Bezpe\u010dnost nen\u00ed n\u00e1hoda, je to design. Trustly pou\u017e\u00edv\u00e1 AES\u2011256, co\u017e je jako ocelov\u00e1 trubka pro va\u0161e bankovn\u00ed \u00fadaje. Kr\u00e1tce \u0159e\u010deno \u2013 data jsou zah\u00e1\u0161ena ihned po odesl\u00e1n\u00ed, a to u\u017e na cest\u011b mezi va\u0161\u00edm telefonem a serverem. Nen\u00ed to jen marketingov\u00e1 fr\u00e1ze; je to konkr\u00e9tn\u00ed protokol, kter\u00fd zaji\u0161\u0165uje, \u017ee i pokud by \u00fato\u010dn\u00edk zachytil paket, naraz\u00ed na neprolomiteln\u00fd blok. Nav\u00edc se p\u0159id\u00e1v\u00e1 TLS\u202f1.3, co\u017e je jako dvojit\u00e9 zamknut\u00ed dve\u0159\u00ed \u2013 jednou p\u0159i p\u0159enosu a podruh\u00e9 p\u0159i autentizaci.<\/p>\n
Pod\u00edvejme se na tokenizaci. M\u00edsto ulo\u017een\u00ed samotn\u00e9ho \u010d\u00edsla \u00fa\u010dtu Trustly generuje jedine\u010dn\u00fd token, kter\u00fd nem\u00e1 \u017e\u00e1dn\u00fd vztah k p\u016fvodn\u00edmu \u010d\u00edslu. Proto, kdy\u017e hacke\u0159i prolom\u00ed datab\u00e1zi, z\u00edskaj\u00ed jen nesmysln\u00e9 \u0159et\u011bzce. To je jako kdy\u017e v\u00e1m n\u011bkdo ukradne kl\u00ed\u010d od sk\u0159\u00edn\u011b, ale z\u00e1mek je nastaven na \u00fapln\u011b jin\u00e9 \u010d\u00edslo. Prakticky neexistuje cesta zp\u011bt k va\u0161emu \u00fa\u010dtu. A to je hlavn\u00ed d\u016fvod, pro\u010d je tokenizace \u0161pi\u010dkou v ochran\u011b citliv\u00fdch informac\u00ed.<\/p>\n
Zapome\u0148te na jednor\u00e1zov\u00e1 hesla, kter\u00e1 se daj\u00ed hacknout za p\u00e1r sekund. Trustly zav\u00e1d\u00ed MFA s push notifikacemi a biometrick\u00fdmi faktory. Pokud se n\u011bkdo pokus\u00ed p\u0159ihl\u00e1sit z nezn\u00e1m\u00e9ho za\u0159\u00edzen\u00ed, dostanete okam\u017eit\u00fd v\u00fdstra\u017en\u00fd sign\u00e1l. P\u0159irovn\u00e1n\u00ed? Jako m\u00edt dva z\u00e1mky na dve\u0159\u00edch a po\u017eadovat otisk prstu i kl\u00ed\u010d. To v\u00fdrazn\u011b sni\u017euje \u0161anci, \u017ee \u00fato\u010dn\u00edk projde skrz.<\/p>\n
Nemyslete si, \u017ee jednor\u00e1zov\u00e1 kontrola sta\u010d\u00ed. Trustly organizuje kvart\u00e1ln\u00ed hackathony, kde se odborn\u00edci sna\u017e\u00ed prolomit vlastn\u00ed syst\u00e9my. V\u00fdsledky jsou analyzov\u00e1ny, slabiny opraveny, a cel\u00fd proces se opakuje. V\u00fdsledn\u00fd efekt je dynamick\u00e1 obrana, kter\u00e1 se neust\u00e1le zlep\u0161uje. Bez tohoto cyklu by i ta nejlep\u0161\u00ed technologie rychle zastarala.<\/p>\n
Zero\u2011knowledge je jako tajn\u00fd recept, kter\u00fd zn\u00e1te jen vy. Syst\u00e9m nedisponuje \u017e\u00e1dn\u00fdmi prost\u00fdmi daty o transakc\u00edch, kter\u00e9 by mohly b\u00fdt zneu\u017eity. V\u0161e prob\u00edh\u00e1 na \u0161ifrovan\u00fdch hash\u00edch, a tak i v\u00fdvoj\u00e1\u0159i nemus\u00ed m\u00edt p\u0159\u00edstup k surov\u00fdm \u010d\u00edsl\u016fm. To znamen\u00e1 men\u0161\u00ed povrch pro potenci\u00e1ln\u00ed \u00fatoky. A kdy\u017e se spoj\u00ed s tokenizac\u00ed, vznik\u00e1 neproniknuteln\u00fd \u0161t\u00edt.<\/p>\n
Rozhodn\u011bte se pro dvoufaktorov\u00e9 ov\u011b\u0159en\u00ed na v\u0161ech sv\u00fdch \u00fa\u010dtech, pou\u017eijte unik\u00e1tn\u00ed hesla a pravideln\u011b kontrolujte historii transakc\u00ed. A hlavn\u011b \u2013 nechte Trustly ud\u011blat t\u011b\u017ekou pr\u00e1ci. P\u0159idejte se k bezpe\u010dnosti, kter\u00e1 u\u017e funguje: trustlysazeni.com<\/a>. Vyu\u017eijte mo\u017enost okam\u017eit\u00e9ho upozorn\u011bn\u00ed na podez\u0159el\u00e9 aktivity a zaka\u017ete p\u0159\u00edstup ze v\u0161ech nezn\u00e1m\u00fdch za\u0159\u00edzen\u00ed. Vtom je kl\u00ed\u010d \u2013 bu\u010fte v prvn\u00ed \u0159ad\u011b a reagujte okam\u017eit\u011b.<\/p>\n","protected":false},"excerpt":{"rendered":" End-to-end \u0161ifrov\u00e1n\u00ed Bezpe\u010dnost nen\u00ed n\u00e1hoda, je to design. Trustly pou\u017e\u00edv\u00e1 AES\u2011256, co\u017e je jako ocelov\u00e1 trubka pro va\u0161e bankovn\u00ed \u00fadaje. Kr\u00e1tce \u0159e\u010deno \u2013 data jsou zah\u00e1\u0161ena ihned po odesl\u00e1n\u00ed, a to u\u017e na cest\u011b mezi va\u0161\u00edm telefonem a serverem. Nen\u00ed to jen marketingov\u00e1 fr\u00e1ze; je to konkr\u00e9tn\u00ed protokol, kter\u00fd zaji\u0161\u0165uje, \u017ee i pokud by \u00fato\u010dn\u00edk…
V\u00edce<\/a><\/p>\n","protected":false},"author":86,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[],"tags":[],"class_list":["post-71745","post","type-post","status-publish","format-standard","hentry"],"_links":{"self":[{"href":"https:\/\/www.argoti.cz\/index.php?rest_route=\/wp\/v2\/posts\/71745","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.argoti.cz\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.argoti.cz\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.argoti.cz\/index.php?rest_route=\/wp\/v2\/users\/86"}],"replies":[{"embeddable":true,"href":"https:\/\/www.argoti.cz\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=71745"}],"version-history":[{"count":0,"href":"https:\/\/www.argoti.cz\/index.php?rest_route=\/wp\/v2\/posts\/71745\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.argoti.cz\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=71745"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.argoti.cz\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=71745"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.argoti.cz\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=71745"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}