SecurityPosts tagged with “”

Firefox iOS 버전, 암호 관리자 보안 강화

Mozilla Korea

0

Mozilla에서는 어떤 플랫폼에서도 쾌적하게 Firefox를 사용할 수 있도록 날마다 개선을 거듭하고 있습니다. 오늘은 iOS판 Firefox에 사용자의 보안을 지킬 새로운 기능을 추가하였습니다.

Firefox 암호 관리자는 사용자 아이디와 암호를 안전하게 보관하면서, 웹 사이트를 방문했을 때 이들 정보를 자동으로 입력하는 기능입니다. 이번 업데이트를 통해 암호 관리자에서 4자리 수의 비밀 번호를 설정하도록 되어 정보를 입력하여 아이디 저장 정보를 보다 안전하게 관리할 수 있게 되었습니다. 이 기능이 있으면 비록 여러분이 단말기를 잃어버렸다고 해도, 암호 보호가 한 단계 더 있어서 안심입니다.
firefox-ios-password-manager

Touch ID가 쓸 수 있는 모든 iOS장치에서는 지문 인증에 의해서 보존된 로그인 정보를 입력할 수 있습니다. 이번 업데이트에 의해서 그 다른 신기능에 대해서는 평소대로, 최신판 iOS판 Firefox를 구성했을 때 확인할 수 있습니다.

상세 정보

Mozilla keeps watching Korean Web

Channy Yun

0

Last week, Lucas Adamski, director of security engineering for Mozilla visited South Korea to give an important speech in a seminar of the Security of Internet Banking organized by the Korean Office of Small and Medium Business Ombudsman at COEX, Seoul.

2010-security-seminar

It is a very important period for the Korean web to move forward. Over 160 people participated in this conference with many security experts and governmental representatives, who listened carefully to advice of international experts as like Bruce Schneier, chief security officer of British Telecom (BT) and Lucas.

Bruce said, “Once a law mandates specific technologies such as protocol, applications or software, innovation stops. Companies know they will be okay as long as they do everything that the law says, and they will not figure out ways to make things more secure.” Lucas said that largely ignoring HTTPS results in bad things for both user experience and security although Korean’s web couldn’t help depending on ActiveX security model in past.

2010-security-semniar-panel

You can read in detail of Lucas’s blog post, his good presentation and Experts Say Specific Tech Mandates Make Internet Banking Vulnerable of Korea Times.

Here’s video archives of realtime broadcasting for Bruch Schneier and Lucas and the Q&A Session. We recorded all of the speeches with a good camera and they will be published at Youtube after editing.

After the conference, we had a short meeting with Korean security expoerts. They still were interested in adding Korean root CA certificate to Mozilla Firefox and HTML5 security functions such as supporting digital signatures. But, the Korean PKI-based security model is not widely spread globally. So it is very important that alternative choices for non-IE and non-Windows users are also supported.

mozilla-security-meeting-2010

The next day, we had good conversations with Bruce and Prof. Kim Keechang, the leader of Openweb.or.kr, over tea. In the evening, we had a Mozilla Korean community meeting with eight web developers and security professionals in Daum’s office. We shared Lucas’s speech and new approach of Mozilla’s plug-in model and had an earnest conversation and debate in dinner restaurant .

Specially thanks to Gen Kanai, Asian evangelist of Mozilla who was tireless interested in Korean situation to support user’s choice of web browser and open web innovation.