Password Security for easy browsing new version is coming

I have mentioned on Nov. 25, 2005 that I have found problem after using this program as user. This has bothered me ever since. Therefore I have started to work for the new version so that email addresses can be used as login with those signs and greater length.

Now it is almost done and entering the final stage.

USC Password Security Storage System Light new version 2.0 will be released soon.

Due to encryption application, this new version will not access the data of version 1.0 or 1.1. If you have bought the older version, there will be a tool to move the data from version 1.0/1.1 to version 2.0.

For those who do no know about this program, here is a summary:

This program is one of the product in One Dollar Software House of www.uscforesight.com.

It is designed for users to keep the online accounts with website, login name and password.

For security, we have to use strong passwords and may have to change them periodically. So it may not be easy to remember.

With this program, all such sensitive data are kept in special encrypted form with no cracking tool available.

In order for users to browse easily, the version 1.1 had a function INTERNET for copying the login name and password to the clipboard with a click and press Ctrl-V (or edit-paste) for the required fields. If one uses IE, then clicking the website will automatically start the IE.

Just mentioned in last blog, I am using it myself daily for finding any upgrading or adjustments with a user perspective. Of course, I welcome any comment from all users.

Developer vs User

As mentioned earlier, I am using the USC Password Security Storage System Light Version 1.1 myself for daily Internet browsing.

Although this program is made by me, yet there is a difference between developing and using software. No matter how many tests had done, they were carried out with a developer's concept. As user, I can find much more about the other side.

The login has been fixed for alphabet and numeric. Recently, I have some accounts that took the email as login. For all email address, there is 'at' sign and the total length is more than 16.

Therefore, I am going to build the next version to meet this case. For those who have bought the program, there will be a free upgrade and special arrangement to move the previous data to the new format.

I believe that we shall face various changes with the Internet. So keeping on as user is an important thing for a developer.

If you get the free trial from download.com, I am glad to have your comment.

Who will kill the Internet, those famous websites.

I always say that being famous and trustful, one must not play tricks, not to say bad things.

EasyWatch, part of Stelios Haji-Ioannou's easyGroup empire, is accused by Richemont (owner of Cartier brand) to use Portofino to confuse buyers. Portofino is also a trademark of some products of Richemont. Of course, there are argument about the name Portofino.

But it is reported that EasyWatch has recently changed the Portofino Sky to Imperia Sky and Portofino Bubbles to Imperia Bubbles. If there is nothing wrong, why EasyWatch has to give up the Portofino?

Check this news from out-law.com: Stelios accused of selling fake watches

Match.com is the famous online matchmaker. However, some customers filed to court about false romantic emails made by employees of Match.com to entice them to renew their subscriptions.

Check this news from out-law.com: Match.com accused of faking romance

If such website would do something like that, all netizen would not trust any website in the future. Although we enjoy the freedom of online, yet there must be something to stop these hypocrites. They are even worse than any hackers.

A new column about website in Internet

There are many, perhaps too many, information about website development.

If someone who is new to this field or has not follow the Internet development earlier, it is really difficult to catch up or to organize any planning.

Although there are many consultants, my company has this service too, yet it is not easy to choose or decide to look for one without some knowledge.

Therefore, I decided to build a new column offering knowledge, reference and information so that visitors can have the most important elements without signing up or paying anything.

As most know, the Internet has flattened the difference between large corporations and SMEs. This is true for the appearance online only except in the early days of ebusiness. In fact, the later to join the online world, the harder one would face for survival, not to say success.

However, in business, there is always exception. We cannot rule out that someone with the right idea at the right time can win over well-established dominant giants. For many, the target may be a moderate reward to establish a foothold online only.

Going online is almost a necessity. Keeping online is part of the business now and in the future.

Why login is shown with all numkey in USC Password Security Storage System ?

For those who are going to try the trial version of USC Password Security Storage System Light Version 1.1, one thing I need to clarify.

The login and password are encrypted. But when user want to check the data, even a wrong numkey is input, the login comes out correctly. That is not a bug; that is what it should be.

Remember that most logins are either our names or abbreviation of them. It is easy to find which one is right. So if someone uses this program in user's PC and tries with several numkey, he/she can judge from the login whether the password is the right one. In other words, if login and password are encrypted together, we are risking against the luck of the bad guy.

With this arrangement, there is no way to find which password is correct, unless the password is too weak.

Then there is another question. Can one input password with tens to hundred trials? If any bank or any password-protected websites would allow such operations, then we do not need to protect our password because our accounts are easily accessed by any hackers.

