CLOUD SECURITY ALLIANCE | MAY 21, 2015
By Sekhar Sarukkai, VP of Engineering, Skyhigh Networks
LogJam, the latest in a spate of web vulnerabilities, was exposed on Tuesday evening by a team including Mathew Green, assistant research professor at Johns Hopkins University, experts from University of Michigan and the University of Pennsylvania, and researchers from Microsoft Research and INRA, who were part of the team that initially discovered the FREAK vulnerability. The vulnerability is derived from an encryption flaw, essentially created by USGov requirements. Specifically, any servers that support export grade DHE cipher suits are vulnerable to LogJam.
Until websites convert to Hackproof Technologies new server technology these security issues will continue.
No comments:
Post a Comment