{"id":2583,"date":"2019-02-06T09:40:27","date_gmt":"2019-02-06T06:40:27","guid":{"rendered":"http:\/\/www.kampuskod.com\/?p=2583"},"modified":"2019-02-06T09:40:29","modified_gmt":"2019-02-06T06:40:29","slug":"googlein-yeni-hesap-koruma-ozelligi","status":"publish","type":"post","link":"https:\/\/www.kampuskod.com\/teknoloji\/googlein-yeni-hesap-koruma-ozelligi\/","title":{"rendered":"Google\u2019\u0131n Yeni Hesap Koruma \u00d6zelli\u011fi"},"content":{"rendered":"\n

Google\u2019\u0131n Bu Yeni Hesap Koruma \u00d6zelli\u011fi, Yay\u0131lmay\u0131 \u00d6nleyen Hack’leri Durdurmak \u0130\u00e7in Tasarland\u0131
<\/h3>\n\n\n\n
\"\"
Google<\/figcaption><\/figure>\n\n\n\n
<\/h6>\n\n\n\n

Google\u00a0,<\/a>\u00a0Google Oturum A\u00e7ma\u00a0\u00f6zelli\u011fini\u00a0kullanan geli\u015ftiricilerin, hizmetlerin yay\u0131lmas\u0131n\u0131 daha da zorla\u015ft\u0131rmak i\u00e7in hesap kesmeleri gibi g\u00fcvenlik sorunlar\u0131 hakk\u0131ndaki bilgileri otomatik olarak payla\u015fmalar\u0131n\u0131\u00a0sa\u011flayan yeni bir \u00f6zellik duyurdu\u00a0.\u00a0Kullan\u0131c\u0131 hesaplar\u0131yla ilgili g\u00fcvenlik sinyalleri g\u00f6ndermek ve almak i\u00e7in yeni bir \u00e7apraz hesap koruma (CAP) protokol\u00fc tasarlanm\u0131\u015ft\u0131r, b\u00f6ylece bir hizmetin ihlali, bir sald\u0131rgan\u0131n o ki\u015finin hesab\u0131n\u0131 ba\u015fka birinin hesab\u0131na ba\u011flamas\u0131na izin vermeyebilir.<\/p>\n\n\n\n

Bilgisayar korsanlar\u0131n\u0131n bir hesaba s\u0131zmas\u0131 ve ba\u015fka bir hedefe ula\u015fmas\u0131 i\u00e7in onu kullanmas\u0131 olduk\u00e7a yayg\u0131nd\u0131r.\u00a0(\u00d6rne\u011fin, birka\u00e7 y\u0131l \u00f6nce bilgisayar korsanlar\u0131n\u0131n\u00a0Twitter hesab\u0131m\u0131 ele ge\u00e7irmek\u00a0istediklerinde, bunu ilk \u00f6nce e-postalar\u0131ma eri\u015fmek i\u00e7in kulland\u0131klar\u0131 Amazon hesab\u0131ma eri\u015ferek, bir dizi sald\u0131r\u0131y\u0131 tetikleyerek yapt\u0131lar.) Bu, e-posta ve cep telefonu hesaplar\u0131n\u0131 yap\u0131yor merkezi ba\u015far\u0131s\u0131zl\u0131k noktalar\u0131 olma olas\u0131l\u0131\u011f\u0131 daha y\u00fcksektir, \u00e7\u00fcnk\u00fc genellikle giri\u015f olarak kullan\u0131l\u0131rlar.\u00a0Veya Google\u2019\u0131n geli\u015ftirici kimlik ara\u00e7lar\u0131 i\u00e7in k\u0131demli \u00fcr\u00fcn y\u00f6neticisi olan Adam Dawes, \u201ct\u00fcm yumurtalar\u0131n\u0131z posta sa\u011flay\u0131c\u0131n\u0131z\u0131n sepetinde\u201d dedi.
<\/p>\n\n\n\n

\u015eu anda, bir e-posta veya h\u00fccre servisi gibi bir kimlik sa\u011flay\u0131c\u0131s\u0131 bir sorun tespit etti\u011finde, birisinin o sa\u011flay\u0131c\u0131y\u0131 oturum a\u00e7m\u0131\u015f olarak kullanm\u0131\u015f olabilece\u011fi di\u011fer t\u00fcm hizmetleri uyarmak i\u00e7in yapabilece\u011fi pek bir \u015fey yoktur. \u00d6rne\u011fin, bir Gmail adresiyle Evernote’ta oturum a\u00e7t\u0131\u011f\u0131n\u0131z\u0131 varsayal\u0131m. Google hesab\u0131n\u0131za eri\u015fen bir ki\u015fi daha sonra Google Oturum A\u00e7ma \u00f6zelli\u011fini kullanmay\u0131 se\u00e7erek Evernote\u2019a giri\u015f yapmak i\u00e7in de kullanabilir. Ve Google sald\u0131rgan\u0131 yakalay\u0131p kendi hizmetinden att\u0131ysa bile, o ki\u015fi Evernote’ta oturum a\u00e7maya devam edebilirdi. Hesaplar aras\u0131 koruma, Google Sign-In kimlik do\u011frulama hizmetini kullanarak hesap g\u00fcvenli\u011fini etkin bir \u015fekilde ba\u011flayarak bu g\u00fcvenlik a\u00e7\u0131\u011f\u0131n\u0131 gidermeyi ama\u00e7lar.<\/p>\n\n\n\n