As always advised, change the password once every six months. Of course, it is better to use a program to encrypt the password to avoid leaking by any unexpected way.

Why free upgrade is needed?

Some years ago, when Microsoft Windows 95 replaced Windows 3.1, some friends complaint about such change, saying they had to learn everything ago.

Every program has deflects and usually cannot be found with thousands tests. Requirements are changing continuously and no matter how perfect a program were, it cannot satisfy the demand sometime after.

Just like the small programs that I produced for selling in the One Dollar Software House. In fact I have tested them and asked some people to test too. Before releasing, there has been some adjustment upon suggestions.

Take the example of the recently upgraded USC Password Security Storage System Light Version 1.1. With the new function for users to browse online so that with a click for copying to and paste from clipboard with Ctrl-V for login and password, repeat testing gave satisfactory result.

In order to investigate further, I have decided to use it daily myself. After a few days, I found that there would be something to fine-tune for better performance. Of course, as experience told me, it will be better to wait and continue the test for some more days so that I can see whether another upgrading should be done.

No matter the size of software house, no matter how many developers involved, the result is the same. You need to have new versions either to correct some bugs or to add functions for better performance etc.

I just feel lucky that those small programs are supplied in electronic formats so that any free upgrade would not have to waste any materials.

Will someone go to Google and search for Google?

Recently, I decided to have a section about Internet in my site, www.uscforesight.com. This is for those who need concise information about ebusiness.

When checking the search activitities for the article "Review of onlines search Nov 2005", according to the statistics for Sep. 2005, there are 33 millions search for Google and 17 millions search for Yahoo.

Remember that Google and Yahoo together occupy over 60% of online search. That means it is possible that many have searched Google in Google and Yahoo in Yahoo.

Will anyone forget the domain of Google and Yahoo? When we do not know about the website, we simple type www. then the name and follow by .com. This is the usual practice. Except for some less known site that we may have to search the name instead.

We may have doubt about the statistic. But I have checked again and believe that even the figure might not be accurate and we base on 50%, the total is still 15 millions and 8.5 millions.

This is another topic that may be great to research in the future about such behavior.

Online investors must protect their passwords as part of their investment

There is a report: Hackers emptying online accounts (refer: http://money.cnn.com/2005/11/07/technology/personaltech/hackers/index.htm

It said that about 20 million USD has been stolen from online brokerage accounts in 2004 due to hackers getting the passwords from investors' home PC. With over 80% users will keep their personal data including password in the home PC, this type of crime will increase.

With a few dollars, even as low as USD one in my One Dollar Software House, can offer certain level of protection. In view of the present situation, I do believe that my custom produced version is a necessity, especially when users are handling their investment online.

As everyone knows, every encryption can be cracked and every program can be re-engineered. By employing a single strong protection is not safe today. We must have a well-structured arrangement to avoid such kind of loss. Without proper protection, investment would be easily turned into total loss.

Those investors who suffered loss in this case may not be hurt seriously, as they might not put everything in one online investment account. But if we count on the cost of providing protection with the stolen amount of money, it seems that they have made a very wrong decision or failed to take care of their sensitive information until it was too late.

There is something I learnt that if you lost for the first time, then it should not be your fault. But if the same thing happened again, then you should blame no one but yourself. That means before going on the online investment, investors must do something right to avoid this sad thing to happen again.

October has the highest record of virus increase.

It is astonishing to find that there were total of 112,142 viruses last month, with the highest increase number of 1,685 over September 2005 according to Sophos. Check: http://www.sophos.com/pressoffice/news/articles/2005/11/pr_uk_toptenoct05.html.

Throughout the month, I have not any problem with email or browsing websites. Am I lucky?

In fact, for the previous months, I had been troubled by the 3721 malware problem. Although it was not a virus, yet it disturbed my daily work, making every operation difficult to perform.

During that period, all my friends did not have same incidence and seeking advice from others was hard because it seemed that I was the only one that hurt.The burden was to search for suitable solution. It took many steps and many hours across almost two months before getting it off.

I cannot recall exactly how my computers (PC and notebook) were infected. This is an example of how fragile we are. Now I have Adaware SE and AntiSpyware with all my computers. Though the 3721 problem had been solved, I still scan the computer with either one or both in sequence occasionally and maintain the same practice of watching the performance of the computer.

One thing is good about virus or adware. They force us to take extra precaution with our computers and refresh our good practice that may drop after a period of peaceful time.

As long as we need to get online, even if some bad guys have been caught, we can never be safe. Last month is lucky for me and I have to remind myself that luck may not be with me for this month or the next.