SSL/TLS are being fixed. So I guess soon we would see v4 of SSL and v2 of TLS ? The problem is said to be in the protocol so a fix in the protocol is needed.
Read: http://arstechnica.com/security/news/2009/11/https-ssl-attack-vector-discovered-fix-is-on-the-way.ars?utm_source=rss&utm_medium=rss&utm_campaign=rss
Let's hope such bugs don't occur. Imagine what happens if some attacker or even terrorists manage to use the weaknesses in these 'secure' protocol and bring critical national and worldwide infrastructutres to it's knees before anyone can fix it.
The solution: always do regular evaluation on security for those who don't do it and always make 200% sure your IT stuff are really secure and robust.
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment