Spyware and how to protect against it
Danger of spyware
Presently there is several spyware in circulation. Integrating in Internet Explorer as Browser-Helper-Object (BHO) spyware can spy out userdata and passwords even when the connection is encrypted. As spyware attacks the Browser implicitly all the data entered by a regular user on a web page could be accessible for a third person.
TRANSEC - The Solution
Micromata developed TRANSEC in connection with the POLYAS online voting system as
an inputmodule for webbrowsers, to prevent spyware attacks. The entire input field is generated on the server. The only interaction between the user and the server is the transmission of pictures and the coordinates of mouse-clicks.
http://www.micromata.de/transec_en/|color=green|arrow=green}Transec is self-explanatory and can be easily used. PIN- and TAN-inputs are visible only for the user.
TRANSEC a virtual keyboard that can prevent spyware or troyan attacks.
The user enters his/her data using a virtuall keyboard instead of the common keyboard.
Though Interception of input data is almost impossible.
If at all, only by intercepting all mouseclicks plus each single referred picture an agressor could be succesfull, because the virtual keybourd is randomly rotated after each entry.
This inputmodule can be easily integrated as JSP-taglib in each JSP-Software. It may need minimal adaption (colors etc.).
A small step for your company. But a giant step for security in the internet!