michael silk

tag:blogger.com,1999:blog-87099722009-02-21T21:12:35.196+11:00michael silksecuritymichael silkhttp://www.blogger.com/profile/17452837115340269487noreply@blogger.comBlogger4125tag:blogger.com,1999:blog-8709972.post-1101270080962037092004-11-24T15:10:00.000+11:002004-11-25T10:19:50.276+11:00Followup on "Solution to Phishing"

Just a quick note.. I left a few disadvantages out :) a) Username/email disclosure. It would be appropriate, from a user's point of view, for them to get a message confirming whether the email address or username that they typed in was correct or not. If they were to receive no such message they may sit back and wait for the email to come and never receive it hence getting quite annoyed :) b

michael silkhttp://www.blogger.com/profile/17452837115340269487noreply@blogger.comtag:blogger.com,1999:blog-8709972.post-1101179264035073782004-11-23T13:41:00.000+11:002004-12-01T10:34:16.470+11:00Article - A Solution to Phishing

Michael Silk ( version: 1.0.0, released on: 23rd of November, 2004 ) Introduction For those who don't know what Phishing is, read this (it isn't very long) ... Solution Now that you are up to speed, we can discuss a proposed solution. The idea is to use a "one-time password-based" system. As we know, Phishing works by receiving your username and password. However, what if your password is only

michael silkhttp://www.blogger.com/profile/17452837115340269487noreply@blogger.comtag:blogger.com,1999:blog-8709972.post-1097707243904594602004-10-14T08:37:00.000+10:002004-11-23T14:24:04.606+11:00Article - Really random numbers

Michael Silk ( version: 1.0.2, released on: 16th of August, 2004 ) Random numbers are used in almost all encryption algorithms to generate encryption keys and random pad data. Unfortunately, the random number generators (RNG's) provided by most programming SDK's do not provide adequate security. Goal To provide a system to obtain "real" random numbers and use them for our security purposes.

michael silkhttp://www.blogger.com/profile/17452837115340269487noreply@blogger.comtag:blogger.com,1999:blog-8709972.post-1097706429217895862004-10-14T08:25:00.000+10:002004-11-23T14:28:42.773+11:00Welcome Message

Hello, and welcome. This site is intended as a publishing spot for security-based articles written by me: Michael Silk. This is a temporary site and you should not come back and check it ... if there is anything interesting here you will be notified via a mailing list :)

michael silkhttp://www.blogger.com/profile/17452837115340269487noreply@blogger.com