PRACTICAL SECURITY

IEEE Internet Computing, January/February 2010, pp. 84–87

Man looking through binoculars

Subscribe to IEEE Internet Computing

IEEE Internet Computing magazine provides journal-quality evaluation and review of emerging and maturing Internet technologies and applications.

Current issue:
Internet-Scale Data Management

Why Didn’t We Spot That?

by Stephen Farrell

The Secure Sockets Layer (SSL) protocol and its standards-track successor, the Transport Layer Security (TLS) protocol, were developed more than a decade ago and have generally withstood scrutiny in that the protocols themselves haven't been found to have security flaws. Until now. In August 2009, Marsh Ray and Steve Dispensa discovered a design flaw in the TLS protocol (and published it in November 2009 due to independent rediscovery of the flaw by Martin Rex) that affects all versions of the protocol up to and including the current version. Read more »

Bookmark and Share

Also this month

Related tutorials

A Practical Guide to Enterprise Cyber Security
by Simon Y. Liu
$19 Buy »

TCP/IP Architecture, Design, and Implementation in Linux
by Sameer Seth and M. Ajaykumar Venkatesulu
$99.95 Buy »