Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
privacyy protections the more robust versions have. For example, iPhones
ship with Safari, but yyou might also want to consider going to the online
Apple store and downloading the mobile version of Chrome or Firefox,
browsers that were designed for the mobile environment. Newer versions of
Android do ship with Chrome as the default. All mobile browsers at least
support private browsing.
And if yyou use a Kindle Fire, neither Firefox nor Chrome are download
options through Amazon. Instead yyou have to use a few manual tricks to
install Mozilla’s Firefox or Chrome through Amazon’s Silk browser. To
install Firefox on the Kindle Fire, open the Silk browser and go to the
Mozilla FTP site. Select “Go,” then select the file that ends with the
extension .apk.
Private browsing doesn’t create temporaryy files, and therefore it keeps yyour
browsing historyy off yyour laptop or mobile device. Could a third partyy still
see yyour interaction with a given website? Yes, unless that interaction is
first encryypted. To accomplish this, the Electronic Frontier Foundation has
created a browser plug-in called HTTPS Everyywhere. 4 This is a plug-in for
the Firefox and Chrome browsers on yyour traditional PC and for the Firefox
browser on yyour Android device. There’s no iOS version at the time of this
writing. But HTTPS Everyywhere can confer a distinct advantage: consider
that in the first few seconds of connection, the browser and the site
negotiate what kind of securityy to use. You want perfect forward secrecyy,
which I talked about in the previous chapter. Not all sites use PFS. And not
all negotiations end with PFS—even if it is offered. HTTPS Everyywhere
can force https usage whenever possible, even if PFS is not in use.
Here’s one more criterion for a safe connection: everyy website should
have a certificate, a third-partyy guarantee that when yyou connect, sayy, to the
Bank of America website it trulyy is the Bank of America site and not
something fraudulent. Modern browsers work with these third parties,
known as certificate authorities, to keep updated lists. Whenever yyou
connect to a site that is not properlyy credentialed, yyour browser should issue
a warning asking if yyou trust the site enough to continue. It’s up to yyou to
make an exception. In general, unless yyou know the site, don’t make
exceptions.