Spot Phishing Easier With Versign Firefox Extension

Identity Theft - Phishing : Spot Phishing Easier With Versign Firefox Extension

Posted by Max on 2007/5/20 11:46:47 (1298 reads)

Verisign plugin turns the address bar of Firefox green for highly-trusted sites that use EV SSL encryption in a way that mimics IE 7 behavior. The Internet security services provider has released a Firefox extension that
will show the same type of green address bar that is shown by Internet
Explorer 7 when it lands on highly trusted Web sites that use EV SSL
(Extended Validation Secure Sockets Layer) certificates.

Companies like Verisign, Entrust, and Network Solutions have been issuing these certificates since late 2006, but browser makers have lagged behind adopting them. They were deployed by Internet Explorer 7 in late January, and Firefox is expected to support the certificates in Firefox 3.0, sometime later this year.

The EV SSL certificates are in essence an anti-phishing technology designed to give Web surfers extra hints and visual clues when they are visiting secure Web sites, whose URLs begin with "https://."

It's harder for a business to obtain an EV SSL certificate than it is to acquire the omnipresent SSL certificates currently used by most secure Web sites.

Before companies like Verisign will issue an EV SSL certificate, they take extra steps to make sure that it is going to a rightful organization. For example, they will make sure that the business in question is enrolled with local authorities, has a real address, and actually has control over the Web domain in question.

Verisign's Tim Callan says that more than 500 Web sites, including sites run by eBay's PayPal division and ING Group, have now completed EV SSL certification. Nearly 90 percent of them are certified by Verisign, said Callan, a director of product marketing with the company's SSL group.

That's an important point because Verisign's Firefox plugin doesn't identify sites that are certified by its competitors. Callan said it would have been too much work to maintain a list of legitimate EV SSL providers. "At that point, we're creating a whole new simultaneous real-time checking system," he said. "We were willing to invest in this one-off code development, but we didn't want to inherit this legacy of constantly maintaining this service, especially because this is a stop-gap measure. At the end of the year, this will be built into Firefox properly."

Because of this limitation, Verisign isn't recommending that non technical users download the plugin. It's for "technology early adopters and the people who really want to be on the state-of-the-art," Callan said. "For somebody who recognizes the limitations of it and is still asking for it, this is a good solution."

Source : InfoWorld

Previous article - Next article

Other articles
2009/11/3 14:55:39 - BitDefender Top Ten Malware Threats for October 09
2009/11/3 14:29:38 - Nov. 09 Microsoft Security Intelligence Report
2009/10/7 15:19:17 - StopSign AntiVirus and Anti-Malware is Windows 7 Compatible
2009/10/7 15:11:26 - New Outlook Backup and Migration Software By Disk Doctors
2009/9/30 4:20:57 - Microsoft Security Essentials, FREE Security Tool Just Released
2009/9/28 14:31:52 - New Rogue Antispyware Cloaked To Infects Computers
2009/9/9 4:31:49 - Trend Micro Proves Leadership in URL Filtering and Web Security
2009/9/9 4:16:20 - New Free Tool to Clean Conficker Once and For All
2009/9/1 8:37:11 - Kaspersky Internet Security 2010 and Kaspersky Anti-Virus 2010 Out Now
2009/9/1 7:54:50 - NEW P2P Advertising Network Protects Users Against Lawsuits And Identity Theft

The comments are owned by the poster. We aren't responsible for their content.

Poster	Thread
kenneth6	Posted: 2009/2/13 4:33 Updated: 2009/2/13 4:33
Just popping in Joined: 2009/2/13 From: Posts: 12	Re: Spot Phishing Easier With Versign Firefox Extension Hi. Visite mi pagina con chicos: sexo videochat, secocams, espanacam