|
Friday, May 25, 2007
Deploying RSA SSO is not at all a piece of cake. Rather it can give you some real hard experiences. While testing out the product in Labs we took around three day to make the thing work. So make sure that you get a service engineer along from RSA in case you plan to deploy this software.
The list of pre-requisites is not too long. All you require is a Windows 2000 or 2003 machine with IIS installed, for the RSA SSO server. Additionally, the server software requires that you have a directory service running. This DS should be either a Microsoft ADS, or Novell eDirectory or a Sun One Directory. The RSA SSO manager then takes the users from the DS directly and reduces the need of creating users afresh. Once the server is installed and configured, you have to install the client agent on all workstations. Installing the clients is nothing more than running a simple wizard. Once installed, connect the client to the server by providing the IP address of the machine where the RSA SSO server is installed and it will start working for you. ¨
| FAQs on Online Privacy |
Question 1: If the Bank or transaction site shows a lock icon at the right bottom of your browser, and the address consists of “https” then is it supposed to be a safe website?
Answer: Not necessarily. It might be that the site which you are accessing is actually phished and the certificate (which shows the lock icon) of the site is also fake. Creating such a fake certificate is not at all rocket science and someone who has basic knowledge of website designing and web hosting can do it very easily.
Question 2: Then what should I do to make sure that the site I am accessing is authentic?
Answer: It is not sufficient to just check whether the Lock icon is there in the browser or not. You should also double click on the icon to check and verify the certificate of the site. If the site has a fake certificate then double clicking on the lock icon will pop up a Window that will have a cross sign on the certificate header. This should immediately ring alarm bells that you're accessing an unsafe site.
Question 3: Is it safe to use banking and financial websites from Cyber Cafes?
Answer: Not really, because it's very easy for the owner of a Cyber Café to capture all data that is going out from your machine. A
person with malicious intent on the same network can easily play around with the gateway (which is not very secure in this case) and can redirect your entries to any phishing site by running attacks such as arpspoofing and dnsspoofing.
Question 4: How safe is online shopping with your credit card? Is it safer than shopping with a physical card?
Answer: Contrary to belief, shopping online is much safer than shopping with a physical credit card. The reason for this is simple. When you shop with a physical card, you're leaving an imprint of your card's details with the vendor. The vendor could then use this to pose as you online and shop. There have been many such cases of fraud, indicating that it's not safer to shop with your physical card against shopping online. When you do shop online, then at least your credit card is with you both! The only thing you have to worry about is a fake website, but then there are many precautions you can take to ensure that. Many banks also have worked out various mechanisms to help ensure the safety of your online identity. Of course, one also presumes that the machine you're using yourself is free from all malware.
|
|
