Why SSL is not enough to secure your credit card details

Written by ArticSoft


Continued from page 1

Isrepparttar padlock real?

Althoughrepparttar 132033 SSL padlock has been onrepparttar 132034 bottom ofrepparttar 132035 screen for a while now, onlyrepparttar 132036 most adventurous have tried doing things like clicking on it. If you did you might be in for a surprise.

The first thing is that you canít tell ifrepparttar 132037 padlock is genuine. After all, anyone can write a padlock to that point onrepparttar 132038 screen, itís not a special protected area of some kind. So seeingrepparttar 132039 padlock appear neednít mean a secure connection is actually in place. If you do click on it you should seerepparttar 132040 web site address forrepparttar 132041 site ofrepparttar 132042 server that purchasedrepparttar 132043 certificate being used. You should compare this withrepparttar 132044 web site address shown in your browser tool bar. It is important to read it carefully since you arerepparttar 132045 one doingrepparttar 132046 checking, there is nothing automated aboutrepparttar 132047 comparison.

What needs to change?

Several things need to change before you should feel comfortable using SSL.

1) Getting enough functionality ontorepparttar 132048 client system to be able to sign and encrypt actual data instead of trying to make secure connections to places you donít know.

2) Providing clients withrepparttar 132049 ability to check that certificates sent from servers are still genuine (check to see if they have been revoked) automatically. Then users can be sure that no man-in-the-middle can readrepparttar 132050 information they send, and thatrepparttar 132051 server they are dealing with is for real.

3) The client needs an identity that can be authenticated byrepparttar 132052 server (this does not have to mean that users need to go out and buy a certificate,repparttar 132053 server site may provide them with a suitable certificate as a separate process).

4) Automating this whole process so thatrepparttar 132054 user does not have to click onrepparttar 132055 padlock icon to find out ifrepparttar 132056 security is real.

ArticSoft have over 30 years experience in the field of computer security, and 15 years experience of securing information on personal computers and messaging systems. Our CEO Steve Mathews, is one of the authors of BS7799 (now ISO/IEC 17799) and is well recognized in the security industry.


Does SSL protect you, or is it a condom that is open at both ends?

Written by ArticSoft


Continued from page 1

Once your information gets torepparttar server it stops being protected and anyone can get to it, at least judging fromrepparttar 132030 fact that hackers target web sites first because thatís where they can guarantee to find large quantities of names, addresses, credit card numbers and so on. (Actually, SSL places such a heavy load on computers that they now have other machines doing justrepparttar 132031 SSL encryption so your data is potentially exposed even before it has a chance to get torepparttar 132032 web server, but thatís notrepparttar 132033 point.)

So thereísrepparttar 132034 problem. SSL provides strong protection, but not actually torepparttar 132035 data, justrepparttar 132036 link. You might say it was a condom that protectsrepparttar 132037 pipe.

ArticSoft (www.articsoft.com) have over 30 years experience in the field of computer security, and 15 years experience of securing information on personal computers and messaging systems. Our CEO Steve Mathews, is one of the authors of BS7799 (now ISO/IEC 17799) and is well recognized in the security industry.


    <Back to Page 1
 
ImproveHomeLife.com © 2005
Terms of Use