Language Selection

English French German Italian Portuguese Spanish

Web Browser Developers Work Together on Security

Filed under
KDE

Core KDE developer George Staikos recently hosted a meeting of the security developers from the leading web browsers. The aim was to come up with future plans to combat the security risks posed by phishing, ageing encryption ciphers and inconsistent SSL Certificate practise. Read on for George's report of the plans that will become part of KDE 4's Konqueror and future versions of other web browsers.

In the past few years the Internet has seen a rapid growth in phishing attacks. There have been many attempts to mitigate these types of attack, but they rarely get at the root of them problem: fundamental flaws in Internet architecture and browser technology. Throughout this year I had the fortunate opportunity to participate in discussions with members of the Internet Explorer, Mozilla/FireFox, and Opera development teams with the goal of understanding and addressing some of these issues in a co-operative manner.

Our initial and primary focus is, and continues to be, addressing issues in PKI as implemented in our web browsers. This involves finding a way to make the information presented to the user more meaningful, easier to recognise, easier to understand, and perhaps most importantly, finding a way to make a distinction for high-impact sites (banks, payment services, auction sites, etc) while retaining the accessibility of SSL and identity for smaller organisations.

In Toronto on Thursday November 17, on behalf of KDE and sponsored by my company Staikos Computing Services, I hosted a meeting of some of these developers. We shared the work we had done in recent months and discussed our approaches and strengths and weaknesses. It was a great experience, and the response seems to be that we all left feeling confident in our direction moving forward.

Full Story.

More in Tux Machines

4 keys to success for LibreOffice as a service

The announcement of LibreOffice Online this week came as welcome news to many people concerned about the paucity of online options for those who want software freedom with their online document solutions. But can open source SaaS succeed? The open source community needs a truly open alternative to current mainstream online document collaboration solutions, all of which are compromised by lock-in. LibreOffice Online will offer the full flexibility to deploy in-house or hosted cloud instances while using true open standards for its documents. Read more

Bazel: Google Build Tool is now Open Source

Bazel, the tool that Google uses to build the majority of its software has been partially open sourced. According to Google, Bazel is aimed to build “code quickly and reliably” and is “critical to Google’s ability to continue to scale its software development practices as the company grows.” Read more Also: Q&A: Databases, Open Source & Virtualisation with CEO Vinay Joosery

Ubuntu Kylin 15.04 Beta 2 Is Now Available for Download - Screenshot Tour

After announcing the Ubuntu 15.04 Final Beta and Kubuntu 15.04 Beta 2, it is now time to take a look at the second and last Beta release of the upcoming Ubuntu Kylin 15.04 (Vivid Vervet) operating system that has been designed especially for the Chinese Ubuntu Linux community. Read more Also: Ubuntu MATE 15.04 (Vivid Vervet) Beta 2 Switches to Systemd - Screenshot Tour Ubuntu 15.04 (Vivid Vervet) Final Beta Officially Released - Screenshot Tour

Kubuntu 15.04 Beta 2 Released with KDE Plasma 5 as Default Desktop - Screenshot Tour

Today’s announcement for Ubuntu 15.04 (Vivid Vervet) Final Beta also mentioned the immediate availability for download and testing of Kubuntu 15.04 Beta 2, an official Ubuntu flavor built around the modern and attractive KDE Plasma 5 desktop environment, as well as the KDE Applications project. Read more Also: Xubuntu 15.04 Beta 2 Released, Offers a Neat Xfce 4.12 Experience - Screenshot Tour