http://www.theregister.co.uk/2013/08/10/chrome_ssl_clickthrough_report/
By Jack Clark
The Register
10th August 2013
Admins of Chrome shops unite – your users are dabbling with dodgy SSL, and
you must teach them how to be safer online until Google updates its
browser.
That's the gist of a new report from Google researcher Adrienne Porter
Felt and University of California, Berkeley graduate student Devdatta
Akhawe, who trawled some 25 million data points in a quest to figure out
how effective phishing, malware, and SSL warnings are for users of Chrome
and Firefox.
The paper in which the flaws are discussed – Alice in Warningland: A
Large-Scale Field Study of Browser Security Warning Effectiveness – will
be presented next week at the USENIX Security Symposium 2013 in
Washington, DC.
It finds that Chrome could borrow a number of useful traits from Firefox
to reduce the rate at which users click through SSL warnings, potentially
opening their computers to being compromised.
[...]
--
Find the best InfoSec talent without breaking your budget!
Post a Job! $99 for 31 days
http://www.hotinfosecjobs.com/
