Skip to main content

Home/ Information Security/ Group items tagged online

Rss Feed Group items tagged

Filter: All | Bookmarks | Topics Simple Middle
Carlos Gomes

DRM-roll for consumer privacy protection - Network World - 0 views

www.networkworld.com/...0724sec2.html

assurance copyrights drm intellectual-property misa security

shared by Carlos Gomes on 13 Mar 07 - Cached
  • Through DRM technologies, consumers engaging in electronic commerce could grant vendors and suppliers a license to access and utilize certain aspects of the consumers’ data. This would enable a consumer to grant a read/write license to some creditors, perhaps as a function of a mortgage agreement, and provide a read-only license to a limited subset of the data for simple transactions such as shipping agreements and online orders. Such a license would empower consumers to prevent entities from misusing or reselling consumer information.
anonymous

Bruce Schneier: More on the Broad View of Security - CSO Online - Security and Risk - 0 views

www.csoonline.com/..._on_the_Broad_View_of_Security

security Schneier broad view multidisciplinary

shared by anonymous on 08 Jan 09 - Cached
  • anonymous on 08 Jan 09
     
    Bruce Schneier's comments on the first Workshop in Security and Human Behavior. Examples of the New School of Information Security.
Skeptical Debunker

Technology Review: Mapping the Malicious Web - 0 views

www.technologyreview.com/...24705

Fireshark security monitoring software web connections

shared by Skeptical Debunker on 11 Mar 10 - Cached
  • Now a researcher at Websense, a security firm based in San Diego, has developed a way to monitor such malicious activity automatically. Speaking at the RSA Security Conference in San Francisco last week, Stephan Chenette, a principal security researcher at Websense, detailed an experimental system that crawls the Web, identifying the source of content embedded in Web pages and determining whether any code on a site is acting maliciously. Chenette's software, called FireShark, creates a map of interconnected websites and highlights potentially malicious content. Every day, the software maps the connections between nearly a million websites and the servers that provide content to those sites. "When you graph multiple sites, you can see their communities of content," Chenette says. While some of the content hubs that connect different communities could be legitimate--such as the servers that provide ads to many different sites--other sources of content could indicate that an attacker is serving up malicious code, he says. According to a study published by Websense, online attackers' use of legitimate sites to spread malicious software has increased 225 percent over the past year.
  • Skeptical Debunker on 11 Mar 10
     
    Over the past couple of years, cybercriminals have increasingly focused on finding ways to inject malicious code into legitimate websites. Typically they've done this by embedding code in an editable part of a page and using this code to serve up harmful content from another part of the Web. But this activity can be difficult to spot because websites also increasingly pull in legitimate content, such as ads, videos, or snippets of code, from outside sites.
Seçkin Anıl Ünlü

Plugging the CSS History Leak at Mozilla Security Blog - 0 views

blog.mozilla.com/...plugging-the-css-history-leak

security web history mozilla online browsers privacy bugfix

shared by Seçkin Anıl Ünlü on 17 Apr 10 - Cached
  • History Sniffing
  • Links can look different on web sites based on whether or not you’ve visited the page they reference.
  • The problem is that appearance can be detected by the page showing you links, cluing the page into which of the presented pages you’ve been to. The result: not only can you see where you’ve been, but so can the web site!
  • ...18 more annotations...
  • The most obvious fix is to disable different styles for visited versus unvisted links, but this would be employed at the expense of utility: while sites can no longer figure out which links you’ve clicked, neither can you.
  • David Baron has implemented a way to help keep users’ data private while minimizing the effect on the web, and we are deploying it to protect our users.
  • The biggest threats here are the high-bandwidth techniques, or those that extract lots of information from users’ browsers quickly.
  • The JavaScript function getComputedStyle() and its related functions are fast and can be used to guess visitedness at hundreds of thousands of links per minute.
  • we’re approaching the way we style links in three fairly subtle ways:
  • Change 1: Layout-Based Attacks
  • First of all, we’re limiting what types of styling can be done to visited links to differentiate them from unvisited links.
  • can only be different in color
  • the CSS 2.1 specification takes into consideration how visited links can be abused:
  • implement other measures to preserve the user’s privacy while rendering visited and unvisited links differently
  • Change 2: Some Timing Attacks
  • we are changing some of the guts of our layout engine to provide a fairly uniform flow of execution to minimize differences in layout time for visited and unvisited links.
  • when the link is styled, the appropriate set of styles is chosen making the code paths for visited and unvisited links essentially the same length.
  • Change 3: Computed Style Attacks
  • JavaScript is not going to have access to the same style data it used to.
  • Firefox will give it unvisited style values.
  • it’s the right trade-off to be sure we protect our users’ privacy.
  • fixing CSS history sniffing will not block all of these leaks. But we believe it’s important to stop the scariest, most effective history attacks any way we can since it will be a big win for users’ privacy.
shalani mujer

One on One Professional Online Tech Support - 3 views

I love working with these guys. Their tech support technicians are very professional and polite. They offer one-on-one tech support. They listen to what your issues are, diagnose what your problem ...

tech support

started by shalani mujer on 06 Jun 11 no follow-up yet
David Woodsmall

Computer Problem Solved - 4 views

You could probably do it for free with free software - has always worked for me Complete Slow Windows Computer & Slow Browser Fixes http://www.woodsmall.com/SLOW-misbehaving-computer-fixes.htm

computer problem

started by cecilia marie on 13 Jul 11 1 follow-up, last by David Woodsmall on 27 Feb 14
shai edrote

Software Support for My Business - 1 views

My business has never been in good shape as it is now. My sales are increasing, more customers are coming back and last of all, I have a reliable software support for my business computers. Actuall...

software support

started by shai edrote on 13 Jul 11 no follow-up yet
‹ Previous 21 - 33 of 33
Showing 20 items per page