Thursay Febuary 22nd, San Francisco CA
W3Conf is W3C’s annual conference for web professionals who want to hear the latest news on HTML5, CSS, the open web platform and their place in it…
See day 1 resume here
Yesterday was a very interesting day… so expectations are high for today! Here we go!
For reasons of convenience most secure websites are accessible through both HTTP and HTTPS. On request, the HTTP site simply redirects the user to the HTTPS site. This method, however convenient, does pose a considerable security risk. Indeed hackers can easily perform a ‘man in the middle attack’ based on the HTTP request.
A lot of things I saw on Devoxx do not warrant their own blog post, but they are interesting enough to mention.
Is security important? Of course it is, but it seems like a lot of people don’t really occupy themselves with it too much. I understand that of course because security can definitely be a hassle. I guess the most important thing regarding security though is that people are consequent in their actions.
So let’s do a bit of self reflection on the issue:
For almost a year now I’ve been testing a Yubikey hard token. Basically, it’s USB-key that adds strong two factor authentication to the process of logging in to my computer. You can check out my previous blog post on exploring hard tokens and the need for better identity management.
I’m currently looking around for a great all around solution for identity management. Apart from offering top notch security, the main criteria is that it should be very simple and easy to use.