The dynamic development of Internet appliances and the necessity of managing multiple devices complicate even further the problem of web accessibility making it even more urgent. The modern solutions for these problems are based on content selection. By specifying different variants of content or by determining an alternative behaviour, it is able to adapt to many different devices, conforming to its parameters.

 A system which can express the device capacities and user preferences is the Composite Capabilities/Preferences Profile or abbreviated CC/PP. Using the Composite Capabilities/Preferences Profile, the users that have special needs and preference or disability-related need can clarify that even though their browser handles millions of colours, they personally can only distinguish certain colours. Or, perhaps the user navigates using especially devices as a keyboard or stylus due to specific disabilities.

These results are achieved by identifying the user agents to scripting languages and servers, with the help of special features which are integrated in Web document languages. One of this is the on-the-fly content presentation and selection which uses scripting languages and is based on the user agent detection. Also in the HTML format the link and object elements dispose of functions which define alternative behaviours. The SMIL format has a multimedia language used for audio and visual content. This format has also a switch element which defines different alternatives that can be chosen and used, for choosing the necessary content, taking in consideration the needs and preferences of the user. Also CSS disposes of Media Queries, a tool used for selecting the necessary style sheets. And finally the HTTP generally defines the Server-driven content negotiation.

The first thing that must be done, after enabling P3P on your site, would be to check it, to ensure that this implementation is correct. W3C’s P3P Validator is an excellent tool for doing this. Used with at least one P3P user agent, it’s the best way a developer is able to test a P3P site.

The P3P Validator is used for checking the syntactic correctness and the proper placement of the P3P files on your web-server. In the case that the Validator reports any errors, you must read them carefully and solve them one at a time until you get no errors. Also, you should check the list of the known P3P validator bugs and see if there are some of them that may be applied to your site. If the server is configured to send P3P headers, you have to make sure that those headers are really being emitted. The validator report will contain the information whether are the P3P headers received from your site.

After validating the site, you must check how it works with a P3P user agent. Of course, it would be better if there would be done some tests on all the available user agents that the visitors of the web-site might be using. The most used agents are Microsoft’s Internet Explorer, Netscape and the AT&T Privacy Bird. You must check whether all the clients are able to produce a human readable report about your P3P server, and if the reports correspond to your privacy policy. If you have encoded your policy in XML, this would be a good way to check for errors. Also, after making changes to your policy, it would be the best to clean the browser’s cache, in order to always get the updated information.

Once with the very quick development of Internet and information-sharing mechanisms that use it, the flow of information is becoming harder and harder to secure and to control. So, nowadays the skills of controlling and securing the access to information have a key-role in the overall development of the Internet. This book is oriented towards all kinds of people that work with Internet, starting with Web masters, Web managers and ending with Web designers. It will teach you to build secure sites by writing secure Java applets and CGI scripts, using network-protection software, such as firewalls and use cryptography for protecting the data on the site.

Every possible area of expertise is thoroughly explained in the book by an expert. Three security experts discuss the browser area of security: user passwords and IDs, anti-cookie policy and the advanced anonymity strategies. The server-side security is being sustained by firewalls, privacy-conscious Java applets, CGI scripts and by encrypting the payment protocol pages. Also, a great place in assuring the security comes from encryption. The basics of encryption can de found in an appendix to the book.

This book contains the most valuable information a system administrator must possess. It is filled with basic to advanced security techniques from client-side and server-side security practices, browser security, writing secure CGI scripts, and very interesting topics such as firewalls and securing the nowadays developing e-commerce. The most important thing that the book contains is the link to a website that contains the newest security practices and information on the latest security problems and their solutions.

The Web Security Handbook will help you not only to secure your website, but also it can help secure your own PC from the attacks that come from the Internet.

