RE: Authentium from Doyle, Bill on 2007-07-30 (public-wsc-wg@w3.org from July 2007)

From: Doyle, Bill <wdoyle@mitre.org>
Date: Mon, 30 Jul 2007 13:39:52 -0400
To: <michael.mccormick@wellsfargo.com>, <dan.schutzer@fstc.org>, <todd.inskeep@bankofamerica.com>, <Chuck@Interisle.net>, <Bob.Pinheiro@fstc.org>, <Dan.Houser@huntington.com>, <mark.tiggas@wellsfargo.com>, <matt.barrington@wachovia.com>, <peltond@wellsfargo.com>, <sam.phillips@bankofamerica.com>, <smb@cs.columbia.edu>, <solod@citigroup.com>, <Pete.Palmer@wellsfargo.com>, <tom.keane@wachovia.com>, <john.fricke@fstc.org>, <richard.a.parry@jpmchase.com>, <Stan.Szwalbenest@chase.com>, <chris.nautiyal@fstc.org>
Cc: <public-wsc-wg@w3.org>
Message-ID: <518C60F36D5DBC489E91563736BA4B5801929274@IMCSRV5.MITRE.ORG>

Sounds pretty good - private DNS is a nice touch
 
Bill 


________________________________

 From: public-wsc-wg-request@w3.org
[mailto:public-wsc-wg-request@w3.org] On Behalf Of
michael.mccormick@wellsfargo.com
 Sent: Monday, July 30, 2007 12:16 PM
 To: dan.schutzer@fstc.org; todd.inskeep@bankofamerica.com;
Chuck@Interisle.net; Bob.Pinheiro@fstc.org; Dan.Houser@huntington.com;
mark.tiggas@wellsfargo.com; matt.barrington@wachovia.com;
peltond@wellsfargo.com; sam.phillips@bankofamerica.com;
smb@cs.columbia.edu; solod@citigroup.com; Pete.Palmer@wellsfargo.com;
tom.keane@wachovia.com; john.fricke@fstc.org;
richard.a.parry@jpmchase.com; Stan.Szwalbenest@chase.com;
chris.nautiyal@fstc.org
 Cc: public-wsc-wg@w3.org
 Subject: Authentium
 
 

 There are emerging vendors who offer a hardened web browser
that only allows the user to access certain pre-vetted web sites.  The
one I saw demo'd today is based on the Mozilla code base.  The UI looks
like a stripped-down Firefox.  While it's running all other Windows
programs (inc. any key loggers or other malware) are more or less
suspended.  Only SSL communication is allowed.  The browser also uses a
private DNS server to avoid DNS poisoning and a signed URL list to
avoid bookmark poisoning.

 Sounds kind of like Safe Browsing? 


 Michael McCormick, CISSP 
 Lead Architect, Information Security Technology 
 Wells Fargo Bank 
 255 Second Avenue South 
 MAC N9301-01J 
 Minneapolis MN 55479 
 *      612-667-9227 (desk)             *       612-667-7037
(fax) 
 (       612-590-1437 (cell)             :-)
michael.mccormick@wellsfargo.com (AIM) 
 *       612-621-1318 (pager)            *
michael.mccormick@wellsfargo.com
<mailto:michael.mccormick@wellsfargo.com>  

 “THESE OPINIONS ARE STRICTLY MY OWN AND NOT NECESSARILY THOSE
OF WELLS FARGO" 
 This message may contain confidential and/or privileged
information.  If you are not the addressee or authorized to receive
this for the addressee, you must not use, copy, disclose, or take any
action based on this message or any information herein.  If you have
received this message in error, please advise the sender immediately by
reply e-mail and delete this message.  Thank you for your cooperation.

Received on Monday, 30 July 2007 17:38:44 UTC