Slashdot is powered by your submissions, so send in your scoop

 



Forgot your password?
typodupeerror
Note: You can take 10% off all Slashdot Deals with coupon code "slashdot10off." ×
Security

Submission + - The Web Won't Be Safe or Secure until We Break It

CowboyRobot writes: "Jeremiah Grossman of Whitehat Security has an article at the ACM in which he outlines the current state of browser security, specifically drive-by downloads.

"These attacks are primarily written with HTML, CSS, and JavaScript, so they are not identifiable as malware by antivirus software in the classic sense. They take advantage of the flawed way in which the Internet was designed to work."

Grossman's proposed solution is to make the desktop browser more like its mobile cousins.

"By adopting a similar application model on the desktop using custom-configured Web browsers (let's call them DesktopApps), we could address the Internet's inherent security flaws. These DesktopApps could be branded appropriately and designed to launch automatically to Bank of America's or Facebook's Web site, for example, and go no further. Like their mobile application cousins, these DesktopApps would not present an URL bar or anything else making them look like the Web browsers they are on the surface, and of course they would be isolated from one another.""
This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

The Web Won't Be Safe or Secure until We Break It

Comments Filter:

"You need tender loving care once a week - so that I can slap you into shape." - Ellyn Mustard

Working...