Last week, Lucas Adamski, director of security engineering for Mozilla visited South Korea to give an important speech in a seminar of the Security of Internet Banking organized by the Korean Office of Small and Medium Business Ombudsman at COEX, Seoul.
It is a very important period for the Korean web to move forward. Over 160 people participated in this conference with many security experts and governmental representatives, who listened carefully to advice of international experts as like Bruce Schneier, chief security officer of British Telecom (BT) and Lucas.
Bruce said, “Once a law mandates specific technologies such as protocol, applications or software, innovation stops. Companies know they will be okay as long as they do everything that the law says, and they will not figure out ways to make things more secure.” Lucas said that largely ignoring HTTPS results in bad things for both user experience and security although Korean’s web couldn’t help depending on ActiveX security model in past.
You can read in detail of Lucas’s blog post, his good presentation and Experts Say Specific Tech Mandates Make Internet Banking Vulnerable of Korea Times.
Here’s video archives of realtime broadcasting for Bruch Schneier and Lucas and the Q&A Session. We recorded all of the speeches with a good camera and they will be published at Youtube after editing.
After the conference, we had a short meeting with Korean security expoerts. They still were interested in adding Korean root CA certificate to Mozilla Firefox and HTML5 security functions such as supporting digital signatures. But, the Korean PKI-based security model is not widely spread globally. So it is very important that alternative choices for non-IE and non-Windows users are also supported.
The next day, we had good conversations with Bruce and Prof. Kim Keechang, the leader of Openweb.or.kr, over tea. In the evening, we had a Mozilla Korean community meeting with eight web developers and security professionals in Daum’s office. We shared Lucas’s speech and new approach of Mozilla’s plug-in model and had an earnest conversation and debate in dinner restaurant .
Specially thanks to Gen Kanai, Asian evangelist of Mozilla who was tireless interested in Korean situation to support user’s choice of web browser and open web innovation.