office politics
It's all just 1s and 0s
- Messages
- 6,555
- Location
- in the lab
this article describes Twiiter and Digg are Prone to attack. A presentation will be made at Black Hat this year.
Researchers: Password crack could affect millions
Researchers: Password crack could affect millions
Researchers: Password crack could affect millions
Cloud computing environments make 'timing attacks' more viable, researchers say
By Robert McMillan, IDG News Service
July 15, 2010 06:33 PM ET
A well-known cryptographic attack could be used by hackers to log into Web applications used by millions of users, according to two security experts who plan to discuss the issue at an upcoming security conference.
Researchers Nate Lawson and Taylor Nelson say they've discovered a basic security flaw that affects dozens of open-source software libraries -- including those used by software that implements the OAuth and OpenID standards -- that are used to check passwords and user names when people log into websites. OAuth and OpenID authentication are accepted by popular Web sites such as Twitter and Digg.