Search: Home Bugtraq Vulnerabilities Mailing Lists Jobs Tools Vista
Browsers, phishing, and user interface design
Scott Granneman, 2006-06-05

Phishing works for so many reasons, we need to rethink browser and user interface design to provide some real-life security to the average user who doesn't see or understand the security cues.

Comments Mode:
Sure. Lots of ideas... 2006-06-05
Anonymous (2 replies)
Your First Statement Is Right 2006-06-06
Anonymous (1 replies)
Re: Your First Statement Is Right 2006-06-07
Anonymous (1 replies)
Re: Re: Your First Statement Is Right 2006-06-08
Anonymous
Re: Sure. Lots of ideas... 2006-06-24
Anonymous
Browsers, phishing, and user interface design 2006-06-06
Anonymous
Browsers, phishing, and user interface design 2006-06-06
TJ
Browsers, phishing, and user interface design 2006-06-06
Anonymous (1 replies)
Re: Browsers, phishing, and user interface design 2006-06-06
Anonymous (2 replies)
Re: Re: Browsers, phishing, and user interface design 2006-06-08
Anonymous
Re: Re: Browsers, phishing, and user interface design 2006-06-16
Anonymous
Browsers, phishing, and user interface design 2006-06-06
infamous41md
Browsers, phishing, and user interface design 2006-06-06
Todd Knarr
Email should be as in the begining: text ONLY 2006-06-07
Anonymous
Well, lets hope we find White Hats 2006-06-07
Anonymous
Education & Two-factor authentication 2006-06-07
Wolfy
Browsers, phishing, and user interface design 2006-06-07
GeeksAreSexy
Browsers, phishing, and user interface design 2006-06-07
Anonymous
Browsers, phishing, and user interface design 2006-06-07
Andydread
Browsers, phishing, and user interface design 2006-06-07
Glenn
Send them to AOL 2006-06-07
Anonymous
Browsers, phishing, and user interface design 2006-06-08
Anonymous
The article tells tells you atleast one simple answer 2006-06-08
Matthew
Stop babying people 2006-06-09
Anonymous
Browsers, phishing, and user interface design 2006-06-09
Ron Jennings
Wrong end to start patching 2006-06-12
Thomas Nilsen (1 replies)
Re: Wrong end to start patching 2006-06-12
Anonymous
Browsers, phishing, and user interface design 2006-06-14
Andre
the funniest bit about this article is how much Scott seems to be taken by this concept. These kind of studies, that is Usability and Security, are becoming more frequent as more people look at this. There is actually a book title "Usability and Security" that is a few years old on this very subject. I am personally not surprised much. I mean, if the browsers have been giving good, intuitive visual clues for a while now and people educated enough on the problem of phishing then phishing wouldn't be so bloody lucrative now would it? The truth is that possible solutions are multi-pronged. We need people to be taught critical thinking in school and we need to develope the Usability of the tools we use. Of course, How easily would people be manipulated for political reasons if they were all critical thinkers? hence it's not part of the standard curriculum in public schools these days...

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/columns/405/33727#33727
Ingredients of possible solutions 2006-06-16
S. Lo Presti
Users ignore alert messages... 2006-06-20
Anonymous
simple: 2006-06-24
ailaG
Browsers, phishing, and user interface design 2006-07-03
wurzlsepp







 

Privacy Statement
Copyright 2008, SecurityFocus