Re: AOL uses anti-phishing blacklist from Cyota

2005-04-28 Thread Ian Grigg
> * Frank Hecker: > >> * It is interesting to contemplate Cyota or someone else offering an >> analogous service to individual users, e.g., implemented through an IE >> add-on or Firefox extension that does real-time checks of the blacklist. > > Such a browser plug-in reveals your surfing habits to

Re: AOL uses anti-phishing blacklist from Cyota

2005-04-28 Thread Florian Weimer
* Frank Hecker: > * It is interesting to contemplate Cyota or someone else offering an > analogous service to individual users, e.g., implemented through an IE > add-on or Firefox extension that does real-time checks of the blacklist. Such a browser plug-in reveals your surfing habits to a cen

Re: AOL uses anti-phishing blacklist from Cyota

2005-04-21 Thread Julien Pierre
Gervase, Gervase Markham wrote: Frank Hecker wrote: * This approach is also not dependent on SSL, much less on CA revocation of SSL certs. It's also presumably significant faster to detect and shutdown sites than an approach based on OCSP validation of certs, since IIRC the current state of OCSP

Re: AOL uses anti-phishing blacklist from Cyota

2005-04-21 Thread Gervase Markham
Frank Hecker wrote: * This approach is also not dependent on SSL, much less on CA revocation of SSL certs. It's also presumably significant faster to detect and shutdown sites than an approach based on OCSP validation of certs, since IIRC the current state of OCSP is that the timeframe for revoc

Re: AOL uses anti-phishing blacklist from Cyota

2005-04-20 Thread Ian G
Frank Hecker wrote: I thought this was interesting: http://media.timewarner.com/media/newmedia/cb_press_view.cfm?release_num=55254369 The basic summary: AOL will try to block AOL members' attempts to connect to phishing sites, using a blacklist of suspected phishing sites provided by Cyota

Re: AOL uses anti-phishing blacklist from Cyota

2005-04-20 Thread Ram A Moskovitz
On 4/20/05, Frank Hecker <[EMAIL PROTECTED]> wrote: > I thought this was interesting: > > http://media.timewarner.com/media/newmedia/cb_press_view.cfm?release_num=55254369 > > The basic summary: AOL will try to block AOL members' attempts to > connect to phishing sites, using a blacklist of suspec

Re: AOL uses anti-phishing blacklist from Cyota

2005-04-20 Thread Duane
Frank Hecker wrote: > * In theory this approach is not dependent on any browser features, > since at a minimum AOL as an ISP could just block connection attempts > "in the cloud". However it may be that AOL is planning some special UI > in the AOL client to support phishing-specific warning messag

AOL uses anti-phishing blacklist from Cyota

2005-04-20 Thread Frank Hecker
I thought this was interesting: http://media.timewarner.com/media/newmedia/cb_press_view.cfm?release_num=55254369 The basic summary: AOL will try to block AOL members' attempts to connect to phishing sites, using a blacklist of suspected phishing sites provided by Cyota .