Tag Archive for: SSL/TLS

Move over Heartbleed – here comes another SSL/TLS bug

/in

Which widely used open source SSL/TLS cryptographic library just recently fixed a critical bug caused by a buffer overflow? (Hint. The software isn’t OpenSSL and the vulnerability isn’t Heartbleed.)
Naked Security – Sophos

Has HTTPS finally been cracked? Five researchers deal SSL/TLS a biggish blow…

/in

Cryptographers have once again put SSL/TLS (that’s the padlock in HTTPS) in their gunsights and opened fire. This time, they’ve done some severe damage. Paul Ducklin takes a detailed look…
Naked Security – Sophos