SecurityFocus’ part two of his analysis of the security mechanisms, risks, attacks, and defenses of the two most commonly used password management systems: those found in Internet Explorer and Firefox. Felker outlines the following areas of discussion:has written
- Password storage mechanisms: The means of safeguarding usernames and passwords on the local file system through encryption (addressed in part 1).
- Attacks on Password Managers: The methods of subverting or bypassing safeguards (partially address in part 1; continued now in part 2)
- False sense of security: Users employing password managers without any awareness of the risk factors.
- Usability: Features that enhance or deter the usability of security features.
- Mitigation and Countermeasures: Actions that can be taken by users and corporations to reduce the risk.
This article is a great read. Storing passwords in web browsers is common amongst users, and it is important to understand the risks involved. So get to reading.