455
edits
CFA/Security-Notes: Difference between revisions
Jump to navigation
Jump to search
→General capabilities
| Line 21: | Line 21: | ||
* Protected Mode - runs in isolation from other applications in the OS. Restricts exploits and malware from writing to any location beyond Temporary Internet Files without explicit user consent (IE7) | * Protected Mode - runs in isolation from other applications in the OS. Restricts exploits and malware from writing to any location beyond Temporary Internet Files without explicit user consent (IE7) | ||
* Warn me when sites try to install add-ons (FF) | * Warn me when sites try to install add-ons (FF) | ||
* Prevent malware attacks in real-time with behavior-based profiling algorithms (Haute Secure) | * Prevent malware attacks in real-time with behavior-based profiling algorithms (Finjan SecureBrowsing FF extension, Haute Secure) | ||
* Prevent malware attacks using virtual machine techniques (GreenBorder) | * Prevent malware attacks using virtual machine techniques (GreenBorder) | ||
=== Anti-Phishing === | === Anti-Phishing === | ||
| Line 33: | Line 34: | ||
* Blacklisting | * Blacklisting | ||
* Whitelisting | * Whitelisting | ||
* Security status bar - color-coded notifications appear next to the address bar to notify user of website security and privacy settings. Address Bar turns green for websites bearing new High Assurance certificates ( | * Security status bar - color-coded notifications appear next to the address bar to notify user of website security and privacy settings. Address Bar turns green for websites bearing new High Assurance certificates (IE7, VeriSign EV Green Bar FF Extension) | ||
*FirePhish - uses Open Phishing DB to provide user with info and tools to protect against phishing attacks (FF extension) | |||
** Blinking-red warning when entering high-risk phishing-suspected sites | |||
** Green frame around location bar when entering sites on your safe list | |||
* International domain name anti-spoofing - notifies user when visually similar characters in the URL are not expressed in the same language (IE) | * International domain name anti-spoofing - notifies user when visually similar characters in the URL are not expressed in the same language (IE) | ||
* openID - decentralized single sign-on system that is possibly vulnerable to phishing attacks | * openID - decentralized single sign-on system that is possibly vulnerable to phishing attacks | ||
| Line 42: | Line 46: | ||
** Disallow visiting sites by IP address (IP anywhere in URL) | ** Disallow visiting sites by IP address (IP anywhere in URL) | ||
** Allow local LAN IPs | ** Allow local LAN IPs | ||
* iTrustPage - anti-phishing tool that prevents users from filling out suspicious web forms, and suggests corresponding legitimate form (FF extension) | |||
=== Content Enabling === | === Content Enabling === | ||
| Line 52: | Line 56: | ||
** Click to run applets (Omniweb) | ** Click to run applets (Omniweb) | ||
* Enable JavaScript (FF) | * Enable JavaScript (FF) | ||
** YesScript - JavaScript blacklist (FF extension) | |||
** Allow scripts to: (FF) | ** Allow scripts to: (FF) | ||
*** Move or resize existing windows | *** Move or resize existing windows | ||
| Line 61: | Line 66: | ||
* Block pop-up windows (FF) | * Block pop-up windows (FF) | ||
* Block web advertising (Camino) | * Block web advertising (Camino) | ||
* Adblock Plus - block ads and banners on webpages (FF extension) | |||
=== Cookies === | === Cookies === | ||
| Line 97: | Line 103: | ||
* Use TLS 1.0 Protocol (FF) | * Use TLS 1.0 Protocol (FF) | ||
* Certificate options (FF) | * Certificate options (FF) | ||
=== Other === | === Other === | ||