No Image

Justin Everett-Church

Professional Flash Developer & Author
Joined on November 12, 2003
Total Post Views: 18,124

About
RSS

My name is Justin Everett-Church. I’m a Flash game developer living in the San Francisco Bay area. Currently I work for Yahoo! developing IMVironments for Yahoo? Instant Messenger.

Even when no working on Interactive toys and games, I’m often still thinking about flash. I’ve co-authored 3 books on the subject (which you can learn more about by driving over to the library). I also can oftem be found chatting in IRC, on efNet channel #flashHelp. Several of the houses in the neighborhood belong to my friends from there.

When no thinking about Flash at all, I love playing computer games, reading books, hanging out with friends, and playing with Flash…oh, wait, I said no Flash… hmm.

Featured Blogs

VeriSign’s New Security Seal Too Trusting?

Related Topics: CybersecurityDNSDomain NamesRegistry ServicesThreat Intelligence,

On November 4, 2003, VeriSign announced a new "trust enhancing" seal which they built using Macromedia's Flash technology...While there are problems inherent to VeriSign's approach that call into question their understanding of "The Value of Trust," there are ways they could have made this particular implementation less trivially spoofable. The flaws I demonstrate on this page are flaws in the concept and the execution rather than anything inherently flawed in Flash. Overall this kind of graphical "trustmark" is extremely easy to forge just by recreating the artwork. But in this case, you don't even have to do that. The seal can still be called directly off the VeriSign servers, yet it is easily modified, without recreating artwork, and without doing anything untoward with VeriSign's servers! more

Topic Interests

DNSDomain NamesCybersecurityRegistry ServicesThreat Intelligence

Recent Comments

Popular Posts

VeriSign’s New Security Seal Too Trusting?

  • Nov 12, 2003
  • Comments: 0
  • Views: 18,124