Sections:
Home |
Featured Blogs |
News Briefs |
Industry Updates |
Topics |
Community
RSS Feeds, Email Updates, Mobile Edition and More: CircleID Extras
About: About CircleID | Media Coverage | CircleID Blog | Contact | Advertising Programs
Terms & Policies: Codes of Conduct | Privacy Policy | Terms of Use
RSS Feeds, Email Updates, Mobile Edition and More: CircleID Extras
About: About CircleID | Media Coverage | CircleID Blog | Contact | Advertising Programs
Terms & Policies: Codes of Conduct | Privacy Policy | Terms of Use
Copyright © 2002-2008 CircleID.
Iomemo Inc.
All rights reserved unless where otherwise noted.
Local Time: Saturday, November 22, 2008 09:52 AM PST – Page Load: 0.2347 Sec.
Local Time: Saturday, November 22, 2008 09:52 AM PST – Page Load: 0.2347 Sec.
I hate to say it, but this article is at best highly unclear, particularly to the extent that it proposes a solution. On re-reading the last two paragraphs several times, I came no closer to understanding how the solution addresses the problem, or even precisely what it is that the proposed solution is doing. If the threat model includes the possibility of a keylogger as installed by something like "Fizzer", then surely an application-specific gateway fails to address the problem. Can the application-specific gateway tell the difference between a legitimate client and a compromised one? If so, then how?
I'm afraid I just don't get it.