TechNewsWorld

Google Primes Chrome for a Post-Quantum World

Google is testing a new certificate architecture in Chrome designed to protect HTTPS and TLS connections from future quantum ...
Infosecurity-magazine.com

Flaw in TLS/SSL Certificates Allows Covert Data Transfer

A new method of covert channel data exchange has been uncovered. It uses a well-known and widely implemented public key certificates standard (X.509), which is a hallmark of both TLS and SSL IP ...
Forbes

Digital Groundhog Day: The 47-Day TLS Certificate Mandate You Can’t Escape

Every digital transaction—checkout, login, API call—runs on a hidden foundation of millions of machine identities. Transport Layer Security (TLS) certificates, just one type of machine identity, are ...
Business Wire

Organizations Are Unprepared for the Shift to 90-Day TLS Certificates and Post-Quantum Cryptography, New Venafi Research Reveals

SALT LAKE CITY--(BUSINESS WIRE)--Venafi, the leader in machine identity security, today released a new research report, Organizations Largely Unprepared for the Advent of 90-Day TLS Certificates. The ...
Infosecurity-magazine.com

Let's Encrypt Flaw Allowed Hackers to Hijack Certificates

The organization behind Let’s Encrypt has moved quickly to fix a vulnerability which could have allowed attackers to obtain certificates for domains they did not own. The Certificate Authority (CA), ...
Linux Journal

Understanding Public Key Infrastructure and X.509 Certificates

An introduction to PKI, TLS and X.509, from the ground up. Public Key Infrastructure (PKI) provides a framework of encryption and data communications standards used to secure communications over ...
ZDNet

Apple, Google, GoDaddy misissued TLS certificates with weak serial numbers

Major certificate authorities like Apple, Google, and GoDaddy have misissued over 1.2 million TLS certificates that featured an insufficiently long serial number of only 63 bits instead of the ...