Password Management Concerns with IE and Firefox

SecurityFocus’ Mikhael Felker has written part two of his analysis of the security mechanisms, risks, attacks, and defenses of the two most commonly used password management systems: those found in Internet Explorer and Firefox. Felker outlines the following areas of discussion:

  • Password storage mechanisms: The means of safeguarding usernames and passwords on the local file system through encryption (addressed in part 1).
  • Attacks on Password Managers: The methods of subverting or bypassing safeguards (partially address in part 1; continued now in part 2)
  • False sense of security: Users employing password managers without any awareness of the risk factors.
  • Usability: Features that enhance or deter the usability of security features.
  • Mitigation and Countermeasures: Actions that can be taken by users and corporations to reduce the risk.

This article is a great read. Storing passwords in web browsers is common amongst users, and it is important to understand the risks involved. So get to reading.

Password Management Concerns with IE and Firefox, Part One

Password Management Concerns with IE and Firefox, Part Two

Leave a Reply

Your email address will not be published. Required fields are marked *

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>