Powered By InformationWeek Business Technology Network
 
Welcome Guest. | Log In | Register | Membership Benefits

All News

Are You A Human Confirms Man Or Machine With Games  May 22, 2012
Start-up offers new type of CAPTCHA that doesn't rely on discerning and typing letters and numbers from distorted text prompts

New .secure Internet Domain On Tap  May 10, 2012
'Safe neighborhood' top-level domain will require SSL, DNSSEC, and other security measures for websites

Trustworthy Internet Movement Builds SSL 'Avengers'  April 30, 2012
Industry's top names in SSL development agree to join task force

Tech Insight: How To Hack The Password Problem  April 26, 2012
Though they are often the weakest link, passwords aren't going anywhere anytime soon. Here's how to shore up and manage your organization's passwords

Will We Learn Authentication Lessons From Global Payments Breach?  April 03, 2012
Weaknesses in knowledge-based authentication and mag stripe highlighted in security experts speculation about the breach

Web Services Single Sign-On Contain Big Flaws  March 19, 2012
Microsoft Research report shows how risky single sign-on can be without solid integration and better support from Web service providers like Google and Facebook

What's Next For Certificate Technology?  March 16, 2012
The recent rash of breaches among certificate authorities has left a bad taste in enterprises' mouths. What's wrong with the technology, and how is it changing?

Slide Show: 10 Movie Scenes Of Authentication Worth Rewatching  March 07, 2012
From the prophetic to the downright silly, these scenes are sure to entertain any security pro

Most Security Pros Wouldn't Bet On The Security Of Their Networks  February 28, 2012
Majority of security pros say they wouldn't bet any amount of money that they could prevent compromises in the next year

Survey: Post-It Notes, Spreadsheets Used To Manage Digital Certificates  February 23, 2012
More than half have incomplete or inaccurate inventory of their certs, new Osterman-Venafi report finds

Five Schemes For Redeeming Trust In SSL  February 21, 2012
Creativity loves constraint and for security thinkers trying to shore up Web authentication today, that constraint is SSL/TLS

Product Watch: Startup Rolls Out New Approach To User Authentication  February 14, 2012
WWPass offers single device that authenticates users to many systems; secure storage technology protects data by storing it in geographically distributed fragments

Another Hurdle For IPsec   February 14, 2012
Some organizations are taking a second look at IPsec for more security, but like SSL, it also relies on a flawed trust model

Researcher Cracks Google Wallet PIN   February 09, 2012
Fix for vulnerability could require banks to take over some of security responsibility

VeriSign Breach May Actually Reaffirm Commitment To CA Model  February 06, 2012
Proposals like DANE to roll up certificate issuance into DNS show that trusting domain registrars just as risky as trusting CAs

Google, Facebook, Bank Of America Behind New Email Security Standard  January 30, 2012
New specification for preventing phishing and email domain abuse likely to help email security, but will enterprises adopt it?

Smartcards: Still A Smart Choice?  January 26, 2012
Despite recent security compromises, smartcard technology still has high potential

DNSSEC Error Caused NASA Website To Be Blocked  January 25, 2012
Comcast’s new DNSSEC-based service detected improper signing of NASA site

Is SSL Cert Holder ID Verification A Joke?  January 24, 2012
Some complain that certificate authorities don’t do enough to verify identities for ‘domain-validated’ certificates

Zappos, Amazon Sued Over Data Breach  January 23, 2012
Lawsuit against shoe retailer alleges security negligence, seeks millions in compensatory and exemplary damages

Sykipot Malware Now Steals Smart-Card Credentials  January 12, 2012
New variant of malware used by advanced persistent threat (APT) actors out of China challenges DoD, other organizations’ two-factor authentication

China Arrests Four In CSDN Data Breach; Related Breaches Proved To Be Hoaxes  January 12, 2012
More than 6M users affected by hack of China's CSDN; eight people punished for spreading faulty info about related breaches

Comcast Internet Service Now Fully DNSSEC-Based  January 10, 2012
ISP finishes its rollout of the DNS security protocol

Passphrases A Viable Alternative To Passwords?  January 10, 2012
Some experts say yes, but technological and cultural issues bar the path to passphrases

Care2 Discloses Breach; Company Has Nearly 18 Million Members  January 05, 2012
Passwords, account information could be at risk following breach of Care2 customer data



Authentication Reports

report What's Next for Certificate Technology
A recent rash of certificate authority breaches has left a bad taste in many people's mouths. There is no one reason for the breaches. The compromises were the result of a breakdown in people, processes and technology, but not necessarily the certificates themselves. We take a look at what?s wrong with certificate technology, what can be done to fix it, and what's down the road for certificates and CAs.

report Will Smartcards Live Up to Their Name?
Recent compromises of smartcard data have exacerbated concerns about the technology?s privacy, security and standards (or lack thereof). Yet the promise of smartcards is too compelling to ignore. New technologies and applications prompt us to take a fresh look.

report Get The Best Of Biometrics
As data volume and sensitivity grow, companies cannot rely on password- and token-based authentication. Biometrics can be used to provide strong access control, but you must weigh added complexity and costs against assurance that users are who they say they are.

Other reports from the Authentication Tech Center:




Featured Webcasts
Featured Whitepapers
Featured Reports