One Article Review
| Source |  CSO |
|---|---|
| Identifiant | 6747289 |
| Date de publication | 2022-09-06 01:00:00 (vue: 2022-09-06 09:05:58) |
| Titre | The Heartbleed bug: How a flaw in OpenSSL caused a security crisis |
| Texte | What is Heartbleed? Heartbleed is a vulnerability in OpenSSL that came to light in April of 2014; it was present on thousands of web servers, including those running major sites like Yahoo.OpenSSL is an open source code library that implements the Transport Layer Security (TLS) and Secure Sockets Layer (SSL) protocols. The vulnerability meant that a malicious user could easily trick a vulnerable web server into sending sensitive information, including usernames and passwords.The TLS/SSL standards are crucial for modern web encryption, and while the flaw was in the OpenSSL implementation rather than the standards themselves, OpenSSL is so widely used-when the bug was made public, it affected 17% of all SSL servers-that it precipitated a security crisis.To read this article in full, please click here |
| Envoyé | Oui |
| Condensat | 2014; affected all april are article bug bug: came caused click code could crisis crucial easily encryption flaw full heartbleed here how implementation implements including information layer library light like made major malicious meant modern open openssl passwords please precipitated present protocols public rather read running secure security sending sensitive server servers sites sockets source ssl standards than themselves those thousands tls tls/ssl transport trick used user usernames vulnerability vulnerable web what when widely yahoo |
| Tags | Vulnerability |
| Stories | Yahoo |
| Notes | |
| Move | 
|
L'article ne semble pas avoir été repris aprés sa publication.
L'article ne semble pas avoir été repris sur un précédent.