The Hidden Gotchas of Browser Security

I have been watching with interest the issues related to browser security. I now use Firefox because, as an independent organization, it has no corporate axe to grind and can cater to the customer. In this case, customers have shown that they like a browser to promote security and privacy.

My first education came from Glenn Fleishman back in 2011: “Keep your Mac safe from Web security flaws.” That’s been a starter kit for me. It’s tough, scary, but fundamental to your Internet life. As a result of my research, I’ve found that Firefox checks the OSCP database automatically while Safari, with no help from the default Keychain settings, does not. This article has what you need to know on the Online Certificate Status Protocol (OSCP) certificates.

Internet Security

So far, so good. But there are those, as I understand it, who are not happy with the OCSP (and also CRL) systems and want to do better. This week, Google weighed in and put a bullet through the head of CRL and OCSP, in the words of Mr. Fleishman’s recent tweet, and declared a better way forward.

I asked Glenn if that means we can dispense with the more rigid Keychain settings, and he advised we do not. Even so, this is an area to pay attention to, especially if you do online banking because you need to be sure your connection is the correct one, not a site posing as your bank. The chart in the OCSP article above, though out of date, suggested that back in April 2011, only Firefox and Chrome had adequate certificate checking. As I continue to research this, I’ll update that notion.

Meanwhile, here’s a preview of Firefox 11.

I have been arguing all along that Apple will, during the holiday 2012 season, counter any Kindle or next generation Kindle with a 7.x-inch iPad. It’s a notion and a rumor that just won’t go away. This next article doesn’t really contain anything new, but it does suggest that I am not the only one who thinks the way I do. (Or maybe the analyst quoted read my stuff and is in an echo chamber, I don’t know.)

March debut of ‘iPad 3’ a sure bet, says analyst.” On page 2, Ezra Gottheil, an analyst with Technology Business Research, goes out on a limb for a 7-inch iPad: “I believe that’s always been in the plan. Actually that’s a good form factor for some users, and although they will also charge a premium above other similar-sized tablets, they want to protect that price flank.”

Protecting their flank is what big companies do.

Does anyone remember what mobile phones looked like before the Apple iPhone? John Brownlee does, and he has a great graphic that compares pre-2007 phones with current day phones. Food for thought. “What Phones Looked Like Before And After The iPhone Transformed The Industry.

Do you have a Wi-Fi tablet, like say, perhaps an iPad, that doesn’t have a USB port? No problem. Just use a Flash drive that has Wi-Fi. Walt Mossberg has the story: “For iPad and Mobile Devices, a ‘Port’ out of the Norm.”

How sensitive is the data in your Address Book? How do you feel about it being grabbed and uploaded somewhere? Jason O’Grady has some thoughts on how Apple, a company that is supremely careful with the approval of iOS apps that might compromise our privacy is apparently somewhat lax about the Address Book data. Here’s the story: “Apple doesn’t enforce its own Address Book policy.

We all know what a MacBook Air looks like. Very cool. We also know that the MBA is a whole lot cooler looking than its big brothers, the MacBook Pro line. So why not make every MacBook look like an MBA? Here’s the best evidence yet that Apple intends to do exactly that. As Mr. Spock would say, “Perfectly logical.”

______________

Teaser image credit: Shutterstock.