Simon Willison’s Weblog

Subscribe
Atom feed for maninthemiddle

1 item tagged “maninthemiddle”

2007

Cronto. I saw a demo of this the other day—it’s a neat anti-phishing scheme that also protects against man in the middle attacks. It works using challenge/response: an image is shown which embeds a signed transaction code; the user then uses an application on their laptop or mobile phone to decode the image and enters the resulting code back in to the online application.

# 2nd October 2007, 1:14 am / phishing, cronto, security, maninthemiddle, signing, challengresponse, openid