Skip to content

Tech Round-up for 5/10/13

by on May 10, 2013

Here are some of the technology stories that caught our eye today:

Eric Sachs, group product manager for identity at Google, unveiled a five-year roadmap for the company’s authentication and security goals at the Internet Identity Workshop. Among the changes, Google will require all users to enable two-factor authentication, currently an optional setting. “We don’t mind making it painful for users to sign into their device if they only have to do it once,” Sachs said. Google is looking to harden authentication across devices, while only requiring users to log in once per device. The company published their roadmap and slideshow outlining the proposed roadmap.

Adobe is working on a patch for its ColdFusion application server platform after a security researcher from Symantec discovered a vulnerability that could allow unauthorized users access to administrative folders on the server. While Adobe expects to release the patch next week, the company advises users to lock down sensitive directories CFIDE/administrator, CFIDE/adminapi, and CFIDE/gettingstarted.

Microsoft released an advance notification of this month’s “Patch Tuesday” update, which will include 10 bulletins for 34 vulnerabilities and coding errors in Microsoft programs and features. It will also address two remote code vulnerabilities in Internet Explorer, including the recently-discovered zero-day vulnerability found in Internet Explorer 8.

PayPal also has their own ideas on the future of online security. Michael Barrett, chief information security officer at the company, is also the president of the FIDO Alliance, which is looking for an open standard to replace passwords. FIDO would require users to use their smart phone to authenticate to a website with FIDO’s protocols, and would also work with fingerprint, voice biometrics, eye scans, and facial recognition to authenticate. Barrett said devices with FIDO capabilities will be available later this year.

Comments are closed.

%d bloggers like this: