IETF 101 London

About IETF The IETF is the premier internet standards body developing open standards through open processes. While most IETF work takes place online, meetings provide in-person opportunities to advance work. My last IETF meeting was 48th in Pittsburgh in summer … Read More

What is Consent Receipt?

It’s midnight. Rushed by a deadline you must buy a rare gadget online and the only place where it is in stock is a web store you never used before. As is the common practice, you must create a user … Read More

Ubisecure SSO 8.2.24 has been released.

Ubisecure SSO 8.2.24 has been released. This version contains several improvements and corrections for Finnish Mobile ID (Mobile Certificate / Mobiilivarmenne) Authentication Method. Please check Ubisecure SSO 8.2 release notes and change logs for more information (links below) https://developer.ubisecure.com/docs/display/IDS82/SSO+Release+Notes https://developer.ubisecure.com/docs/display/IDS82/SSO+Change+Log Please contact … Read More

Common Sense Privacy

Here I am, writing down my personal information to an online service that I heard from my friend. I’ve gotten familiar with the brand new online service (year 2000) and products they sell, and as it happens, I do need … Read More

Vulnerability Note VU#475445

Reference: Vulnerability Note VU#475445 https://www.kb.cert.org/vuls/id/475445 System/application: Ubisecure SAML SP for .NET Date/Time Resolved: March 1st, 2018 Status: Resolved Issue Accouncement: It was announced to the public that multiple SAML libraries may allow authentication bypass via incorrect XML canonicalization and DOM … Read More