Security Basics mailing list archives

Previous By Date Next
Previous By Thread Next

Secure chat / secure discussion boards

From: <pascal () jpe be>
Date: Thu, 1 Sep 2005 16:43:19 +0200
Hi,
In Belgium there is an electronic identification card (called eID), Belgium is one of the first in the world to make an identification card also electronically. Now it is for the first time possible to make a chatroom safe!!
In Belgium, there is now developed a new technology by private people that makes the Internet "safe" for the first time in the world. In combination with the eID, it is possible to make a secure chatbox; and also secure discussion boards, etc... The first to use this new technology to make a real safe chatbox is http://www.seniorennet.be/ . The safe chatbox is at http://www.seniorennet.be/Pages/Vrije_tijd/chatbox.php The secure forum (an adjusted version of PHPBB) can you find at http://www.seniorennet.be/forum_eid/
The advantages: a totally secure chat. If you come into the chat or discussion board, you need your eID. With this, you are checked and then you can go inside. This makes it possible to finally block someone from a chatroom. No more using another nick, changing IP address, cloacking,... If the chatroom blocks someone, it is for the first time a REAL block. This makes it also possible to block bad people from chatrooms, for example away from children. 

This is secure because:
The chip of the eID cannot been hacked (until now), and is also used for creditcards (it is not the megnetic tape stripe, but a chip). The information is readed in on the computer of the person, encrypted and then sended to the website. In combination of a dozen security codes it is almost impossible to hack the application and send other info than on the chip. The information is sended via SSL (https) and is extra encrypted. Also extra checks do the rest to check the IP, one use unique codes (to prevent sniffing the network and re-use the information), time dependent codes, hashing, timestamps, referrer, etc... Also extra checks for the chip number and cardnumber are done.
This makes that the application is secure to use for the user. This makes it also not vulnerable for phishing, because they cannot do anything with the information; they need the chip.
For extra, there is a database with cardnumbers and chipnumbers of stolen and lost cards; to prevent that stolen cards are used. In addition, it is possible in the future, that potentional dangerous people are blocked in advance by the police (for example: blocking a pedophile for children chatrooms).
The application is very user friendly. The person only needs a cardreader (cost: about 15 euro/20 dollar); nothing more. No software because it is a certified plugin that is used. It has no cost for every login, only once a cardreader. 
It is accessible and easy.

An extra advantage is: NO MORE PASSWORDS!!
The new application makes it possible that no more passwords are needed! Users don't have to remember the password and hackers can't hack them because you need no more passwords. Use the eID and that is your passport for every application. Because of the secure possibilities and because every website can use a unique algorithm to implement the eID as a password, no site can use his information to hack another website. And also, because of the encryption and security codes, sniffering the computers networkcommunication is useless and passwords cannot be hacked. 

The possibilities:
It can be implemented in all chatrooms and discussion boards; but it can also used for online banking, auction sites (eBay), online stores,... The sky is the limit! Implementing the new technology for the website itself is also not expensive or difficult.
This new technology is the first time used in the world. Over 400 companies in the world are working for the eID, but the first, SeniorenNet.be, has developed an application for the Internet: to make the internet safe! According to Microsoft, they are also busy to make something like this, but are not ready yet. This application IS READY to use!
This technology is developed by a 20 year old student at the University of Antwerp: Pascal VYNCKE. He made in the past other things (and a standard) to improve the accessibility of the Internet; in particular for eldery people. The new technology is presented to the international press at August 28th 2005. 

Best regards,
Pascal Vyncke
www.SeniorenNet.be
Previous By Date Next
Previous By Thread Next

Current thread: