Preliminary Programme for "USABLE SECURITY 2007" which is colocated with FC2007 below, again in "title-only-peer-review" mode.
An Evaluation of Extended Validation and Picture-in-Picture Phishing Attacks WSKE: Web Server Key Enabled Cookies (Panel) - The Future of Phishing Usability Analysis of Secure Pairing Methods Low-cost Manufacturing, Usability, and Security: An Analysis of Bluetooth Simple Pairing and Wi-Fi Protected Setup Empirical Studies on Software Notices to Inform Policy Makers and Usability Designers Prime III: Where Usable Security and Electronic Voting Meet (Panel) Building Trusted Systems: Does Trusting Computing Enable Trusted Systems?
Click to vote your interest: https://www.usablesecurity.org/accepted.html
(Ha! Finally someone else who supports encrypted web browsing. Hey, guys, can you fix the links so that they are relative and keep people in HTTPS?)
Posted by iang at January 10, 2007 05:55 AM | TrackBackDon't know why the USEC links are broken, but I forwarded your remark to somebody who can fix them.
BTW, the IFCA site has long supported encrypted browsing (use www.ifca.ai to avoid a complaint about the cert). The individual FC sites are caught by the IFCA SSL vhost (because they share the same IP address), but you can get to the FC sites from there.
And, as was recently reported on the cryptography list, the CIA supports encrypted browsing ONLY.
Posted by: Ray (IFCA) at January 12, 2007 02:55 PMand possibly related to the subject of "useable security in 2007", ... a thread that started out with "securing financial transactions a high priority for 2007"
with mention of a URL for original article in this post
http://www.garlic.com/~lynn/2006y.html#7
then a whole lot of posts ... a relatively recent one with a number news URL references to security breaches, skimming, and/or other attacks harvesting account information enabling fraudulent transactions (following also includes URL references to most of the rest of the thread):
http://www.garlic.com/~lynn/2007e.html#2
and a post in the thread from today:
http://www.garlic.com/~lynn/2007e.html#12
with some number of additional "news" URLs
Chip and pin fails to halt card fraud rise
http://edinburghnews.scotsman.com/edinburgh.cfm?id=291732007
from above:
SHOPS have seen a massive rise in credit and debit card crime since the introduction of chip and pin technology, according to a report published today.
The new system was hailed as virtually fraud-proof but a survey by the Scottish Grocers' Federation (SGF) suggests card crime has soared by more than 50 per cent since 2005.
... snip ...
Fraud, embezzling and financial crime
http://business.scotsman.com/topics.cfm?tid=946
Card-skim criminals have police stumped
http://www.portsmouthtoday.co.uk/ViewArticle.aspx?ArticleID=2075455&SectionID=455
Plans to cut card fraud 'too complex'
http://www.itnews.com.au/newsstory.aspx?CIaNID=46197&src=site-marq
Plans to cut card fraud 'too complex'
http://www.itweek.co.uk/vnunet/news/2183738/plans-cut-card-fraud-slammed
Plans to cut card fraud 'too complex'
http://www.whatpc.co.uk/vnunet/news/2183738/plans-cut-card-fraud-slammed
Warnings over 'complicated' anti-fraud card systems
http://www.tuvps.co.uk/news/articles/warnings-over-complicated-anti-fraud-card-systems-18065845.asp
and for even further topic drift ...
http://www.garlic.com/~lynn/aadsm26.htm#38
for a totally different angle (sounds like an April 1st story? or something out of truth is stranger than fiction)
Fraud victims told not to go to police
http://www.computeractive.co.uk/computeractive/news/2183192/cheque-card-crimes
from above:
People will no longer be able to report cheque or card fraud or theft to the police under new rules being introduced by the Government.
From 1 April 2007, anyone who is a victim of this type of crime will be told to report it to their bank or building society and not police.
It will now be up to financial institutions to report such crimes to the police, which has lead to fears official figures will not truly reflect the seriousness of the problem.
... snip ...
Posted by: Lynn Wheeler at February 25, 2007 05:05 PMIs this thread no longer active?
Posted by: Avelinux at September 9, 2009 06:28 PM