Featured Worklog
Price Search
PC Apex Sponsor
PC Apex Sponsors
PC Apex RSS Feeds
| |||||||
| Slashdot RSS RSS news feed directly from Slashdot. |
 |
| | LinkBack | Thread Tools | Display Modes |
21-November-07, 04:22 AM
| #1 (permalink) | |
| News Hound  |  Slashdot // Dan Geer On Trusting PCs In Botnets walk*bound writes "In an essay published by ZDNet, security scientist Dan Geer has an interesting proposal for e-commerce sites to evaluate the trustworthiness of clients that try to connect. Assume that end users either always say 'Yes' or always say 'No' to security dialog boxes. Then make the decision one of two ways: 'When the user connects, ask whether they would like to use your extra special secure connection. If they say "Yes," then you presume that they always say "Yes" and thus they are so likely to be infected that you must not shake hands with them without some latex between you and them. In other words, you should immediately 0wn their machine for the duration of the transaction — by, say, stealing their keyboard away from their OS and attaching it to a special encrypting network stack all of which you make possible by sending a small, use-once rootkit down the wire at login time, just after they say "Yes."'" Read more of this story at Slashdot. More... | |
|  | |
|
| Bookmarks |
| Thread Tools | |
| Display Modes | |
Linear Mode
| |
Similar Threads | ||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| Slashdot // Tools To Squash the Botnets | Gizmo | Slashdot RSS | 0 | 10-November-07 12:30 AM |
| Slashdot // The World's Biggest Botnets | Gizmo | Slashdot RSS | 0 | 09-November-07 12:03 AM |
| Slashdot // P2P Networks Supplement Botnets | Gizmo | Slashdot RSS | 0 | 31-May-07 12:42 AM |
| Slashdot // The NYT on the Proliferation of Botnets | Gizmo | Slashdot RSS | 0 | 06-January-07 09:30 PM |
| Slashdot // Ballmer - Trusting Vista and Battling Google | Gizmo | Slashdot RSS | 0 | 22-October-05 05:02 AM |
All times are GMT -5. The time now is 09:29 AM.
Advertisements
