Just In
- 3 hrs ago Elon Musk’s X Is Launching a TV App Similar to YouTube for Watching Videos
- 4 hrs ago Qualcomm Reveals Snapdragon X Plus Chip for Laptops: 10 Core CPU, On-Device AI, & Much More
- 5 hrs ago Flipkart Teases “Jaw-Dropping” Discount on iPhone 15: All-Time Low Price Anticipated
- 5 hrs ago President Joe Biden Signs Bill to Ban TikTok in the US: Unless This One Condition is Met
Don't Miss
- News King Charles Grants Royal Assent: UK's Rwanda Deportation Plan Now Law
- Sports T20 World Cup 2024: Toss up between Sanju Samson and KL Rahul ahead of big selection meeting
- Movies Giorgia Andriani Turns Up Heat As She Flaunts Toned Body In Black Bra, Skirt Post Gym Session- VIRAL VIDEO
- Finance IndusInd Bank Q4 Results: PAT Soars 15% To Rs 2,349 Cr, NII Climbs 15%; 165% Dividend Declared
- Automobiles Royal Enfield Unveils Revolutionary Rentals & Tours Service: Check Out All Details Here
- Education AICTE introduces career portal for 3 million students, offering fully-sponsored trip to Silicon Valley
- Lifestyle Heeramandi Screening: Alia Bhatt, Ananya Panday, Rashmika Mandanna And Others Serve Finest Ethnic Style!
- Travel Escape to Kalimpong, Gangtok, and Darjeeling with IRCTC's Tour Package; Check Itinerary
Heartbleed Bug Can Expose Private Server Key, Says Reports
Heartbleed has already become one of the most massive bugs to disrupt the entire web ecosystem, if there ever was one. And while fixes are currently being sought out to bypass this problem, it seems like more new information are being revealed related to the bug.
According to reports, four different researchers working separately with the bug have demonstrated that a server's private encryption key can be acquired using the Heartbleed bug. However, it is yet to be confirmed if the issue can lead to a potential attack.
The new findings related to the bug have arrived via a challenge created by CloudFlare, a San Francisco-based company that runs a security and redundancy service for website operators.
As part of the challenge, CloudFlare asked the security community if the flaw in the OpenSSL cryptographic library, which was made public last week, could be used to obtain the private key used to create an encrypted channel between users and websites, known as SSL/TLS (Secure Sockets Layer/Transport Security Layer).
Recommended: LG G3 Specifications Leaked in Benchmark
"The private key is part of a security certificate that verifies a client computer isn't connecting with a fake website purporting to be a legitimate one. Browsers indicate a secure connection with a padlock and show a warning if the certificate is invalid," PC World wrote.
"Security experts thought it might be possible that the private key could be divulged by exploiting the Heartbleed flaw, which may have affected two-thirds of the Internet and set off a mad scramble to apply a patch that fixes it."
Recommended: Top 10 Worthy Micromax Smartphones To Buy This April 2014
As of now, how each of the researchers accomplished in obtaining the private key hasn't been revealed. "It is at the discretion of the researchers to share the specifics of the techniques used," Nick Sullivan of CloudFlare wrote.
-
99,999
-
1,29,999
-
69,999
-
41,999
-
64,999
-
99,999
-
29,999
-
63,999
-
39,999
-
1,56,900
-
79,900
-
1,39,900
-
1,29,900
-
65,900
-
1,56,900
-
1,30,990
-
76,990
-
16,499
-
30,700
-
12,999
-
11,999
-
16,026
-
14,248
-
14,466
-
26,634
-
18,800
-
62,425
-
1,15,909
-
93,635
-
75,804