How is this better than SSL?
on
Anti-Phishing Tools
·
· Score: 3, Insightful
Let's make a couple of risky assumptions
1) That as an educated user I only submit sensitive information over an SSL encrypted connection using an SSL certificate signed by a third party.
2) That I check that the certificate corresponds to the site I'm visiting.
This should prevent me from submitting any information to a phishing scam provided that I'm using a browser which correctly implements the SSL/TLS exchange.
So why would a hosting company or a user bother with Web caller ID? A properly configured browser and SSL should prevent phishing attacks. Correct?
Slashdot Mirror
Let's make a couple of risky assumptions
1) That as an educated user I only submit sensitive information over an SSL encrypted connection using an SSL certificate signed by a third party.
2) That I check that the certificate corresponds to the site I'm visiting.
This should prevent me from submitting any information to a phishing scam provided that I'm using a browser which correctly implements the SSL/TLS exchange.
So why would a hosting company or a user bother with Web caller ID? A properly configured browser and SSL should prevent phishing attacks. Correct?
--- Friends don't let friends sig