You are here: silicon.com > Resources > White Papers > Security > Intrusion - Tampering > Network Security

Network Security White Papers

Is It Too Late for PAKE?

Tags:
network security

Overview The most common web authentication technique in use today is password authentication via an HTML form, where a user types her password directly into a web page from the site to which she wishes to authenticate herself. The problem with this approach is that it relies on the user to determine when it is safe to enter her password. To resist phishing and other social engineering attacks, a user must rely on the browser's security indicators and warning messages, e.g., the URL bar and the site's SSL certificate, to authenticate the website and determine when it is safe to enter her password. Unfortunately, studies suggest that many users habitually click through SSL certificate warnings and misunderstand or ignore browser security indicators.

Further White Paper Details
Publisher	University of California	File Format	PDF
Date Published	May 2009
Format	White Papers
Topics	Network Security, Security Management, SSL - TLS

Did you find this white paper useful?

Balancing Security Against Productivity

What makes for great security? Is it about keeping the bad guys out or letting the good guys in? About defending attacks or preventing them? When IDG Research Services queried...

Publisher:
Novell

Security: New strides in preventing intrusions.

Need help eliminating risk in your IT environment? This ForwardView webshow describes how security appliances, which incorporate an array of security functions, can help you ward off security breaches without...

Publisher:
IBM

MessageLabs Intelligence : 2009 security Predictions

Having analyzed the global threat landscape for almost a decade, MessageLabs Team Skeptic™ is comprised of many world-renowned malware and spam experts who have a global view of threats across...

Publisher:
MessageLabs, now part of Symantec

IDC Vendor Spotlight

Organised ubiquity is a must for organisations to sucessfully "project" their users in any given landspace, at any given time, with secuirty policy. This White Paper covers issues surrounding secure...

Publisher:
BeCrypt

Trend Micro Enterprise Security white paper

This white paper reviews the content security threat landscape and how it has evolved into a more dangerous and high risk environment. The paper discussed how conventional content security approaches...

Publisher:
Trend Micro

Mozilla says Thunderbird podcasting is on its way

The anti-phishing feature attempts to detect and warn about incoming email-based scams which prompt users to enter information such as internet banking log-in details or credit card numbers. Developers of the Mozilla open source email client have...

Why does phishing work?

Nearly a quarter of participants in the research didn't look at the address bar, status bar or security indicators on the phishing sites. Now three academics from US universities Harvard and Berkeley have published research into just why these...

Channel:
Security Strategy

Security 2007: Data theft still the one to watch

F-Secure is also predicting that 2007 will finally become the year when its repeated warnings about mobile phone malware begin to come good. A MessageLabs advisory warned: "2007 will see VoIP become a prime target for phishing attacks whereby spoof...

Locking down financial security

And the attack rated most threatening by the banks - phishing - happens without the banks' involvement, as thieves exploit customers directly. Delivered to users of high-value commercial accounts via targeted phishing mail, watches victims...

Firefox extension to protect from wireless hacks

The messages may mean users either avoid a legitimate site or get used to automatically accepting certificates with the warning and inadvertently trust a malicious site at some point. If there is disagreement on those questions, the browser...

Web security warnings being ignored - even by the most tech-savvy

In an online study conducted among 409 participants, the researchers found that the majority of respondents would ignore warnings about an expired Secure Sockets Layer (SSL) certificate. The warnings appear when a browser detects a problem with a...

Channel:
Security Strategy
Tags:
firefox,
ssl

Featured White Papers

The Value of Location Intelligence in the Communications Industry

Public Services are under pressure, the challenge is to do more with less. How do you improve citizen satisfaction, increase cost efficiencies and improve service delivery? The power of location intelligence is helping many local authorities and government departments make more informed decisions and derive greater value from current location-based information and data. Read this whitepaper to see how you can take advantage of location intelligence.

Publisher:
Pitney Bowes

Best Practices for Translating Customer Satisfaction into Revenue

Today's support organisations are focused on two top-level metrics: financial results and customer satisfaction. For most, it's easy to track financial performance, but customer satisfaction is akin to speaking a foreign language. How do you quantify customer satisfaction? Download the Best Practices for Benchmarking Customer Satisfaction to get industry research the Association of Support Professionals (ASP) on how to measure and leverage customer satisfaction.

Publisher:
Citrix Online

HP print solutions and 3M

the objective for 3M was to optimize office printing infrastructure at 3Mlocations worldwide Reduce total cost and environmental footprint. Some of the business benefits acheived by switching to HP print soultions, More than $3 million in savings in first two years and Per page costs reduced by up to 90 percent.