RE: Citibank discloses private information to improve security

2005-05-31 Thread Heyman, Michael
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of James A. Donald Sent: Saturday, May 28, 2005 1:48 PM With bank web sites, experience has shown that only 0.3% of users are deterred by an invalid certificate, probably because very few users have any idea what a certificate

RE: Citibank discloses private information to improve security

2005-06-01 Thread Heyman, Michael
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Peter Gutmann Sent: Tuesday, May 31, 2005 1:29 PM In this situation, I believe that the users, through hard won experience with computers, _correctly_ assumed this was a false positive. Probably not. [SNIP text on user's

Retailers Experiment With Biometric Payment article

2005-06-09 Thread Heyman, Michael
From http://www.washingtonpost.com/wp-dyn/content/article/2005/06/08/AR20050 60802335_pf.html: You can always get a new Social Security number, but you certainly can't get a new thumbprint..., Lee [of EFF] said...Robinson, of BioPay, argues that a personal check written at a grocery

RSA gets a reprieve?

2005-06-30 Thread Heyman, Michael
From: www.newscientist.com/channel/info-tech/mg18625054.000 ATTEMPTS to build quantum computers could run up against a fundamental limit on how long useful information can persist inside them. Exceed the limit and information could just leak away, making computation

FYI: Credit bureaus to adopt data protection standard

2005-09-23 Thread Heyman, Michael
Credit bureaus to adopt data protection standard By Reuters http://news.com.com/Credit+bureaus+to+adopt+data+protection+standard/210 0-1029_3-5877870.html Story last modified Thu Sep 22 21:58:00 PDT 2005 The top three U.S. credit reporting companies said on Thursday they would adopt a

RSA-640 factored

2005-11-09 Thread Heyman, Michael
From: http://mathworld.wolfram.com/news/2005-11-08/rsa-640 November 8, 2005--A team at the German Federal Agency for Information Technology Security (BSI) recently announced the factorization of the 193-digit number 310 7418240490 0437213507 5003588856 7930037346

Linux RNG paper

2006-03-21 Thread Heyman, Michael
Gutterman, Pinkas, and Reinman have produced a nice as-built-specification and analysis of the Linux random number generator. From http://eprint.iacr.org/2006/086.pdf: Following our analysis of the LRNG, we suggest the following recommendations for the design of pseudo-random number

webcam encryption beats quasar encryption

2006-03-30 Thread Heyman, Michael
Internet webcam signals from webcams could emerge as an exotic but effective new tool for securing terrestrial communications against eavesdropping. Scientists have come up with a method for encrypting messages using the internet objects, which emit signals and are thought to be powered by DC