The security of any given computer system is no better than the skills researchers bring to finding the next potential program flaw. Network security workers concentrate on updating patches and making sure only validated users can access the corporate LAN. Meanwhile, security researchers hunt for existing but unidentified infrastructure flaws that could let in the bad guys. However, even when researchers find a new potential vulnerability, product vendors are not always quick to respond with fixes.
Great arguments all round. I agree that the problems with SSL certs are not flaws in security but browser issues. It's frustrating web developers aren't able to handle this interface and implement a solution. Especially since user security is such an important factor in choosing a website to explore.
As noted Extended validation SSL guarantees to a degree that a website visitor is visiting a legitimate website, and is critical these days. Elements of the site, updated browsers, etc. all come in to play as well and need to be addressed.
Loading ...
Is There a Dark Cloud Over SSL's Green Glow?
Posted by: Jack M. Germain August 19, 2009 04:00 AMThe security of any given computer system is no better than the skills researchers bring to finding the next potential program flaw. Network security workers concentrate on updating patches and making sure only validated users can access the corporate LAN. Meanwhile, security researchers hunt for existing but unidentified infrastructure flaws that could let in the bad guys. However, even when researchers find a new potential vulnerability, product vendors are not always quick to respond with fixes.
As noted Extended validation SSL guarantees to a degree that a website visitor is visiting a legitimate website, and is critical these days. Elements of the site, updated browsers, etc. all come in to play as well and need to be addressed.