Is Google's Android Insecure?
May 18, 2011, 23:09 (5 Talkback[s])
WEBINAR: On-demand Event
Replace Oracle with the NoSQL Engagement Database: Why and how leading companies are making the switch REGISTER >
"The underlying security issue is not a new idea or technique.
Josh Daymont, principal at security firm Securisea noted that what
the Ulm University researchers found is a case of insecurely
transmitted authentication cookies.
"This is a very old and well understood problem," Daymont said.
"The most interesting aspect of this finding is not the technical
details of the weakness, but more so that it was around for so long
without anyone noticing until now."