Encryption

Encryption news, analysis, research, how-to, opinion, and video.

New LogJam encryption flaw puts Web surfers at risk

LogJam is closely related to the FREAK security vulnerability and involves downgrading TLS connections to a weak key

5 encryption errors developers keep making

If there is one technology that can alleviate the impact of security breaches, it’s encryption -- but you have to do it right


security tools 1

Top security tools in the fight against cyber crime

There’s no silver bullet, so load up with as many of these security tools as you can

Free tool reveals mobile apps sending unencrypted data

Datapp is designed to help users see what mobile data isn't protected

Cerf thinks encryption back doors would be 'super risky'

The FBI's request for encryption workarounds would create new security problems

https

Mozilla: It's HTTPS or bust for Firefox

Mozilla's plan to compel the use of encryption by default in Firefox faces backlash from Web developers

Lawmakers criticize FBI's request for encryption back doors

It's impossible to ensure that only good guys will be able to access them, lawmakers say

vault safe lock security

Mitchell Hashimoto follows up Vagrant with Vault key encryption

Vault not only stores encryption keys and credentials, but generates them automatically for use in services and APIs

With ransomware on the rise, cryptographers take it personally

The security industry is not doing enough and it's going to get worse, cryptographers said

EMC Syncplicity lets enterprises manage their own encryption keys

Syncplicity's Customer Managed Keys feature uses rights management software that customers can run on their own hardware

VMware aims to offer more secure access to enterprise apps

VMware combines iOS and Android encryption with its NSX platform to make it easier for admins to control mobile resources

Free tool may decrypt files encrypted by CoinVault ransomware

Dutch police obtained CoinVault decryption keys and have shared them with the world

vault key encryption

Linux Foundation's new mission: Cheap, easy Web encryption

The Linux Foundation is lending support to the Let's Encrypt project, to make it both free and simple for any Web server to encrypt connections

Expired Google certificate temporarily disrupts Gmail service

Google let a certificate linked to the Gmail SMTP server expire, causing issues for third-party email clients

Firefox 37 supports easier encryption option than HTTPS

For sites that can't support HTTPS, Firefox 37 now supports a simpler option: opportunistic encryption

Wider use of HTTPS could have prevented attack against GitHub

The EFF said the GitHub attack reinforces the case for more websites enabling HTTPS encyption

Google catches bad digital certificates from Egyptian company

An Egyptian company issued unauthorized digital certificates for Google's services, a major no-no

broken link breaching weakest link connection vulnerability 000004213740

Upgrade now: Older OpenSSL versions vulnerable to FREAK attack

The OpenSSL project shared the high-severity vulnerability privately in advance as part of a post-Heartbleed strategy for security disclosures

OpenSSL mystery patches due for release Thursday

No details of the vulnerabilities are available yet, but one flaw is rated of 'high' severity

Researchers find same RSA encryption key used 28,000 times

Another look at the impact of the FREAK flaw has turned up some surprising findings

Load More