The IEEE’s Center for Secure Design’s new guidance for software architects called “Avoiding the Top 10 Software Security Design Flaws” debuted this week.
Browsing Category: Cryptography
NIST released Interagency Report 7966 this week, a guidance document for organizations using the Secure Shell network protocol for automated access.
The developers behind Akeeba fixed an outstanding issue this week that could have let anyone download users’ site backups, passwords and user lists.
Amazon Web Services announced that it has turned on Perfect Forward Secrecy and other SSL improvements for its CloudFront content delivery platform.
Facebook published numbers today that demonstrate the pervasiveness of encryption on the web; the social network said 95 percent of its notification emails are encrypted with Perfect Forward Secrecy, up from 29 percent in May.
Google has been testing a method for taking into account whether a site uses HTTPS as part of its search ranking, and officials say it has returned positive results so far.
Cambridge University researcher Ross Anderson urged experts to take heed of weaknesses in chip-and-PIN payment cards as the inevitable switchover looms in the U.S.
LAS VEGAS–Yahoo plans to enable end-to-end encryption for all of its Mail users next year. The company is working with Google on the project and the encryption will be mostly transparent for users, making it as simple as possible to use. Alex Stamos, CISO at Yahoo, said that the project has been a priority since[...]
Twitter has announced that a cloud-based password management company called Mitro has joined the Twitter team, and all of Mitro’s code is now free and open source. Mitro’s offering a secure password manager that’s meant to help distributed teams share passwords for accounts and services. The passwords are stored in encrypted form on Mitro’s servers,[...]
An encryption issue in the Android and iOS versions of the Instagram photo-sharing application could allow for man-in-the-middle attacks and more.