Online Services Security Report Card

Version imprimable, PDF et e-mail

By Daniel Peck, Research Scientist

Following up the last post on Firesheep, George Ou over at put together an excellent report card for some of the most popular online service websites and some explanations about some of the attack vectors that is more than worth a read.  Especially notable are the sites that offer SSL for login, but drop the session afterwards, something I've always had trouble with giving a justification to since the vast amount of computing power involved in establishing SSL connections is in the initial setup with very little overhead for an ongoing connection.

Remonter en haut de page