HTTPS security is being made available to Facebook users slowly, so though it might not be available to you now, it should appear soon. The option will exist as part of the advanced security features on Facebook.
Facebook announced that it is now offering users the ability to use encryption to protect their accounts from being compromised when they are interacting with the site, something security experts have been seeking for a while. The site currently uses HTTPS (Hypertext Transfer Protocol Secure) when users log in with their passwords, but now everything a user does on the site will be encrypted if he turns the feature on, the company said in a blog post.
Enabling full-session HTTPS eliminates the ability for attackers to use tools like the Firefox plug-in called Firesheep to snoop on communications between a person's computer and the site's server over Wi-Fi. "Starting today we'll provide you with the ability to experience Facebook entirely over HTTPS. You should consider enabling this option if you frequently use Facebook from public Internet access points found at coffee shops, airports, libraries, or schools," the post says. "The option will exist as part of our advanced security features, which you can find in the Account Security section of the Account Settings page."
Using HTTPS may mean that some pages will take a little bit longer to load, and some third-party applications aren't currently supported, the company said. The option is rolling out over the next few weeks. "We hope to offer HTTPS as a default whenever you are using Facebook sometime in the future," the post says.
"Every user's Facebook page is unique and it's been complex pulling together all the different parts," said Facebook Chief Security Officer Joe Sullivan when asked what the time frame is to making HTTPS the default setting. "It's an interesting technical challenge for the company."
Here's how you can secure your Facebook account.
Log in to Facebook and click Account in the top right corner of the page.
• Select Account Settings and scroll down to Account Security.
• Click Change and check the box next to Secure Browsing.
• You can also view all account activity, so check back regularly to see if someone is accessing your account without your permission.
Source : - CNET
Facebook announced that it is now offering users the ability to use encryption to protect their accounts from being compromised when they are interacting with the site, something security experts have been seeking for a while. The site currently uses HTTPS (Hypertext Transfer Protocol Secure) when users log in with their passwords, but now everything a user does on the site will be encrypted if he turns the feature on, the company said in a blog post.
Enabling full-session HTTPS eliminates the ability for attackers to use tools like the Firefox plug-in called Firesheep to snoop on communications between a person's computer and the site's server over Wi-Fi. "Starting today we'll provide you with the ability to experience Facebook entirely over HTTPS. You should consider enabling this option if you frequently use Facebook from public Internet access points found at coffee shops, airports, libraries, or schools," the post says. "The option will exist as part of our advanced security features, which you can find in the Account Security section of the Account Settings page."
"Every user's Facebook page is unique and it's been complex pulling together all the different parts," said Facebook Chief Security Officer Joe Sullivan when asked what the time frame is to making HTTPS the default setting. "It's an interesting technical challenge for the company."
Here's how you can secure your Facebook account.
Log in to Facebook and click Account in the top right corner of the page.
• Select Account Settings and scroll down to Account Security.
• Click Change and check the box next to Secure Browsing.
• You can also view all account activity, so check back regularly to see if someone is accessing your account without your permission.
Source : - CNET
No comments:
Post a Comment