Why 'Heartbleed' is a slow-motion train wreck
  • heartbleed

    Why 'Heartbleed' is a slow-motion train wreck

    Why 'Heartbleed' is a slow-motion train wreck

    Analysis: The 'Heartbleed' OpenSSL vulnerability is one of the worst bugs a SANS expert has seen, and that's before the fallout is fully understood.

  • MORE HIGHLIGHTS

    Heartbleed causes certificate cleanup nightmare

    In the wake of the Heartbleed OpenSSL vulnerability, the massive deluge of revoked certificates could cause palpitations across the Internet.

  • Does Heartbleed pose a risk to Android users?

    Though millions of Android devices could contain the Heartbleed OpenSSL vulnerability, experts say the risk to Android users may not be that great.

  • Heartbleed

    Heartbleed is a vulnerability in some implementations of OpenSSL. Because OpenSSL is used by approximately 66% of all active websites on the Intern...

SSL and TLS VPN Security

Email Alerts

Register now to receive SearchSecurity.com-related news, tips and more, delivered to your inbox.
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
  • Secure remote access: Closing the Windows Mobile Smartphone loophole

    After years of waiting, smartphones are finally being used to access corporate networks. But security programs for Windows laptops won't run as-is on Windows Mobile devices, leading users to engage in risky behavior. In this tip, Core Competence's Li... 

  • Bringing the network perimeter back from the 'dead'

    In the past year, a number of security professionals from consulting firms have expressed the importance of endpoint security, going so far as to say the perimeter is dead. Not so fast, offers network security expert Mike Chapple. In this spirited ti... 

  • Do split-tunneling features make a VPN vulnerable?

    When it comes to VPNs, the decision to use split tunneling depends upon your specific business needs. In this expert Q&A, Mike Chapple explains which types of businesses may or may not want to use the feature. 

  • How does SSL 'sit' between the network layer and application layer?

    SSL is neither a network layer protocol nor an application layer protocol. In this SearchSecurity.com Q&A, Michael Cobb explains how SSL "sits" between both layers. 

  • Will log-in form data posted to an SSL page always be encrypted?

    If a Web page login form is not SSL-protected, but the login data is posted to an SSL page, is the information encrypted and safe? Not at all, says Michael Cobb in this SearchSecurity.com Q&A. 

  • Will securing a wireless LAN make the data link layer vulnerable?

    Even when an organization uses a VPN to secure a wireless LAN and users' transmitted data, there are still vulnerabilities. In this expert Q&A, network pro Mike Chapple explains what security issues can arise at the data link layer. 

  • Is SSL no longer useful?

    Has the time finally come for one of today's most commonly used protocols? In this SearchSecurity.com Q&A, network security expert Mike Chapple explains why SSL isn't going anywhere. 

  • SOA, Web services security gaining priority at large enterprises

    SAN FRANCISCO -- All enterprises will have to find tools to secure Web services as Web-based languages, such as extensible markup language (XML) will be gradually introduced into system architectures. In a recent interview conducted at the Burton Gro... 

  • Can a Web client not supporting SSL still connect to a secure server?

    In some cases, servers allow both secured and non-secured communications. Security expert Mike Chapple explains what that means for Web clients that support -- or don't support -- SSL. 

  • When Microsoft Vista and VPNs don't mix

    Papa Gino's is ahead of many companies in deploying Windows Vista, thanks to its involvement in the Microsoft TAP program. But VPN compatibility has been a sticking point.