With the latest spate of break-ins, Google and Playstation being well reported, I'm thinking We've Got A Problem, Houston!
I'm not expert enough to be sure how these attacks are done .. likely not by one-by-one account break-ins. None the less, I'm thinking Passwords Are A Thing Of The Past. So: security aware folks: Just what would put us in a better position to protect our dozens (if not hundreds!) of accounts? I've taken only one step: My hosting service, my home server and my two laptops use private key crypto with passwords disabled for remote logins. But I don't have that option with Google, Amazon etc, nor with phones and tablets, and I'm starting to feel exposed. And I'm not sure my approach is anywhere near complete enough. For example: I'd prefer all the data itself be encrypted with my public key too. I realize that the break-ins are likely to the servers, thus exposing thousands of accounts. But if these were encrypted, would that help? And if so, is there a way to enable such encryption? So basically I'm looking for some reasonable steps to take, both available now, and in the future if we push the web businesses to take them. -- Owen ============================================================ FRIAM Applied Complexity Group listserv Meets Fridays 9a-11:30 at cafe at St. John's College lectures, archives, unsubscribe, maps at http://www.friam.org
