...if you replaced all of the land used to produce ethanol with PV, you would create a surplus of energy that is higher than anything we could imaginably consume today (hint - China is essentially already doing this)
No no, that argument is pretty old now. The amount of fuel you GROW on your own continent at any single or double digit percentage during wartime-anytime is probably a good long-term research project that shouldn't be interrupted by people online.
The problem is corn requires a lot of fossil fuel energy input, mostly in the form of fertiliser. The net energy output is only around 1.3 so an acre of corn produces maybe 400 gallons of gasoline equivalent output requires 300 gallons of gasoline equivalent in energy inputs.
Ethanol from sugarcane makes a lot more sense. Corn ethanol is just a wasteful subsidy for farmers paid for by drivers.
>The net energy output is only around 1.3 so an acre of corn produces maybe 400 gallons of gasoline equivalent output requires 300 gallons of gasoline equivalent in energy inputs.
What is the problem, that sounds great? 30% free output out of your input is staggering honestly. Thank you sunshine and atmospheric CO2. You don't have to use fossil fuel for this. You can potentially run the farm equipment off ethanol if it were designed as such.
You can also only grow sugarcane well up to usda zone 8. Some people can do it as an annual but I guess it is tricky. Corn you can grow all the way into Canada.
Opportunity costs essentially. The effort that goes into growing and refining corn ethanol could be better spent on reducing fuel consumption instead of dedicating five acres of land to provide the equivalent net yearly fossil fuel consumption of a single average car using 500 gallons of gasoline to drive about 15000 miles.
Again opportunity costs. It almost always makes sense to spend the money on the most efficient means to achieve the goal. Money spent paying farmers and ethanol refiners to inefficiently produce 25% lower carbon fuel could instead be directed at other endeavours that for the same cost reduce carbon emissions more.
The difference is we already grow corn at scale beyond market need. Probably less has to be paid in that effort than starting up some other industry. Which still can be done along side the corn shouldering the load until that industry reaches the scale of the corn industry's waste product.
Very nice. I have my eyes on Lithium-Titanate cells for my house, I can't wait until they go down in price enough. Weight and energy density are not an issue, but safety is and those cells are very good in that sense.
I'm seriously disgusted about this because this was one of the very few auditors that we held in pretty high esteem.
Pay-to-play is all too common, and I think that there is a baked in conflict of interest in the whole model.
reply