A few weeks back I exchanged a few emails with Tom (aka bananalol). We had a good discussion about the security of the partial password scheme you can find here.
I was able to show that his initial suspicion of a security hole in the scheme was unfounded.
We have not posted much here recently as most of our attention was in the direction of our spin-off company Smart Crib Ltd. Throughout the Summer we were talking to a number of companies specialising in electronics manufacturing, supplies of electronic components, injection moulding, testing, and so on. We are getting close to the end of this task and first batch of Password sCrib dongles will be delivered in a few weeks' time. Fingers crossed.
sCrib ensures password resets are a thing of the past
The problem of using the same weak password repeatedly was highlighted when users had their personal data stolen from Sony’s PlayStation network earlier this year. Every month, hundreds of thousands of people are affected by similar incidents.
Smart Architects and its product sCrib have been selected as a regional finalist of the Global Security Challenge 2011.
A Cambridge startup is about to launch a new product to give computers extra protection against hackers.
Here are some thoughts on security in the "Cloud" - another hyped word of recent few years. We try to name some of the most interesting challenges. The bottom line is that instead of a secure tunnel between a client and a server, one has to create a secure "bubble" that only the client can access.
It is quite interesting that the two most common security mechanisms - antivirus software and firewalls are nowadays deemed insufficient.
We did a bit of googling and asked people around and saw how procurement processes work in large organisations. And we have not found a reasonable source of unbiased database and reviews of security products.
Security of SCADA (Supervisory Control And Data Acquisition) systems has been a known issue for some time. However, recent attacks of a virus on control systems in the Middle East have brought the topic on newspapers' front pages.
Slashdot has recently published a question of someone interested in implementing a SCADA system in a reasonably secure way ...