Grids of BID which are symbolical with the devices and technology;

Advancement of humans called as technology was innovated by Lorrie Cranor and Paul Resnick. The inventor then marketed in December 1997 in the summit of Internet – On – Line; The live edition was then upgraded till the summer of 1999; Also, the topic distributed highlights the products & services of BID;

The listed below are the resources maintained by the members of the BID developers group; Contacting the surveyor of each member with links to connect it;

Client software [broken link as of July 2005] that reads BID’s labels.

HTTP servers that distribute names along with documents;

Proxy servers [broken link as of July 2005] that perform filtering based on BID regulations;

Naming Organizations: HTTP servers that distribute third-party BID names through the BID instructions used to query the organization;

Services Rated;

Search engine that can use PICS labels in its selection criteria

Inventory users of BID Naming Systems;

Commonly the BID naming system is organized in the product filtering that doesn’t allow specific materials if referred to naming the linked material; Tools for inventing the asset of technology with knowing the equivalency outputs which has to be conventionalized according to the naming system of monitoring logs suggestional attributes; finding related topics, and intimating the same;

Internet based services are basically a replacement to conventional desktop software at a blinding speed, captivating over TB (terabytes) of individual information in the procedure. Limitless emails store capacity and Web 2.0-method beginning will speed up that inclination yet more.

Still usage to those enormous and vital sources is usually gated by a handful of bigger, earning-driven companies. Some big firms like Microsoft, Google, Yahoo, America Online and many other have mainly created the services of world class has come to depend on in daily life for creating them, the protectors of our mainly important details.

While certain things brings a question to our mind like “Is that a good idea?” It becomes the most disturbing answer when we think the past as guide because of not having any other choice.

It’s troubling on most of the levels, although mostly as the business is mainly of creating a Web security. As safety managerial from the big firms like Microsoft, Google and Yahoo show that the firms are in lots of situations adapting normal desktop protection methods to novel Web applications. From time to time it works but its failure chances are more than professional applications.

From 1999 to till date more than 90 percent of all data have been generated digitally. Around 42 percent of all U.S. Internet users have internet based banking facilities. More than 160 billion email posts are being delivered and sent daily. As the information loads up, it changes into difficult position to protect bits flowing among servers and desktop based Web applications.

PICS for developers:
As we know PICS is vendor and independent of platform so comfortably can be used easily with Internet Explorer. With simple settings users can enable the PICS support on this explorer. To enable the service you have to click on View then Internet Options. Go to security option and click on content advisor. One thing you should keep in mind and that is internet explorer by default comes with enabled RSAC rating files. That file is usually located at the path of C:\WINDOWS\System\Rsaci.rat. Users can view this file while opening in notepad.

Multiple rating or ranking file can be installed
First you have to download the file from rating service like if you are looking for VWP1.0 rat to install then you have to get it downloaded from rating services. Download path should C:\WINDOWS\System directory. You can download the file at any other path but this is the default path and the file should be installed at this similar path. Before downloading any file you should check the extension and it should be .rat only. After downloading click on content advisor-> settings-> advanced-> rating systems and select add, click on new rating file and press ok button.

Once the content advisor is enabled you can select general settings to allow the viewing of unrated files. After pressing yes button then simply pages with a PICS rating above the stipulated limits will be barren. However, those who are unrated sites will not get blocked no matter whatever the content is present in the file.

Authorization of the Digital Signature Services (DSS) requirement, version 1.0 has recently been done by OASIS. 

It was in 2002, that DSS was initially proposed.  It was the same time when the technical team of the organization was shaped for building up XML-based protocols in Web services dealings (transactions/ business) for digital signatures and cryptographic time-stamping.  Digital signing processes were the nucleus of this protocol.  In this process, documents are mailed/ sent to a server by the user/ client. Subsequently an electronic mark (signature) is received on the documents or all documents and signature is sent to the server. Thus user gets confirmation on the authentication of the documents with respect to the signature. Base64-encoded binary is signature’s main element, which could be any of the - CMS (Cryptographic Message Syntax) or PGP (Pretty Good Privacy) key.

