* Posts by Richard Tector

2 publicly visible posts • joined 27 Feb 2009

Firefox 32 moves to kill MITM attacks

Richard Tector

DANE

Assuming endpoint support for DNSSEC, DANE (RFC6698) achieves something similar. http://en.wikipedia.org/wiki/DNS-based_Authentication_of_Named_Entities

Also, unless I've missed something, with the pinning approach your initial (and therefore subsequent visits) to the site are still at risk?

Cambridge security boffins slam banking card readers

Richard Tector

@Steve Evans

With Barclays, if you don't have your card reader with you, you can give a few details and a passcode is supplied allowing you to login without it.