 ; |
 |
Alle Beiträge von Dipl.-Ing. Sebastian Gajek
*Verify your PayPal Account
 |
 |
*Postbank Online-Banking
*SOUTHTRUST BANK – Security Maintenance
Deutsche Bank
1st TIPPI Workshop
1st TIPPI Workshop: Trustworthy Interfaces for Passwords and Personal Information, Stanford University, USA
Präsentationen des ersten Workshops, der sich auf die Problematik des Phishins und seinen Variationen konzentriert.
Anti-Spam & Anti-Phishing
Slides in PDF format for my talk in UCL’s seminar series. I covered the failure of universal proof-of-work systems to deliver, the success of ISP log processing (extrusion detection) and tacked on some remarks about tackling phishing.
Insecure Real-World Authentication Protocols (or Why Phishing is so Profitable)
Richard Clayton
Thirteenth Cambridge Protocols Workshop, Sidney Sussex, 2005.
Insecure Real-World Authentication Protocols (or Why Phishing is so Profitable) weiterlesen
The Homograph Attack
Inside Risks 140, CACM 45, 2, February 2002
Oldtimers remember slashes (/) through zeros [or through the letter O where there was no difference] in program listings to avoid confusing them with the letter O. This has long been obsoleted by advances in editing tools and font differentiation. However, the underlying problem of character resemblance remains, and has now emerged as a security problem.
Two-Factor Authentication: Too Little, Too Late
Inside Risks 178, CACM 48, 4, April, 2005
Two-factor authentication isn’t our savior. It won’t defend against phishing. It’s not going to prevent identity theft. It’s not going to secure online accounts from fraudulent transactions. It solves the security problems we had ten years ago, not the security problems we have today.