January 10, 2007

Usable Security 2007 -- Preliminary Programme -- colocated with FC2007

Preliminary Programme for "USABLE SECURITY 2007" which is colocated with FC2007 below, again in "title-only-peer-review" mode.

  • An Evaluation of Extended Validation and Picture-in-Picture Phishing Attacks
  • WSKE: Web Server Key Enabled Cookies
  • (Panel) - The Future of Phishing
  • Usability Analysis of Secure Pairing Methods
  • Low-cost Manufacturing, Usability, and Security: An Analysis of Bluetooth Simple Pairing and Wi-Fi Protected Setup
  • Empirical Studies on Software Notices to Inform Policy Makers and Usability Designers
  • Prime III: Where Usable Security and Electronic Voting Meet
  • (Panel) Building Trusted Systems: Does Trusting Computing Enable Trusted Systems?
  • Click to vote your interest: https://www.usablesecurity.org/accepted.html

    (Ha! Finally someone else who supports encrypted web browsing. Hey, guys, can you fix the links so that they are relative and keep people in HTTPS?)

    Posted by iang at January 10, 2007 05:55 AM | TrackBack
    Comments

    Don't know why the USEC links are broken, but I forwarded your remark to somebody who can fix them.

    BTW, the IFCA site has long supported encrypted browsing (use www.ifca.ai to avoid a complaint about the cert). The individual FC sites are caught by the IFCA SSL vhost (because they share the same IP address), but you can get to the FC sites from there.

    And, as was recently reported on the cryptography list, the CIA supports encrypted browsing ONLY.

    Posted by: Ray (IFCA) at January 12, 2007 02:55 PM

    and possibly related to the subject of "useable security in 2007", ... a thread that started out with "securing financial transactions a high priority for 2007"

    with mention of a URL for original article in this post
    http://www.garlic.com/~lynn/2006y.html#7

    then a whole lot of posts ... a relatively recent one with a number news URL references to security breaches, skimming, and/or other attacks harvesting account information enabling fraudulent transactions (following also includes URL references to most of the rest of the thread):
    http://www.garlic.com/~lynn/2007e.html#2

    and a post in the thread from today:
    http://www.garlic.com/~lynn/2007e.html#12

    with some number of additional "news" URLs

    Chip and pin fails to halt card fraud rise
    http://edinburghnews.scotsman.com/edinburgh.cfm?id=291732007

    from above:

    SHOPS have seen a massive rise in credit and debit card crime since the introduction of chip and pin technology, according to a report published today.

    The new system was hailed as virtually fraud-proof but a survey by the Scottish Grocers' Federation (SGF) suggests card crime has soared by more than 50 per cent since 2005.

    ... snip ...

    Fraud, embezzling and financial crime
    http://business.scotsman.com/topics.cfm?tid=946
    Card-skim criminals have police stumped
    http://www.portsmouthtoday.co.uk/ViewArticle.aspx?ArticleID=2075455&SectionID=455
    Plans to cut card fraud 'too complex'
    http://www.itnews.com.au/newsstory.aspx?CIaNID=46197&src=site-marq
    Plans to cut card fraud 'too complex'
    http://www.itweek.co.uk/vnunet/news/2183738/plans-cut-card-fraud-slammed
    Plans to cut card fraud 'too complex'
    http://www.whatpc.co.uk/vnunet/news/2183738/plans-cut-card-fraud-slammed
    Warnings over 'complicated' anti-fraud card systems
    http://www.tuvps.co.uk/news/articles/warnings-over-complicated-anti-fraud-card-systems-18065845.asp

    Posted by: Lynn Wheeler at February 25, 2007 04:47 PM

    and for even further topic drift ...
    http://www.garlic.com/~lynn/aadsm26.htm#38

    for a totally different angle (sounds like an April 1st story? or something out of truth is stranger than fiction)

    Fraud victims told not to go to police
    http://www.computeractive.co.uk/computeractive/news/2183192/cheque-card-crimes

    from above:

    People will no longer be able to report cheque or card fraud or theft to the police under new rules being introduced by the Government.

    From 1 April 2007, anyone who is a victim of this type of crime will be told to report it to their bank or building society and not police.

    It will now be up to financial institutions to report such crimes to the police, which has lead to fears official figures will not truly reflect the seriousness of the problem.

    ... snip ...

    Posted by: Lynn Wheeler at February 25, 2007 05:05 PM

    Is this thread no longer active?

    Posted by: Avelinux at September 9, 2009 06:28 PM
    Post a comment









    Remember personal info?






    Hit preview to see your comment as it would be displayed.