14 April 2014

Danger Confirmed: Heartbleed Really Does Open Up Crypto Keys to Hackers



heartbleed-open-keys

News from Cloudflare on Friday indicates that the debate is over regarding whether the new OpenSSL Heartbleed vulnerability could be utilized to obtain private encryption keys from vulnerable servers and websites. Cloudflare confirmed that third-party, independent testing revealed this is in fact true. Private encryption keys are at risk. MakeUseOf previously reported the OpenSSL bug last week, and indicated at that time that whether or not encryption keys were vulnerable was still in question, because Adam Langley, a Google security expert, could not confirm that as being the case. Cloudflare originally issued a “Heartbleed Challenge” on Friday, setting up a...


Read the full article: Danger Confirmed: Heartbleed Really Does Open Up Crypto Keys to Hackers



No comments:

Post a Comment