April 2011 - Entrust, Inc. 1-10 of 10
Pay for a secure Internet ID? Perhaps the time has come.
“Wow – 77 million PlayStation accounts hacked – that’s huge! Dad , did you see this internet fraud story?” My 13 year old is not a big gamer nor does he care that much about internet fraud (though he is a good sounding board when I am working through issues), but when he saw the [Read More...]
When it comes to me and Jude, I’m pretty sure I’d be willing to sacrifice a little security!
So, Facebook has introduced what they term two-factor authentication to the social networking site! I read a response from someone working for a large security company who said the company (I clicked on their handle and it linked me to Symantec) “commends Facebook for broadening security options. . .” . To me, this is similar [Read More...]
Elliptic Curve Cryptograph (ECC) Demo
Elliptic curve cryptography (ECC) for use on the Internet is gaining more support and interoperability amongst application developers. Entrust is proud to announce that ECC-based digital certificates are now supported by the full suite of Entrust Authority solutions. The promise of ECC is greater security for a given key length. This allows implementations to use [Read More...]
If you’re going to tether – make sure you know who you’re tethering with!
Most of the items that I’ve written here have dealt with the consumer space – online banking and the like – as has the one piece written by my colleague Mike (yup, that was a little dig at my good friend Mike). But many of the same threats that target online consumers, retail banking customers [Read More...]
How Do You Pay For Things
The other day a colleague and I had occasion to have a quick cup of coffee with a researcher from an analyst firm that focuses on the banking sector (not Gartner or Tower Group). Somewhere in the conversation we got talking about mobile banking – can you see what my favorite subject is lately? I’m [Read More...]
Baseline Requirements for Publicly Trusted Certificates
I would like to bring to your attention the initiative of the CA/Browser Forum (of which Entrust is a member) to develop baseline requirements for the issuance and management of publicly trusted certificates. The CAB Forum developed the guidelines for issuance and management of Extended Validation (EV) certificates in 2006 with the first EV SSL [Read More...]
Online Fraud When Justin Bieber was 5!
This was an article that I hit upon a month ago that I thought was kind of interesting: Bank Systems & Technology, “Though Hairstyles May Change, Online Banking Fraud Remains the Same.” To be honest, I was initially drawn to the reference to hair styles, since many of my friends and colleagues regularly tease me [Read More...]
“Important Notice” – you have been spear-phished!
While attending the Payments 2011 (NACHA for the nostalgic) conference earlier this week, news broke on the details of what some folks including Mike Lennon from Security Week tag as a massive breach at Epsilon . As we were swamped with conference activities, I didn’t have time to dig into any details but in the [Read More...]
Make the Ostrich an Endangered Species!
Mobile banking is one of the hottest topics these days, as financial institutions try to figure out how to open yet another channel that will help differentiate their service levels and provide operational savings. So it shouldn’t be a surprise that mobility featured prominently at this year’s NACHA-sponsored Payments 2011 show in Austin, Texas. Included [Read More...]
OnGuard Online and GetNetWise
In general, Entrust Insights is aimed at the SSL-knowledgeable reader. But here are a couple of websites that are quite user- friendly and provide good advice to those less tech savvy. The U.S. Federal Trade Commission has a site called OnGuard Online. I like the tag line, “Stop. Think. Click.” The site provides advice on [Read More...]