Infosecurity.US

Information Security & Occasional Forays Into Adjacent Realms

  • Web Log

LinkedIn's 'Vast Army Of Phantom Profiles'

June 26, 2019 by Marc Handelman in Trust, Information Security

Here's a nearly perfect example of why no one should trust LinkedIn, of course, this vaeat does not mean you should not use it for what purposes intended. Enjoy! And, then there's this.

June 26, 2019 /Marc Handelman
Trust, Information Security
Share

USENIX Enigma 2017, Uma R. Karmarkar's 'Neural and Behavioral Insights on Trust' →

September 27, 2017 by Marc Handelman in Trust, USENIX, Conferences, Education
September 27, 2017 /Marc Handelman
Trust, USENIX, Conferences, Education
Share

Kicking the Certificate Habit →

March 07, 2017 by Marc Handelman in All is Information, Simplicity, Web Security, WebTrust, Trust, TOFU, Information Security, Authentication, Must Read

Dr. Jaap-Henk Hoepman's security posts (via his blog), detailing his provocative yet fundamentally sound thoughts on the subject of terminating the utilization of certificates is today's absolute MustRead.

The basic idea - A few days ago I explained the idea including a mechanism to detect phishing attacks. This makes the protocol more complex, and creates confusion. So let’s try again, explaining the basic idea first. Whenever a browser sets up a new TLS connection with a domain, the web server serving that domain respond with its public key (instead of a certificate, as is currently the case) in the initial TLS handshake. (This is more precise than saying that the web server sends its public key in the header of every page it sends.)... Read more at Dr. Hoepman' blog

March 07, 2017 /Marc Handelman
All is Information, Simplicity, Web Security, WebTrust, Trust, TOFU, Information Security, Authentication, Must Read
Share

Blockchain'ed →

February 21, 2017 by Marc Handelman in All is Information, Bitcoin, Cryptocurrency, Cryptography, Trust, Must Read

Screed of the Week, via Aeon, discussing the hard fork of Ethereum, and the Fall of Trust (at least in cryptocurrency). Certainly today's MustRead.

February 21, 2017 /Marc Handelman
All is Information, Bitcoin, Cryptocurrency, Cryptography, Trust, Must Read
Share