Security: risk and reward

Thursday, 8 March 2007, 10:20 AM EST

OpenID is a great example of a technology borne out of the failure of centralized schemes. Simply put, OpenID is a decentralized user-centric identity framework. It replaces dozens of username/password pairs with a single Universal Resource Identifier (URI). Let's say I wanted to have a unique ID that was under my control. I create an ID on an OpenID compliant identity server and add a link to it on my personal Web site, Web page, blog and so on. Thereafter, I use my Web address (say www.antonopoulos.com) as my logon identifier on various sites. Instead of registering a separate ID on each site, I hand them my URI and the Web server I am visiting hands off the authentication to my chosen identity vendor.

At Computerworld.

[ Read more ]




Spotlight

Compromised cPanel "Account Suspended" pages redirect to exploit kit

The code redirects visitors to another URL where the Fiesta exploit kit is hosted, which then tries to detect and exploit several vulnerabilities in various software. If it succeeds, the visitors are saddled with a banking Trojan.


Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.
  



Daily digest

Receive a daily digest of the latest security news.
  
DON'T
MISS

Fri, Feb 27th
    COPYRIGHT 1998-2015 BY HELP NET SECURITY.   // READ OUR PRIVACY POLICY // ABOUT US // ADVERTISE //