Archive for the ‘firefox’ Category
GateKeeper, open source site opened …
Filed under: authentication, firefox, identity theft, single_sign_on |
Leave a Comment 
A new site has been opened which allow to support the GateKeeper development effort.
GateKeeper is an authentication bar that operates from the Firefox browser chrome area (no access to remote scripts…) and that allows password authentication using the SRP algorithm. This renders password authentication insensitive to Phishing or other MITM attacks.
Additionally the GateKeeper bar collaborates with a relevant authentication portal to authenticate the website into which user is about to enter (runtime certification…)
Sites that use GateKeeper authentication are completely immune to Phishing or other MITM attacks. GateKeeper can use static password or KerPass OATH one time password, this last combination providing optimal resistance against brute force, spyware and MITM.
Introducing GateKeeper , in browser single sign on extension
Filed under: authentication, crypto, firefox, fraud, identity theft, single_sign_on |
Leave a Comment 
We think interesting to share with the community a development on which the KerPass engineers are currently working. The shot above shows the GUI part (xul widget) of the extension that shows in the browser at time an authentication request has been received. The extension allows relying website to require end user to authenticate at authentication portails that the relying site trusts for this purpose. GateKeeper is the much needed missing part for in browser single sign on to happen reliably on the web.
Read more »
