Researchers detail SSL implementation holes

http://www.openparenthesis.org/wp-content/uploads/2011/03/3355834452_0b7215c19a-490x367.jpg

A team of US researchers has revealed how the use of Secure Sockets Layer (SSL) in a large range of big ticket applications could allow for man-in-the-middle interception.

In a paper dubbed “The Most Dangerous Code in the World: Validating SSL Certificates in Non-Browser Software”, researchers from Stanford University and the University of Texas found vulnerabilities in how SSL was handled in Android, Amazon’s EC2 Java library and software development kit, and instant message clients Trillian and AIM.

Tags:

Security

Story added 29. October 2012, content source with full text you can find at link above.

Comments are closed.

More antivirus and malware news?

Boeing technology offers secure, efficient way to tie together business, industrial nets
Federal Judge Upholds Maine’s Strict Internet Privacy Law
Juniper bolsters wireless security; fights against encrypted malicious threats
Vulnerabilities in Alipay Android App Fixed
Electricity Distribution Systems at Increasing Risk of Cyberattacks, GAO Warns
Security researchers discover Linux version of Winnti malware
Printing Sheets Purchases with LionCash+
Google says Gmail users can’t expect privacy
Tinder, Grindr Accused of Illegally Sharing User Data
IoT Worm Could Hack All Smart Lights in a City

Researchers detail SSL implementation holes

More antivirus and malware news?

Ads

Security news

Malware

Security

IT security

About site

Search Terms Tips

Recent New Tips

Recent Posts