Comments: MITM spotted in Tor

for topic drift ... i mention here

in a thread about using on-screen visual keyboards (CAPTHAs obscured)

and mouse clicks as countermeasure to PC virus/trojans capturing online banking userid/passwords.

this is PC virus/trojan that waits until the session has been initiated ... and then executes fraudulent transactions w/o the person's knowledge

New Trojan Attacks Clients At Four Worldwide Banks
Sophisticated Trojan loots business bank accounts
Botnet-controlled Trojan robbing online bank customers

the original thread had drifted into topic that the threats/vulnerabilities had been well-studied and understood by at least the mid-90s ... along with the current spate of kneejerk, simple-minded, point solutions for each individual exploit that appears, rather than addressing underlying infrastructure weaknesses.

in the case of the online banking visual keyboard scenario ... it is obviously a countermeasure to compromised PC ... then where does it say that a ompromised PC will only be limited to keylogging.

one could claim that the original SSL design (before the mid-90s) was countermeasure to hostile environment ... not only did the session have to be authenticated ... but everything related to the session had to also be armored.

if the environment is really hostile, then it is much better going to individual armored transaction instead of assuming that everything within a session boundary is secure ... somewhat discussed in old thread here last summer on naked transactions

comments about the culture of kneejerk simple-minded point-solution reaction to exploits Securing financial transactions a high priority for 2007 John W. Backus, 82, Fortran developer, dies open source voting My Dream PC -- Chip-Based IBM 8000 series folklore indeed folklore indeed folklore indeed folklore indeed folklore indeed folklore indeed folklore indeed

Posted by Lynn Wheeler at December 15, 2007 11:05 AM
Post a comment

Remember personal info?

Hit Preview to see your comment.
MT::App::Comments=HASH(0x55d5eafe6c30) Subroutine MT::Blog::SUPER::site_url redefined at /home/iang/www/fc/cgi-bin/mt/lib/MT/ line 125.