Newsletters Welcome, Guest Log In | Register
News:

Security

< Previous | Next >

Subscribe

Sign up now and get the best business technology insights direct to your inbox.

  • Daily Edge
  • CTO Edge Update
  • Business Tools & Templates
  • Aligning IT & Business Goals
  • Maximizing IT Investments

0

Software Makers in Race to Fix SSL Bug

Posted by Kara Reeder Nov 5, 2009 9:52:51 AM

Software makers around the world are scrambling to fix a serious bug in the SSL protocol that lets attackers intercept secure SSL communications between computers using a man-in-the-middle attack, reports Computerworld.

 

According to Chris Paget, the chief technology officer with a security consultancy called H4rdw4re, the flaw leaves vulnerable servers in shared hosting environments, mail servers, databases and many other secure applications. He describes the seriousness of the bug:

Your implementation of SSL can be completely compliant with the protocol, completely immune to code-level vulnerabilities, completely fine at managing its keys, and using ciphers that are completely unbroken, and you are still vulnerable.

The bug will be very difficult to fix since it lies in the SSL protocol itself. But further complicating matters is that SAP engineer Martin Rex stumbled across the bug and inadvertently disclosed it on an obscure mailing list.

Related Content

Add a comment Leave a comment on this blog post.

There are no comments on this post

Premium Tools

Browse

ITIL V3 Foundation - Complete Certification Kit

Enhance your IT career by getting your ITIL Foundation Certificate. It's fast and easy with this complete resource. The 186-page eBook and companion online training course is guaranteed to help you pass the ITIL exam.

Learn more >

All About Reducing Your IT Costs

Looking to cut costs? Use this research-driven Excel tool to pinpoint which IT cost reduction measures best fit your needs.

Learn more >

Related Content

Browse

Topic: Secure Sockets Layer

The Secure Sockets Layer protocol secures data transmitted over the Internet

Blog: F5 Boosts Application Delivery Platform

Article: The Wider World of the File Transfer Protocol

White Paper: How to Offer the Strongest SSL Encryption

Related Topics

Network Security

Featured White Papers

Browse

Lowering Your IT Costs with Oracle Database 11g Release 2

This white paper identifies the key capabilities a database management solution needs to successfully deliver more information with higher quality of service, make more efficient use of IT budgets, and reduce the risk of change in data centers.

Software Forum: Information On Demand Virtual Experience

This interactive virtual forum presents leading IT experts providing the insights you need to turn your information into a strategic driver for innovation, business optimization and competitive differentiation.

Resource Centers

Browse

Cost Cutting through Server Consolidation

Products, management tools, and industry insights that enhance the value of virtualization for your business.

Featured Whitepapers

The Business Case for Virtualization

Business Intelligence

Best-practice tools, strategies and technologies for determining and managing the data you need to make better business decisions.

Featured Whitepapers

Seeing the Big Picture: A Corporate Guide to Better Decisions Through IT

Data Management

Data management tips and techniques that insure ease of access, comprehensive security and absolute privacy for your invaluable company information.

Featured Whitepapers

Lowering Your IT Costs with Oracle Database 11g Release 2

Responding to Change

The technology tips and tools to enhance your ability to respond to business change with ease and success.

Featured Whitepapers

Driving Business Agility Through SOA Connectivity and Integration