Archives for Category: Security

Some notes on the recent XML Encryption attack

At last week's CCS'11 conference, Tibor Jager and Juraj Somorovsky from Ruhr-Universität Bochum in Germany published a paper "How to Break XML Encryption." This paper is good cryptography research: By generalizing the ideas behind previous padding-based attacks, they have found...

 

» Read on...

Filed by Thomas Roessler on October 24, 2011 9:39 AM in Security, Technology
| | Comments (0) | TrackBacks (0)

Boosting privacy online - anonymous credentials in the browser

Identity matters! In everyday life we present different "faces" to different people according to the social context, e.g. family, personal, and professional. Our online life is the same, and our privacy depends on keeping these different faces compartmentalized. To support...

 

» Read on...

Filed by Dave Raggett on November 13, 2010 11:42 AM in Privacy, Security, Technology, Tools, Web Applications
| | Comments (3) | TrackBacks (0)

HMAC truncation in XML Signature: When Alice didn't look.

Today, we've published a proposed correction against XML Signature. Normally, errata are published without much ado, and largely cover minor points of specifications. This one's a bit different: You haven't seen any public discussion of this particular erratum before,...

 

» Read on...

Filed by Thomas Roessler on July 14, 2009 6:00 PM in Security, Technology, XML
| | Comments (0) | TrackBacks (0)

JavaScript required for basic textual info? TRY AGAIN

Sam says he's Online and Airborne. "Needless to say, this is seriously cool." I'll say! But when I follow the link to details from the service provider, I get:Sorry. You must have JavaScript enabled to view this page. Click the...

 

» Read on...

Filed by Dan Connolly on January 27, 2009 10:01 PM in Accessibility, HTML, Security, Web Architecture
| | Comments (8) | TrackBacks (0)

Interview: David Baron on Firefox 3 and W3C Standards

At the news of the official release of Firefox 3 (FF3), I asked David Baron, Mozilla's Advisory Committee Representative at W3C (see photo), a few questions about the browser release and support for standards. Note: I anticipate interviewing (lots...

 

» Read on...

Filed by Ian Jacobs on June 20, 2008 7:29 PM in CSS, HTML, Interviews, SVG, Security
| | Comments (5) | TrackBacks (0)

When Widgets Go Wrong

Widgets provide front-ends to all kinds of information sources on the Web; several thousand are available for download. Obviously, the use of Web technologies has been a huge success here, enabling people to adapt their programming experience from the Web to their local platform. With the Web programming platform, though, come the Web's programming practices and security issues, sometimes with more serious consequences than before.

 

» Read on...

Filed by Thomas Roessler on December 20, 2007 8:51 PM in Security
| | Comments (0) | TrackBacks (0)

This page was last generated on $Date: 2011/12/16 03:01:56 $

This blog is written by W3C staff and working group participants,
 and maintained by Coralie Mercier.
Authorized parties may log in to create a new entry.
Powered by Movable Type, magpierss and a lot of Web Technology

Copyright © 1994-2011 W3C® (MIT, ERCIM, Keio), All Rights Reserved. W3C liability, trademark, document use and software licensing rules apply. Your interactions with this site are in accordance with our public and Member privacy statements.