Firefox extension to protect from wireless hacks

Researchers at Carnegie Mellon University have released an extension for Firefox 3 that can protect wireless network users from so-called "man-in-the-middle" attacks.

The software, dubbed "Perspectives", is available for download for free.

Security from A to Z

Click on the links below to find out more...

A is for Antivirus
B is for Botnets
C is for CMA
D is for DDoS
E is for Extradition
F is for Federated identity
G is for Google
H is for Hackers
I is for IM
J is for Jaschan (Sven)
K is for Kids
L is for Love Bug
M is for Microsoft
N is for Neologisms
O is for Orange
P is for Passwords
Q is for Questions
R is for Rootkits
S is for Spyware
T is for Two-factor authentication
U is for USB sticks/devices
V is for Virus variants
W is for Wi-fi
X is for OS X
Y is for You
Z is for Zero-day

Perspectives also protects against attacks that exploit a recently exposed flaw in the DNS system, which translates web addresses into numerical IP addresses, said Dave Andersen, a computer science professor at Carnegie Mellon who was an adviser on the Perspectives project.

In an attack on the DNS system, someone typing in a legitimate web address could be redirected to a malicious site without knowing it. Perspectives would pop up a warning to the web surfer that the site they are going to is suspicious.

In general, Perspectives is designed to guide users away from malicious sites. It also is designed to assure surfers when they visit sites that are safe but which Firefox warns about because the sites are not paying a third-party Certificate Authority, such as VeriSign, to authenticate the sites and instead are using "self-signed" digital certificates, also known as keys.

Signing up with a Certificate Authority can be expensive and time-consuming, so some sites prefer to do it themselves, Andersen said. If they do, Firefox penalises them by displaying an error message that says the browser is unable to verify that the site can be trusted.

The messages may mean users either avoid a legitimate site or get used to automatically accepting certificates with the warning and inadvertently trust a malicious site at some point.

Andersen said: "The fear is that the Firefox policy will force some sites to use Certificate Authorities but will make others not use any security at all."

The Perspectives software queries servers around the internet that Andersen has set up as notary-type nodes and asks them to verify the certificate they see for the website sought and to verify what certificate they have historically seen for that site. If the computers are in agreement on those questions, the surfer is sent directly to the site. If there is disagreement on those questions, the browser displays a warning to the user that the site is suspicious.

When asked how severe the problem is, Andersen said: "The average [internet] user probably wouldn't see one of these attacks in a given year. But, an unlucky user in an airport or some convention where there happened to be a bad guy [lurking on the network] would definitely be vulnerable."

Original article: Firefox extension protects against man-in-the-middle attacks from CNET News.com