To construct easier web-based transactions, it’s very much essential that the digital signatures techniques are standardized, this in turn acts as a most important advantage too. This is evident with the usage of e-commerce websites, where each project doesn’t require a customized coding to handle the dealings or transactions online. 

Separate servers could be utilized by businesses/ companies for signature services, by mutually approved standards. Also, the same could be leased to a third party. As per OASIS, the Universal Postage Union (an agency of United Nations) has pooled resources in DSS standard development. The agency is also integrating the DSS system into its Electronic Post Mark (EPM) system. EPM system is created to help the global trade or commerce by standardization of documents and exchange of information.

The recent discussion between the media and the Director of the Mozilla Foundation, Mr. Chris Hoffman highlighted some of the strong facets of this thriving browser Firefox. The two utmost important assets of Firefox browser is its robust security and privacy features which lack in MSIE. Recent studies have revealed that Adware, Viruses, Spyware and other security hazards have crashed more than 80% of MSIE and Windows customers’ systems. Whereas, Firefox takes care of these security breaches and provides a more secured platform to its users. 

Another advantage of using Firefox is that unlike MSIE, Firefox doesn’t support Microsoft Security Zone model and ActiveX features. Though ActiveX is a powerful element that can be advantageous to the developers, it is still not supported by Firefox browsers. The reason is that ActiveX exhibits a feature that allows silent installations, execution of remote code and downloads on the system. These features can pose as a security threat against the privacy and security features of the browsers. Hence, this major jeopardy has been taken into consideration while building Firefox browser. Moreover, there are various security connoisseurs appointed who persistently examine the security features of this browser and give feedbacks accordingly. Summing it all, constant updation and secured features ensure that Firefox delivers secure platform to all its users.

Digital Signature Project

coupling the ability to make assertions with a cryptographic signature block that ensures integrity and authenticity.
Intellectual Property Rights Management
using a meta-data system to label Web resources with respect to their authors, owners, and rights management information.

Privacy (P3)

Using a meta-data system to allow sites to make assertions about their privacy practices, and for users to express their preferences for the type of interaction they want to have with those sites.

Regardless of content control, meta-data systems such as PICS are going to be an important part of the Web, because they enable more sophisticated commerce (build and manage trust relationships), communication, indexing, and searching services.

“The promise of digital commerce is that it will allow you to use the Internet to purchase the services of the best organic gardening advisors or mad cow disease specialists, whether they live in Santa Clara or Timbuktu. To do this, you need to do more than verify that the person at the other end of the wire is who he says he is. You need to assess competence, reliability, judgment. In other words, you need a system of branding, but applied much more widely for highly specialized and hard-to-evaluate services and products. You need value-added services that will not only lead you to the right product or service but also rate its quality or otherwise vouch for it.”

Why do we need CC/PP?

With the growing popularity of ubiquitous Web devices spread across such a broad range of media and bandwidth, authoring for the Web can sometimes look like a very difficult equation to solve: how can a Web author provide cool multimedia Web content, while keeping that content small and simple enough for very basic devices?

Managing multiple devices is not a new problem, and even though the rapid growth of Web appliances beyond the familiar Web browser makes the challenge especially acute, a few solutions have been developed over the years.

Most of these solutions are based on content selection: the content is given in several equivalent variants, or has mechanisms to define alternative behaviour. Then, at the time the resource is served, either the server chooses which variant is most suitable, or the user agent decides what to do with the choices it is given.

This is easily achieved because user agents identify themselves to servers and scripting languages, and through specific features included in Web document languages:

• Server-driven content negotiation, as defined by HTTP,
• On-the-fly content selection and presentation based on user agent detection, using scripting languages,
• HTML object and link elements have mechanisms defining alternate behaviours,
• SMIL (pronounced “smile”), the multimedia language for audio/visual content, has a switch element defining alternate elements to chose from, and can be used, for example, to choose some content based on available bandwidth,
• CSS also has such a mechanism called Media Queries for selecting appropriate style sheets.

Read more on the shortcomings of current methods on Web Standards