Jeff Hodges / =JeffH

@equalsJeffH

Vocational: Web (in)Security, Protocol Design, Online Identity. Avocational: Fatherhood and other endurance sports.

SFBay Area, CA, US
Vrijeme pridruživanja: lipanj 2008.

Tweetovi

Blokirali ste korisnika/cu @equalsJeffH

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @equalsJeffH

  1. proslijedio/la je Tweet
    30. sij

    If you want to do research on FIDO/WebAuthn, here is a cool new open-source platform for you.

    Poništi
  2. proslijedio/la je Tweet
    30. sij

    Google loves security keys, and today announced an open source implementation to help spur further innovation from the security research community 1/ .

    Prikaži ovu nit
    Poništi
  3. 20. pro 2019.

    PSA: Diff and summary of changes in WebAuthn L2 WD-02 relative to L2 FPWD (WD-01):

    Poništi
  4. proslijedio/la je Tweet
    10. pro 2019.

    Happy WebAuthn for Safari on iOS day! iOS 13.3 is out! From the release notes (which you should quote instead of quoting me): - Adds support for NFC, USB, and Lightning FIDO2-compliant security keys in Safari

    Poništi
  5. proslijedio/la je Tweet
    11. stu 2019.
    Poništi
  6. 6. stu 2019.

    big congrats to re Virtual Authenticator in via ! She also authored Chrome extension materializing UI to create/manage virtual authnrs in the DevTools UI !

    Poništi
  7. 26. lis 2019.

    WT(cluster)F? (3) -- all this would be funnier if it didn't involve actual upcoming wind-event power shutoffs due to wildfire potential...

    Poništi
  8. 26. lis 2019.

    WT(cluster)F? (2) -- comcast redirects me here: for HTTP site, but trying HTTPS yields (in FF) SSL_ERROR_RX_RECORD_TOO_LONG and similar for other browsers. Also note that comcast's error page is itself insecure HTTP

    Poništi
  9. 26. lis 2019.

    WT(cluster)F? comcast is blocking (for me anyway) "" (ie the site Sam Mateo county's alert system is pointing folks to for pwr-outage info) as a malicious site...but pgecurrents is PGE's PR site, actual power outage info site is:

    Poništi
  10. proslijedio/la je Tweet

    We're growing our OS/Chromebook security & privacy team!👩‍💻👨‍💻 If you know awesome product managers (), engineers, or UXers that want to help us build a safer computing experience for all, get in touch with me or

    Poništi
  11. 21. lis 2019.

    this's been re-tweeted a ton already, but it's a really good & valuable (breadth & depth) article so I've gotta do this... ;-P

    Poništi
  12. 16. lip 2019.
    Poništi
  13. proslijedio/la je Tweet

    🚨 No, Chrome isn’t killing ad blockers – we’re making them safer: Content blockers are built on extension features that share too much data with the extension. Let's change that!

    Poništi
  14. proslijedio/la je Tweet
    12. lip 2019.

    I know that major API changes are always a pain for developers and they would rather not have to deal with them, but please keep in mind stats like "42% of malicious extensions use the Web Request API" when you're considering what we're trying to improve here.

    Prikaži ovu nit
    Poništi
  15. proslijedio/la je Tweet
    12. lip 2019.

    The second post is a deeper technical dive into the Web Request and Declarative Net Request APIs, explaining the advantages and tradeoffs of the new API versus the old one.

    Prikaži ovu nit
    Poništi
  16. proslijedio/la je Tweet
    12. lip 2019.

    We have two new posts out today addressing the confusion and misinformation surrounding what Chrome is doing with extensions. This first one gives context on the broader security, privacy and abuse considerations we're addressing.

    Prikaži ovu nit
    Poništi
  17. 3. lip 2019.
    Poništi
  18. 31. svi 2019.

    New (must-read) paper from & Co: Fixing HTTPS Misconfigurations at Scale: An Experiment with Security Notifications

    Poništi
  19. 30. svi 2019.
    Poništi
  20. 30. svi 2019.

    ISTM the overall analysis & approach of which-Go-web-framework-backend-components-need-to-do-which-webauthn-related-things might also be applicable to other web backend frameworks in supporting WebAuthn/FIDO2. Nice crisp & informative slide deck...

    Poništi

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·