Posted in Architecture, Security on April 27th, 2002 Comments Off
There was quite some noise about US Federal Government considering selection of Passport to deliver single sign-on recently. The original story from The Seattle Times was slashdotted and you could here some really excited reactions out there.
Nikolaj reckoned that we “should understand ‘Passport’ as ‘authentication within the GXA framework’ coupled with Microsoft’s ‘Digital Rights Management Operating […]
Posted in Security on April 22nd, 2002 Comments Off
“I don’t think vendors are going to build in privacy protections if there is no incentive for profit,” said Avi Rubin, principal researcher at AT&T Labs, who added that he would like to see a mix of technology and legislation that guards privacy. …
“These (privacy-enhancing technologies) are built by geeks and only used by geeks. […]
Posted in Security on April 22nd, 2002 Comments Off
Today I have been on a meeting with Microsoft security people re our customers’ issues and requirements. Seting aside the obvious priority of secure defaults and making their products “more secure”, following things IMHO could improve detection side of Windows security.
Cryptographic file integrity checking. Currently when I inadverently install Back Orifice or other cleverly launched […]