Encryption

Encryption news, analysis, research, how-to, opinion, and video.

nordvpn
Digital Key encryption

https certificate secure

Google moves into the Certificate Authority business

Google doesn't seem to trust the current system, as it has launched its own security certificates

heartbleed illustration

OpenSSL issues new patches as Heartbleed still lurks

The latest OpenSSL update may only address moderate-severity vulnerabilities, but admins shouldn't get lax about staying current with the patches

heartbleed illustration

That Hearbleed problem may be more pervasive than you think

The 200,000 devices with the OpenSSL Heartbleed vulnerability may include commercial software you are running

facebook login screen oct2016

Facebook taps FIDO U2F for stronger login security

Facebook joins Google, Salesforce, GitHub, Dashlane, and Dropbox in supporting FIDO U2F to help prevent attackers from hacking user accounts

161118 pompeo 1

Pompeo sworn in as CIA chief amid opposition from surveillance critics

Critics are concerned he may roll back privacy reforms, like restrictions on collection of bulk telephone metadata, and may try to introduce curbs on the use of encryption

ransomware at your service 1

The evolution of (and solution to) ransomware

Ransomware has become the scourge of the internet 28 years after it first appeared. Here's how to prevent infection and recover if you're hit

signature signing contract handwriting cursive

Oracle to Java devs: Stop signing JAR files with MD5

Starting in April, if a JAR file is signed with MD5, Oracle will treat it as unsigned

keys

Google ventures into public key encryption

Google's Key Transparency project offers a model of a public lookup service for encryption keys

Digital Key encryption

Google Cloud Platform finally offers key management service

Google prides itself on its encryption efforts, but it lags behind Amazon and Microsoft in providing encryption tools for the cloud

godaddy office

GoDaddy revokes nearly 9,000 SSL certificates issued without proper validation

A bug in the CA's domain validation system for the past five months could have allowed attackers to obtain certificates without authorization

Digital Key encryption

Professionally designed ransomware Spora might be the next big thing

Security researchers have found a new very well designed ransomware program dubbed Spora that can perform strong offline file encryption and brings several innovations to the ransom payments model.

Digital Key encryption

Q&A: RSA crypto pioneer Adleman keeps pushing the limits

Dr. Leonard Adleman tells InfoWorld all about RSA's big breakthrough, why DNA works great for computing, and our coming cyberwar risk

video

What a Locky Ransomware attack looks like

CSO Online's Steve Ragan infects a laptop with Locky Ransomware

trophies ribbons winners prizes

Encryption in 2016: Small victories add up

The move from SHA-1 to SHA-2, a Congressional victory over backdoors, and the rise of encrypted communications are leading us toward a more secure world

internet security risk public domain

The real reason we can't secure the internet

We can surmount the technical and human obstacles to a dramatically more secure internet, but one factor stands in the way

Apple iPhone 5S (1)

Apple gives iOS app developers more time to encrypt communications

The iOS App Transport Security (ATS) will not become a requirement on Jan. 1, as previously announced

US Capitol

Congressional report sides with Apple on encryption debate

The bipartisan panel advises Congress to look into using legal hacking methods to break into tech products

security code attack hack

Google open-sources test suite to find crypto bugs

Developers can use Project Wycheproof to test cryptographic algorithms against a library of known attacks to uncover potential weaknesses

Load More