CAP, farkl\u0131 hizmetlerin ortak bir kullan\u0131c\u0131 hakk\u0131nda – bir hesab\u0131n ka\u00e7\u0131r\u0131lmas\u0131n\u0131n veya devre d\u0131\u015f\u0131 b\u0131rak\u0131lmas\u0131n\u0131n, bir kullan\u0131c\u0131n\u0131n t\u00fcm oturumlardan \u00e7\u0131k\u0131\u015f yapmas\u0131n\u0131n, bir \u015fifre de\u011fi\u015fikli\u011fini zorlamas\u0131n\u0131n ve bunun bir hesap asl\u0131nda bir bot. Bu daha sonra geli\u015ftiricilere etkilenen hesapta i\u015flem yapma se\u00e7ene\u011fi sunar.<\/p>\n\n\n\n


<\/h6>\n\n\n\n

Bu, yeni \u00f6zelli\u011fin \u00e7al\u0131\u015fmas\u0131 i\u00e7in \u015fimdilik birisinin Google Oturum A\u00e7ma ile oturum a\u00e7mas\u0131 gerekti\u011fi anlam\u0131na geliyor – yaln\u0131zca bir Gmail adresi yeterli de\u011fil. (Bununla birlikte, di\u011fer kimlik sa\u011flay\u0131c\u0131lar\u0131 da protokol\u00fc uygulayabilecektir.)<\/p>\n\n\n\n

Google\u2019\u0131n kimlik ekibini y\u00f6neten \u00fcr\u00fcn y\u00f6netimi direkt\u00f6r\u00fc Mark Risher, \u201c\u0130nsanlar\u0131n bir\u00e7ok yerde depolanm\u0131\u015f verileri var, ancak hepsinin kilitlenip korunmalar\u0131n\u0131 sa\u011flamak gittik\u00e7e zorla\u015f\u0131yor\u201d dedi. \u201cEtkili bir \u015fekilde ba\u015farmaya \u00e7al\u0131\u015ft\u0131\u011f\u0131m\u0131z \u015fey interneti daha g\u00fcvenli hale getirmek.\u201d<\/p>\n","protected":false},"excerpt":{"rendered":"

Google\u2019\u0131n Bu Yeni Hesap Koruma \u00d6zelli\u011fi, Yay\u0131lmay\u0131 \u00d6nleyen Hack’leri Durdurmak \u0130\u00e7in Tasarland\u0131 Google\u00a0,\u00a0Google Oturum A\u00e7ma\u00a0\u00f6zelli\u011fini\u00a0kullanan geli\u015ftiricilerin, hizmetlerin yay\u0131lmas\u0131n\u0131 daha da zorla\u015ft\u0131rmak i\u00e7in hesap kesmeleri gibi g\u00fcvenlik sorunlar\u0131 hakk\u0131ndaki bilgileri otomatik olarak payla\u015fmalar\u0131n\u0131\u00a0sa\u011flayan yeni bir \u00f6zellik duyurdu\u00a0.\u00a0Kullan\u0131c\u0131 hesaplar\u0131yla ilgili g\u00fcvenlik sinyalleri g\u00f6ndermek ve almak i\u00e7in yeni bir \u00e7apraz hesap koruma (CAP) protokol\u00fc tasarlanm\u0131\u015ft\u0131r, b\u00f6ylece bir hizmetin […]<\/p>\n","protected":false},"author":3,"featured_media":2584,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"tdm_status":"","tdm_grid_status":""},"categories":[20],"tags":[1702,934,1693,1699,1694,1696,1700,1695,1697,1701,1698],"_links":{"self":[{"href":"https:\/\/www.kampuskod.com\/wp-json\/wp\/v2\/posts\/2583"}],"collection":[{"href":"https:\/\/www.kampuskod.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.kampuskod.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.kampuskod.com\/wp-json\/wp\/v2\/users\/3"}],"replies":[{"embeddable":true,"href":"https:\/\/www.kampuskod.com\/wp-json\/wp\/v2\/comments?post=2583"}],"version-history":[{"count":2,"href":"https:\/\/www.kampuskod.com\/wp-json\/wp\/v2\/posts\/2583\/revisions"}],"predecessor-version":[{"id":2586,"href":"https:\/\/www.kampuskod.com\/wp-json\/wp\/v2\/posts\/2583\/revisions\/2586"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.kampuskod.com\/wp-json\/wp\/v2\/media\/2584"}],"wp:attachment":[{"href":"https:\/\/www.kampuskod.com\/wp-json\/wp\/v2\/media?parent=2583"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.kampuskod.com\/wp-json\/wp\/v2\/categories?post=2583"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.kampuskod.com\/wp-json\/wp\/v2\/tags?post=2583"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}