Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.
Avert Open SSL Heart-bleed Vulnerability with eGestalt’s Aegify
"Heart-bleed" is a serious and unique vulnerability in the...
You’ve finished this document.
Download and read it offline.
Upcoming SlideShare
Heartbleed Bug: Prevent Attacks Before They Begin
Next
Upcoming SlideShare
Heartbleed Bug: Prevent Attacks Before They Begin
Next
Download to read offline and view in fullscreen.

Share

Avert Open SSL Heart-bleed Vulnerability with eGestalt’s Aegify Scanner

Download to read offline

Heart-bleed" is a serious and unique vulnerability in the most accepted version of SSL. A large part of the web servers on the internet use OpenSSL to safeguard data and user accounts, and the latest "Heart-bleed bug" only affects OpenSSL’s 1.0.1 and the 1.01f versions.

Related Books

Free with a 30 day trial from Scribd

See all

Related Audiobooks

Free with a 30 day trial from Scribd

See all
  • Be the first to like this

Avert Open SSL Heart-bleed Vulnerability with eGestalt’s Aegify Scanner

  1. 1. Avert Open SSL Heart-bleed Vulnerability with eGestalt’s Aegify "Heart-bleed" is a serious and unique vulnerability in the most accepted version of SSL. A large part of the web servers on the internet use OpenSSL to safeguard data and user accounts, and the latest "Heart-bleed bug" only affects OpenSSL’s 1.0.1 and the 1.01f versions. Given that the Secure-Socket Layer (SSL) and Transport Layer Security (TLS) are pivotal in Internet security, this security chasm caused by "Heart-bleed" is grim. Versions 1.0.1 through 1.0.1f are vulnerable to exploits, and stand to expose user credentials, credit card data, sensitive documents and the server’s certificate itself. Unlike the previous attacks seen recently, "Heart-bleed" doesn’t actually require any interesting cryptographic software. As the attacks leave no evidence in server logs, there is in reality no way of knowing if the bug has been actively exploited – thus making the effects more devastating than ever. Regardless of whether you realize it, there is a lot of the security infrastructure you rely on that is dependent in some way on OpenSSL, and unfortunately the reliance on OpenSSL is only increasing. The risk with the OpenSSL Heart bleed vulnerability is bizarre, as there are a large number of private keys exposed on the Internet, leading to potential memory leaks in server-client interactions. Click here to learn more.

Heart-bleed" is a serious and unique vulnerability in the most accepted version of SSL. A large part of the web servers on the internet use OpenSSL to safeguard data and user accounts, and the latest "Heart-bleed bug" only affects OpenSSL’s 1.0.1 and the 1.01f versions.

Views

Total views

243

On Slideshare

0

From embeds

0

Number of embeds

1

Actions

Downloads

1

Shares

0

Comments

0

Likes

0

×