[19385] in cryptography@c2.net mail archive
"2005 in review - The Year I lost my Identity"
daemon@ATHENA.MIT.EDU (Peter Gutmann)
Fri Dec 23 11:35:40 2005
X-Original-To: cryptography@metzdowd.com
X-Original-To: cryptography@metzdowd.com
From: pgut001@cs.auckland.ac.nz (Peter Gutmann)
To: cryptography@metzdowd.com
Date: Sat, 24 Dec 2005 01:10:06 +1300
Ian Grigg's blog has a neat tongue-in-cheek review of the year in security.
Here's a sample:
Browser manufacturers have moved slightly faster than your average glacier.
Microsoft moved forward by announcing that phishing was a browser problem
(Mozilla and KDE followed 8 months later), and again by putting some tools
into the IE7 release. Another big step forward was announcing the switch-off
of SSL v2.
But Microsoft also moved backwards one step IMO by going for the "shared
database of phishing alerts" idea pioneered by Netcraft. Computer scientists
and security gurus are still scratching their heads over how that is ever
going to work, given that it never worked the other several hundred times we
tried it.
There's more there, definitely worth a read:
https://www.financialcryptography.com/mt/archives/000588.html
Peter.
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
