InfoWorld

OpenSSL patches two vulnerabilities in cryptographic library

The OpenSSL project team has patched two vulnerabilities in the cryptographic library and enhanced the strength of existing cryptography used by OpenSSL versions 1.0.1 and 1.0.2. OpenSSL 1.0.2 users ...
Computerworld

OpenSSL releases several patches but none for serious issues

The OpenSSL project has released several patches for moderate flaws, including an additional defense against the Logjam vulnerability revealed last month. OpenSSL is widely used open-source software ...
InfoWorld

Understand Diffie-Hellman key exchange

The Diffie-Hellman algorithm was a stunning breakthrough in cryptography that showed cryptographic keys could be securely exchanged in plain sight. Here’s how it works. Whitfield Diffie and Martin ...
CIO

Why CSOs Should Report to the Board, not CIOs

The latest flaw in OpenSSL concerning the Diffie-Hellman protocol once again highlights the importance of the separation of powers between CIO and CSO. In a lot of companies, a CSO may be an ...
CIO

OpenSSL patches a severe but not widespread problem

The OpenSSL project has patched a problem in the cryptographic library but one that likely does not affect many popular applications. OpenSSL enables SSL (Secure Sockets Layer) or TLS (Transport Layer ...