Google Chrome Getting Extra Security To Prevent SAML Attacks

-

Google today announced a new change that is coming to Chrome which looks to add an additional level of security to proceedings. However, this is not going to be something that most individual users will encounter or even need to be aware of. This is due to the change relating to the use of Security Assertion Markup Language (SAML). This is largely considered to be the standard protocol used for third-party authentication pages and is therefore likely to be used by a number of businesses and organizations that have a sign-in process as part of gaining access to a site. It is in these instances where the change will primarily be seen and why the announcement came through the company's G Suite blog, in contrast to a dedicated Chrome announcement – in spite of this being a Chrome-wide change.

Starting from May 7 those signing in to a site which uses SAML as an authentication process will be redirected to a more typical 'Google login'-looking page to verify who they are once more. The page itself will not actually require the user to login to their Google account, but confirm the account that is being used at the time is the correct Google account. Google states this is a necessary feature noting how it is possible for attackers to make use of Google accounts they control to be signed in to when clicking links, such as with a phishing campaign. With this new measure in place the logging in process via SAML will announce the user's Google account to the user and therefore any inconsistencies will be noticeable before an issue arises.

Google understands that this might seem like a burdensome task for businesses, organisations, and their associates, and therefore Google has confirmed the use of the extra level of security will only need to be verified once per account (person), per device. Likewise, business and organizations will have the option of disabling the feature altogether if the sites accessed using SAML are trusted enough to begin with. In addition, those businesses and organizations which primarily use Chromebooks and Chrome OS in general will not be affected, as while this change is occurring to Chrome as a whole, it is not to Chrome OS – due to the more unique nature of the operating system. As mentioned, this will also not affect individual users.

The post Google Chrome Getting Extra Security To Prevent SAML Attacks appeared first on AndroidHeadlines.com |.


#Google #Android #Smartphones #OS #News @ndrdnws #ndrdnws #AndroidNews

Popular Posts:

Do more from your inbox with Gmail Add-ons

-
Image
For many of us, email is mission control—the prompt to generate an invoice, prepare a presentation or follow up on a sales opportunity. With so many to-dos, imagine if you could complete these tasks directly from your inbox without interrupting your workflow. We believe email can do more, which is why we're launching Gmail Add-ons, a new way to work with your favorite business apps directly in Gmail. Gmail Add-ons, built for your workflows Rather than toggling between your inbox and other apps, use add-ons to complete actions right from Gmail. With Gmail Add-ons, your inbox can contextually surface your go-to app based on messages you receive to help you get things done faster. And because add-ons work the same across web and Android, you only need to install them once to access them on all of your devices. Click the settings wheel on the top right of your inbox and then "Get add-ons" to get started. We made Gmail Add-ons available in developer p
Continue Reading....

Apple is postponing new iOS features in favor of reliability and performance

-
Image
Apple has decided to postpone new features in iOS in favor of improving the reliability and performance of the operating system, as according to a report by Axios. According to the report, Craig Federighi, Senior Vice President, Software Engineering, announced the revised plan to employees at a meeting earlier this month. This pushes features like refresh of the homescreen and in-car user interface, improvements to core apps like Mail and camera experience to 2019. What we will get this year is improvements to AR, digital health and parental controls. Apart from that, the OS will largely feature improvements to performance and user experience. We have seen Apple do this with macOS in the past, where they dedicate one entire update cycle to just refining the OS and make existing features work better. However, we have never quite seen Apple do that on iOS. This is largely due to the hyper competitive nature of the mobile market where competition and customer demands push companies t
Continue Reading....

This is Samsung’s official spec sheet for the Galaxy S8 and S8+

-
Image
The Galaxy S8 and Galaxy S8+ have finally been unveiled, and our hands-on experience with the devices is available for everyone to see. Everyone has a pretty good idea about the devices’ specifications at this point, but for those wanting to see it, we have added the official spec sheet offered by Samsung below. Remember, detailed specs are also available from our devices page . Oh, and don’t remember to take a look at what we think about Samsung’s new flagships .
Continue Reading....

[Bonus Round] Meteorfall: Journeys, Out There Chronicles - Ep. 2, Four Last Things, Rocket Sling, Slime Pizza, Nindash: Skull Valley, and Ragnarok Rush

-
Image
Welcome to the latest entry in our Bonus Round series, wherein we tell you all about the new Android games of the day that we couldn't get to during our regular news rounds. Consider this a quick update for the dedicated gamers who can't wait for our bi-weekly roundups, and don't want to wade through a whole day's worth of news just to get their pixelated fix. Today we've got a card-based roguelike, the next chapter in Out There Chronicles, a renaissance-era point and click adventure game, a space-themed indie arcade game, a unique puzzle platformer, a ninja-themed defense game, and a Ragnarok licensed hero collector. Without further ado: Meteorfall: Journeys Meteorfall: Journeys is a card-based roguelike with an easy to understand deck-building combat system. As you would expect of any roguelike, each game is procedurally generated. This means every round you play is unique. And best of all, this is a premium game with a singular upfront price. That way you
Continue Reading....

Jurassic VR - Google Cardboard

-
Image
Jurassic VR - Google Cardboard Rabbit Mountain Adventure VERSION/BUILD: 1.6.4 UPDATED: 28 January 2018 REQUIRES ANDROID: 4.4 and up FILE SIZE: 66.4 M Walking with the dinosaurs! Roam the earth and experience prehistoric times in Virtual Reality. Celebrating 4+ million downloads! Have you ever wanted to meet Dinosaurs in real life? Experience the ultimate dino ride with Jurassic VR - Google Cardboard Freely roam the open environment en poke round the beautiful cedar evergreen trees to see huge dinos come to life. You can go to any point and see the sites and dinos in VR. Players get to experience the site at their own pace and the mission is simple; enjoy and discover the world of prehistoric dinosaurs before the modern world cities were built. It's like a virtual reality attraction traveling you back to prehistoric times! The ultimate experience There is no need anymore to become an archaeologist and dig the earth
Continue Reading....