Threat Post

TLS 1.3 Working Group Has Consensus to Deprecate RSA Key Transport

RSA key transport cipher suites could be deprecated in TLS 1.3 in favor of Diffie-Hellman Exchange or Elliptic curve Diffie-Hellman. The IETF working group responsible for the TLS 1.3 standard is ...
CSOonline

Security vs. visibility: Why TLS 1.3 has data center admins worried

At the core of the TLS protocol is a series of exchanges of cryptographic keys between communicating computer systems, which allow them to talk to each other securely. Static RSA key exchange is one ...
Threat Post

TLS Implementations Vulnerable to RSA Key Leaks

A number of TLS software implementations contain vulnerabilities that allow hackers with minimal computational expense to learn RSA keys. A number of TLS software implementations contain ...
Bleeping Computer

Microsoft announces deprecation of 1024-bit RSA keys in Windows

Microsoft has announced that RSA keys shorter than 2048 bits will soon be deprecated in Windows Transport Layer Security (TLS) to provide increased security. Rivest–Shamir–Adleman (RSA) is an ...
CSOonline

OpenSSL update fixes DROWN vulnerability

An international team of researchers has uncovered an attack that can compromise encrypted network traffic in a matter of hours. The DROWN (Decrypting RSA with Obsolete and Weakened eNcryption) attack ...
Network World

How TLS protocol works

Part 3 of a six-part article: The RFC 2246 document states the following: “The cryptographic parameters of the session state are produced by the TLS Handshake Protocol, which operates on top of the ...