Instant Hotspot Protection from “FireSheep”
What any open hotspot can do to protect its users…Sharable Shortlink Amid all the fury over the release of Firesheep, no one else seems to have noticed, or at least mentioned, that the only thing any...
View ArticleWhy Firesheep’s Time Has Come
This is what it takes to effect change…Sharable Shortlink At Noon on Sunday, October 24th, 2010, during the final day of the 12th annual Toorcon Security Conference held in San Diego, two Seattle,...
View ArticleReverse Engineering RSA’s “Statement”
Responsible Disclosure? Ummm, not so much…Sharable Shortlink On March 17th, 2011, Art Coviello, RSA Security‘s Executive Chairman, posted a disturbingly murky statement on their website disclosing...
View ArticleIronMan 3 was “Unbelievable”… but not in a good way.
My two-cent take on IronMan 3: This was a Disney/Marvel collaboration. Perhaps one problem was that it was too much Disney and insufficient Marvel. The thing I was conscious of at many points...
View ArticleThe Lesson of Lavabit
An implication of undeliverable security painted a bullseye…Post’s Permalink On Thursday, August 8th, Ladar Levison, the owner and operator of the semi-secure Lavabit.com eMail system, shut down his...
View ArticleA quick mitigation for Internet Explorer’s new 0-day vulnerability
The Internet industry press has been milking the news of the end of Windows XP support for much more than it’s worth. Now, over the weekend, we get news of another, in a continuing series of, (0-day)...
View ArticleWhither TrueCrypt?
My guess is that the TrueCrypt self-takedown is going to turn out to be legitimate. We know NOTHING about the developers behind TrueCrypt. Research Professor Matthew Green, Johns Hopkins Cryptographer...
View ArticleAn Imagined Letter from the TrueCrypt Developer(s)
As I wrote yesterday, we know virtually nothing about the developer(s) behind TrueCrypt. So any speculation we entertain about their feelings, motives, or thought processes can only be a reflection of...
View ArticleYes… TrueCrypt is still safe to use.
So opens the short editorial I wrote this morning and placed at the top of GRC’s new TrueCrypt Final Version Repository page. The impetus for the editorial was the continual influx of questions from...
View ArticleThe “Encryption” Debate
“Encryption” is quoted in the title of this essay because encryption is NOT what any of this is actually about. The debate is not about encryption, it’s about access. It should be called “The Device...
View Article
More Pages to Explore .....