Traditional data breaches, Kaminsky points out, are just beginning to achieve that sort of transparency.
Kaminsky's revelation meant that the trust users place in their browsers was an illusion.
"Usually when a patch comes out, it's not long before people have an exploit, " Kaminsky says.
Dr Soghoian got the idea for this approach from Dan Kaminsky, a security researcher.
Still, Kaminsky, a researcher for security firm IOActive, is ambivalent about the potential for expanded disclosure requirements.
N00ter, a tool that Kaminsky plans to release in coming weeks, checks for those marginal traffic cheats.
FORBES: Researcher Announces N00ter, A Tool For Catching Net Neutrality Cheats
Kaminsky says that may mean a variant of DanKam could someday be used as a health assessment tool.
FORBES: Security Guru Launches iPhone App To Hack Colorblindness
Like Ulevitch, Kaminsky had found that DNS could do more than blindly send users to their online destinations.
"This is big, this is serious, " Ulevitch remembers thinking as Kaminsky outlined how easily he could derail the Web.
Because his servers had long ago added an extra security identifier to their DNS requests, OpenDNS circumvented Kaminsky's hack.
Kaminsky, a researcher with security firm IOactive, plays down the prospect that his bug is already being widely exploited by cybercriminals.
Then the jackpot: In July Kaminsky called his former drinking buddy and invited him to a secret meeting of DNS experts in Seattle.
Kaminsky's bug, meanwhile, sent tech companies such as Cisco, Microsoft and Sun Microsystems scrambling to release fixes and Internet service providers racing to implement them.
So which ISPs has Kaminsky caught in the act with N00ter?
FORBES: Researcher Announces N00ter, A Tool For Catching Net Neutrality Cheats
Phyllis Kaminsky, former Press Officerfor the White House National Security Council.
In fact, Kaminsky claims he has nothing against ISPs that do want to throttle bandwidth to certain sites, nor does he support or oppose network neutrality.
FORBES: Researcher Announces N00ter, A Tool For Catching Net Neutrality Cheats
The trick could also be used to direct users to sites that install malicious software on their computers and could even intercept e-mail correspondence, Kaminsky says.
In 2008, security researcher Dan Kaminsky discovered and helped develop a patch for one of the most fundamental flaws ever found in the infrastructure of the Internet.
FORBES: Security Guru Launches iPhone App To Hack Colorblindness
Kaminsky, to his credit, has been careful to guard the details of the security flaw, though he's worked closely with software vendors since he discovered it in March.
Seven years later Kaminsky did Ulevitch a less intentional favor.
At the same time, Kaminsky says, companies need to provide more information about their security issues--if not to potential victims of identity theft, than to the security industry itself.
In July, security researcher Dan Kaminsky revealed a flaw in the Web's domain name system, or DNS, the protocol that connects a Web site's name with its physical location on the Internet.
About 14 months of on-and-off development later, Kaminsky on Wednesday launched DanKam, an augmented reality app for iPhone and Android that aims to offer a quick fix for situations where colorblindness causes ambiguities.
FORBES: Security Guru Launches iPhone App To Hack Colorblindness
Gary Kaminsky, who travels 100, 000 miles a year domestically, says he's gotten Precheck screening on about 80% of his trips so far out of Los Angeles International Airport, his home base, on AMR Corp.
Mobile app development is new territory for Kaminsky.
FORBES: Security Guru Launches iPhone App To Hack Colorblindness
The country has been split between politicians who have strong EU ambitions, and those who lean more towards Russia - with ECR group leader Michal Kaminsky saying that the EU should not let Ukraine "drift to the east".
Dan Kaminsky, the security researcher who found a major flaw in the domain name system in 2008 and recently founded a new company devoted to securing Web applications, says that a rickety session management system combined with a record number of users led to the tangled logins.
FORBES: AT&T's iPhone Preorder Security Mayhem Likely Caused By 'Session Exhaustion'
应用推荐