Skip to main content

The WiKID Blog

Viewing posts from March, 2011

Adding two-factor authentication to (web) applications

This blog post has been in the offing ever since I read "Why is it so difficult to add two-factor authentication to online applications?"  a couple of months ago. First, this should not be an issue.  Most CMS systems and application frameworks support HTTP authentication and adding two-factor authentication to Apache for example) is quite simple.  

The Baby and the Bathwater, SSL cert edition

Background:  Comodo, the SSL certificate authority was attacked and fraudulent certificates for a number of high-value sites were issuedSites like mail.google.com, login.skype.com etc.  as well as addons.mozilla.org

My not-about RSA blog post

There is a lot of speculation about the RSA SecuID attack. (Those are my top 3).   The lack of information, while frustrating is understandable if there is an ongoing investigation and if the security of SecurID users is not truly at risk as RSA asserts.  In general, I don't pay much attention to competition.  I prefer to pay attention to customers, in particular prospective customers. 

APT, open source and asymmetric encryption

RSA just announced that they have been hacked:

Open forum for questions

Ask any question you like. Typically, we would want this to go into the forums, but we want to test out the new Disqus commenting system. 

Recent Posts

Archive

2017
2016
2015
2014
2013
2012
2011
2010
2009
2008

Categories

Tags

Authors

Feeds

RSS / Atom