{"id":13718,"date":"2014-07-14T11:46:56","date_gmt":"2014-07-14T16:46:56","guid":{"rendered":"http:\/\/bucktownbell.com\/?p=13718"},"modified":"2014-07-14T11:46:56","modified_gmt":"2014-07-14T16:46:56","slug":"critical-vulnerabilities-in-web-based-password-managers-found","status":"publish","type":"post","link":"http:\/\/bucktownbell.com\/?p=13718","title":{"rendered":"Critical vulnerabilities in web-based password managers found"},"content":{"rendered":"<blockquote><p>The five password managers they analyzed are LastPass, RoboForm, My1Login, PasswordBox and NeedMyPassword, and they did it to evaluate their security in practice, and to provide pointers to &#8220;guide the design of current and future password managers.&#8221;<\/p>\n<p>&#8220;Widespread adoption of insecure password managers could make things worse: adding a new, untested single point of failure to the web authentication ecosystem. After all, a vulnerability in a password manager could allow an attacker to steal all passwords for a user in a single swoop,&#8221; they pointed out, and are advocating a defense-in-depth approach.<\/p><\/blockquote>\n<p>via <a href=\"http:\/\/www.net-security.org\/secworld.php?id=17111\">Critical vulnerabilities in web-based password managers found<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>The five password managers they analyzed are LastPass, RoboForm, My1Login, PasswordBox and NeedMyPassword, and they did it to evaluate their security in practice, and to provide pointers to &#8220;guide the design of current and future password managers.&#8221; &#8220;Widespread adoption of &hellip; <a href=\"http:\/\/bucktownbell.com\/?p=13718\">Continue reading <span class=\"meta-nav\">&rarr;<\/span><\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[284],"tags":[414,632,698,692],"class_list":["post-13718","post","type-post","status-publish","format-standard","hentry","category-servers","tag-authentication","tag-passwords","tag-security-research","tag-user-management"],"_links":{"self":[{"href":"http:\/\/bucktownbell.com\/index.php?rest_route=\/wp\/v2\/posts\/13718","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/bucktownbell.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/bucktownbell.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/bucktownbell.com\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"http:\/\/bucktownbell.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=13718"}],"version-history":[{"count":1,"href":"http:\/\/bucktownbell.com\/index.php?rest_route=\/wp\/v2\/posts\/13718\/revisions"}],"predecessor-version":[{"id":13719,"href":"http:\/\/bucktownbell.com\/index.php?rest_route=\/wp\/v2\/posts\/13718\/revisions\/13719"}],"wp:attachment":[{"href":"http:\/\/bucktownbell.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=13718"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/bucktownbell.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=13718"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/bucktownbell.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=13718"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}