Archive for the ‘digital Certificate’ Category

Critical DoS Flaw found in OpenSSL — How It Works

September 23rd, 2016

The OpenSSL Foundation has patched over a dozen vulnerabilities in its cryptographic code library, including a high severity bug that can be exploited for denial-of-service (DoS) attacks.

OpenSSL is a widely used open-source cryptographic library that provides encrypted Internet connections using Secure Sockets Layer (SSL) or Transport Layer Security (TLS) for the majority of websites, as well

Posted in ddos attack, denial-of-service attacks, digital Certificate, dos attack, hacking news, OpenSSL, OpenSSL vulnerability, SSL Certificate, Vulnerability | Comments (0)

Chinese Certificate Authority ‘mistakenly’ gave out SSL Certs for GitHub Domains

August 29th, 2016

A Chinese certificate authority (CA) appeared to be making a significant security blunder by handing out duplicate SSL certificates for a base domain if someone just has control over its any subdomain.

The certificate authority, named WoSign, issued a base certificate for the Github domains to an unnamed GitHub user.

But How? First of all, do you know, the traditional Digital Certificate

Posted in certificate transparency, digital Certificate, free ssl certificate, GitHub, SSL Certificate, ssl security, website security | Comments (0)

What is Certificate Transparency? How It helps Detect Fake SSL Certificates

April 11th, 2016

Do you know there is a huge encryption backdoor still exists on the Internet that most people don’t know about?

I am talking about the traditional Digital Certificate Management System… the weakest link, which is completely based on trust, and it has already been broken several times.

To ensure the confidentiality and integrity of their personal data, billions of Internet users blindly

Posted in certificate authority, certificate transparency, certificate transparency logs, digital Certificate, Digital Certificate Manager, forged SSL certificates, HTTPS, Lets Encrypt, SSL encryption | Comments (0)