December 12th, 2006

Password Management Concerns with IE and Firefox

Adam Kane   
Digg it Add to del.icio.us Stumble it

Are you new here? Subscribe to my RSS feed. Thanks for visiting!

SecurityFocus’ Mikhael Felker has written part two of his analysis of the security mechanisms, risks, attacks, and defenses of the two most commonly used password management systems: those found in Internet Explorer and Firefox. Felker outlines the following areas of discussion:

  • Password storage mechanisms: The means of safeguarding usernames and passwords on the local file system through encryption (addressed in part 1).
  • Attacks on Password Managers: The methods of subverting or bypassing safeguards (partially address in part 1; continued now in part 2)
  • False sense of security: Users employing password managers without any awareness of the risk factors.
  • Usability: Features that enhance or deter the usability of security features.
  • Mitigation and Countermeasures: Actions that can be taken by users and corporations to reduce the risk.

This article is a great read. Storing passwords in web browsers is common amongst users, and it is important to understand the risks involved. So get to reading.

Password Management Concerns with IE and Firefox, Part One

Password Management Concerns with IE and Firefox, Part Two


Popularity: 3% [?]

Sponsors

under: News, Security     Tags: , , , , , ,

No Comment

Random Post

Leave Your Comments Below

Please Note: All comments will be hand modified by our authors so any unsuitable comments will be removed and you comments will be appreared after approved

« Quickzi: Stop Syslog from putting –MARK– in the logs
Adding shortcuts to the right click menu in Ubuntu »