The FIDO (Fast IDentity Online) Alliance is an industry consortium launched in February 2013 to address the lack of interoperability among strong authentication devices and the problems users face creating and remembering multiple usernames and passwords. PayPal and Lenovo were among the founders. The FIDO U2F Security Key by Yubico is a specially designed YubiKey,…
Category: Security
Crap-ware on your system maybe worse then you think!
Crap-ware on new systems has always been a nuisance. It slows down your new computer, you get pop-ups telling you to register the software and a lot of other annoyances. Resent news has got me thinking that this software can be bad for your security as well. Lenovo maker of the Thinkpad line of notebooks…
More SQRL to chew on!
Last month I told you about SQRL and the benefit of a login that does not require you to enter any username or password. I told you about SQRL but I was not prepared to demonstrate it. This month I am prepared with at least a partial demonstration featuring the Android application. If have the…
SQRL
SQRL or Secure, Quick, Reliable Login (pronounced “squirrel”) is a draft open standard for secure website login and authentication. The software solution typically uses a QR code, which provides authentication, where a user identifies anonymously rather than providing a user ID and password. This method is thought to be impervious to a brute force password…
What is LastPass?
LastPass Password Manager is a freemium password management service developed by LastPass. It is available as a plugin for Internet Explorer, Mozilla Firefox, Google Chrome, Opera, and Safari. There is also a LastPass Password Manager bookmarklet for other browsers. LastPass seeks to resolve the password fatigue problem by centralising user password management in the cloud….
Big security hole in OpenSSL
Heartbleed is a bug in OpenSSL which allows an attacker to read the memory of a server. Since many websites including some of the biggest site use “OpenSSL” everyone’ s secure passwords may be at risk. On April 7, 2014, it was announced that OpenSSL 1.0.2-beta, as well as all versions of OpenSSL in the 1.0.1 series…
TrueCrypt
TrueCrypt is an opensource freeware application used for on-the-fly encryption. It can create a virtual encrypted disk within a file or encrypt a partition or the entire storage device. TrueCrypt is available for Windows, Mac and Linux. Read more! http://twit.tv/embed/13008 Full Instructions
Prizm / The Truth
Steve Gibson of “Security Now” breaks down what’s really happening with the NSA surveillance program. http://twit.tv/embed/13180
2-Step Verification
Keep your online accounts safe from any criminals who maybe trying to gain access to them by adding an additional factor of authentication. Google 2-Step Verification adds an additional and foolproof security measure to your online account logins. When you go to the login page of an online account you are now asked to enter your…
TLS or SSL
TLS (Transport Layer Security) or SSL (Secure Socket Layer) is the only way to get complete security. You knowwww, when you go to your bank and you see the green lock that says HTTPS in your address bar. TLS/SSL is end to end encryption. This is sometimes refured to as a tunnel. It is secure…
Good-N-Free Meetup 