Simon Willison’s Weblog

Subscribe

Entries tagged security, phishing

Filters: Type: entry × security × phishing × Sorted by date


Teaching users to be secure is a shared responsibility

Ryan Janssen: Why an OAuth iframe is a Great Idea.

[... 570 words]

8:04 pm / 16th July 2009 / education, framebusting, iframes, oauth, phishing, responsibility, security

Designing for a security breach

User account breaches are inevitable. We should take that in to account when designing our applications.

[... 545 words]

9:29 pm / 30th September 2007 / accounts, csrf, designingforabreach, openid, phishing, privacy, security, xss

Solving the OpenID phishing problem

Most of the arguments I hear against OpenID are based on mis-understandings of the specification, but there is one that can’t be ignored: OpenID is extremely vulnerable to phishing.

[... 531 words]

2:39 pm / 19th January 2007 / openid, phishing, security

Types

Years

Tags