Threat Post

OpenSSL Update Fixes High-Severity DoS Vulnerability

US-CERT issues alert to server admins warning of a dangerous OpenSSL vulnerability and urges 1.1.0 users update to version 1.1.0e. The OpenSSL Software Foundation released an update to the OpenSSL ...
Ars Technica

OpenSSL 3 patch, once Heartbleed-level “critical,” arrives as a lesser “high”

An OpenSSL vulnerability once signaled as the first critical-level patch since the Internet-reshaping Heartbleed bug has just been patched. It ultimately arrived as a “high” security fix for a buffer ...
MyChesCo on MSN

OpenSSL Corporation and Foundation Launch New Technical Advisory Committees

NEWARK, DE — The OpenSSL Corporation and the OpenSSL Foundation have announced the formation of Technical Advisory Committees ...
InfoQ

OpenSSL 3.2 Brings Support for QUIC, Windows Certificate Store, and More

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources. Vivek Yadav, an engineering manager from ...
Linux Journal

An Introduction to OpenSSL Programming, Part I of II

The quickest and easiest way to secure a TCP-based network application is with SSL. If you're working in C, your best choice is probably to use OpenSSL (http://www ...
Linux Journal

Exploring RSA Encryption in OpenSSL

When sending your credit card number through a public medium, such as the Internet, your financial credibility may be compromised if the number is not first encrypted. It is impossible to tell who may ...
CSOonline

The Heartbleed bug: How a flaw in OpenSSL caused a security crisis

Heartbleed is a vulnerability in OpenSSL that came to light in April of 2014; it was present on thousands of web servers, including those running major sites like Yahoo. OpenSSL is an open source code ...