Risk

8/31/2009
05:34 PM
Connect Directly
Google+
LinkedIn
Twitter
RSS
E-Mail
50%
50%

Wikipedia Considers Coloring Untested Text

Registered Wikipedia users may soon have access to software that colors text deemed untrustworthy.

In an effort to enhance the reliability of Wikipedia content, the WikiMedia Foundation, which oversees Wikipedia, is weighing whether to offer an opt-in tool for registered users that colors untrustworthy text.

The software, WikiTrust, is available as an extension to the MediaWiki platform, upon which Wikipedia runs. It's a project developed by UC Santa Cruz professor Luca de Alfaro, and computer science grad students B. Thomas Adler and Ian Pye.

Reached in Buenos Aires, where Wikimania 2009 has just wrapped up, de Alfaro says that the timing of an experimental trial remains under discussion. The purpose of the trial, he says, will be to gather community feedback about the utility of the tool.

Despite its name, WikiTrust can't directly measure whether text is trustworthy. "It can only measure user agreement," said de Alfaro. "That's what it does."

Wikipedia remains a target for vandals, pranksters, and anyone with a motive to manipulate entries. The online encyclopedia's community of editors is constantly on the lookout for accidental and deliberate changes that introduce bias to articles.

In an e-mail, Jay Walsh, head of communications for the WikiMedia Foundation, says that the WikiTrust code is being reviewed by the organization's technology team and that the timing of a trial, if it happens, has not been determined.

"The Foundation is looking at a number of quality/rating tools for Wikipedia content, and for our other projects," he explained in an e-mail. "Many are as simple as 'rate this article' features, and some, like WikiTrust are experimental and more unique in their ability to examine other data to render some context on the article. In all cases we will deeply consult with our community of developers and editors before implementing any technology."

While users may make trust decisions based WikiTrust, de Alfaro said that the software should also be useful as an anti-vandalism tool.

Vetting Wikipedia content for reliability could enhance scholarly acceptance of the online encyclopedia. De Alfaro says that he expects WikiTrust will be used to help identify reliable content for distribution to schools.

"It's always frowned upon to use Wikipedia as something you cite because the content is variable," he said.

Register for Interop New York and gain a complete understanding of the most important innovations in Interop's comprehensive conference and expo, where you'll see the full range of IT solutions to position your organization for growth. At the Jacob Javits Center, Nov. 16-20, 2009. Find out more and register.

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
3 Ways to Retain Security Operations Staff
Oliver Rochford, Vice President of Security Evangelism at DFLabs,  11/20/2017
A Call for Greater Regulation of Digital Currencies
Kelly Sheridan, Associate Editor, Dark Reading,  11/21/2017
New OWASP Top 10 List Includes Three New Web Vulns
Jai Vijayan, Freelance writer,  11/21/2017
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: This comment is waiting for review by our moderators.
Current Issue
Managing Cyber-Risk
An online breach could have a huge impact on your organization. Here are some strategies for measuring and managing that risk.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2017-0290
Published: 2017-05-09
NScript in mpengine in Microsoft Malware Protection Engine with Engine Version before 1.1.13704.0, as used in Windows Defender and other products, allows remote attackers to execute arbitrary code or cause a denial of service (type confusion and application crash) via crafted JavaScript code within ...

CVE-2016-10369
Published: 2017-05-08
unixsocket.c in lxterminal through 0.3.0 insecurely uses /tmp for a socket file, allowing a local user to cause a denial of service (preventing terminal launch), or possibly have other impact (bypassing terminal access control).

CVE-2016-8202
Published: 2017-05-08
A privilege escalation vulnerability in Brocade Fibre Channel SAN products running Brocade Fabric OS (FOS) releases earlier than v7.4.1d and v8.0.1b could allow an authenticated attacker to elevate the privileges of user accounts accessing the system via command line interface. With affected version...

CVE-2016-8209
Published: 2017-05-08
Improper checks for unusual or exceptional conditions in Brocade NetIron 05.8.00 and later releases up to and including 06.1.00, when the Management Module is continuously scanned on port 22, may allow attackers to cause a denial of service (crash and reload) of the management module.

CVE-2017-0890
Published: 2017-05-08
Nextcloud Server before 11.0.3 is vulnerable to an inadequate escaping leading to a XSS vulnerability in the search module. To be exploitable a user has to write or paste malicious content into the search dialogue.