Facebook is experimenting with ways for security-conscious users to access the social network via Tor, and Alec Muffett, a software engineer for security infrastructure in the company’s London office, described the process in a note on the Protect the Graph page.
Perfect Forward Secrecy
Facebook offered an update on the state of the deployment of the STARTTLS encryption standard, which it originally wrote about in May, saying that 95 percent of its notification emails are now successfully encrypted with both Perfect Forward Secrecy and strict certificate validation.
In a study of one day’s worth of Facebook’s notification email logs, the social network found that 76 percent of unique MX host names that receive its emails support the STARTTLS encryption standard, meaning that 58 percent of its emails were successfully encrypted.
Facebook Chief Security Officer Joe Sullivan hosted reporters at Facebook’s headquarters in Menlo Park, Calif., Tuesday, where he detailed how the social network is maintaining and fine-tuning its security protocols in the wake of the continuing controversy about government surveillance.
Facebook Chief Security Officer Joe Sullivan said at the Hack in the Box HITBSecConf2013 conference in Kuala Lumpur, Malaysia, that the social network was already in the process of implementing stronger security controls before news broke of the National Security Agency’s Prism online surveillance initiative in June, IDG News Service reported.