Talk:Man-in-the-middle attack: Difference between revisions
imported>Sandy Harris |
imported>Sandy Harris |
||
Line 15: | Line 15: | ||
They collect data you send to your friends and use it for their own purposes. That is not tehnically m-i-t-m. but privacy advocates don't like it. | They collect data you send to your friends and use it for their own purposes. That is not tehnically m-i-t-m. but privacy advocates don't like it. | ||
[http://www.itworld.com/it-managementstrategy/247344/facebooks-man-middle-attack-our-data] [[User:Sandy Harris|Sandy Harris]] 05:27, 7 February 2012 (UTC) | [http://www.itworld.com/it-managementstrategy/247344/facebooks-man-middle-attack-our-data] [[User:Sandy Harris|Sandy Harris]] 05:27, 7 February 2012 (UTC) | ||
== A Cert Authority admits issuing m-i-t-m certs == | |||
Intent was allegedly to allow corporate security at a client company to monitor their network. [http://www.infoworld.com/d/security/trustwave-admits-issuing-man-in-the-middle-digital-certificate-185972]. Company claims other CAs also do this. [[User:Sandy Harris|Sandy Harris]] 03:19, 13 February 2012 (UTC) |
Latest revision as of 22:19, 12 February 2012
Some things needed
Definitely, some sourcing, and some specific examples, are needed. As the creator, you get to assign the language variant. A definition will be needed.
While it is possible to go to approval without all links being blue, it helps to minimize them. Definitely, the crypto-specific terms used in the definition, such as active attack, need definitions. You may want to have some graphics explaining the sequence; while the article itself is very much in draft, look at Domain Name System security for examples of showing how threats build up, or a simpler step-by-step in anycast -- they are in a PowerPoint file if you'd like it as a template.
Especially when devices such as ATM switches or routers are in the path, and themselves may not run any of the crypto, you need to show how the flow goes to a proxying man-in-the-middle box.
Howard C. Berkowitz 10:59, 15 October 2008 (UTC)
Looks pretty good
If we follow the principle of putting specific techniques/case study detail in subarticles, this is about ready other than flow and copy edit. Howard C. Berkowitz 08:22, 14 June 2010 (UTC)
Facebook as m-i-t-m attack?
They collect data you send to your friends and use it for their own purposes. That is not tehnically m-i-t-m. but privacy advocates don't like it. [1] Sandy Harris 05:27, 7 February 2012 (UTC)
A Cert Authority admits issuing m-i-t-m certs
Intent was allegedly to allow corporate security at a client company to monitor their network. [2]. Company claims other CAs also do this. Sandy Harris 03:19, 13 February 2012 (UTC)
- Article with Definition
- Developing Articles
- Nonstub Articles
- Internal Articles
- Mathematics Developing Articles
- Mathematics Nonstub Articles
- Mathematics Internal Articles
- Computers Developing Articles
- Computers Nonstub Articles
- Computers Internal Articles
- Military Developing Articles
- Military Nonstub Articles
- Military Internal Articles
- Mathematics Underlinked Articles
- Underlinked Articles
- Computers Underlinked Articles
- Military Underlinked Articles
- Military tag
- Security tag