Lumension® Endpoint Intelligence Center

Intelligence Center » News Archive » TLS protocol flawed, HTTPS connections susceptible to FREAK-like attack

TLS protocol flawed, HTTPS connections susceptible to FREAK-like attack

2015/05/20

Softpedia - (International) Cryptography and security researchers discovered that approximately 8.4 percent of the top one million domains containing mail and web servers are vulnerable to an attack dubbed Logjam, in which an attacker could compromise a secure communication between a client and server by downgrading the transport layer security (TLS) connection to 512-bit export-grade cryptography due to left over variants of the Diffie-Hellman cryptographic key exchange mechanism from the 1990s. The attack method is similar to the one used in the Factoring RSA Export Keys (FREAK) attacks from early 2015. [ed.: See the FAQ post by Graham Cluley on the Optimal Security blog here.]

Source: http://news.softpedia.com/news/TLS-Protocol-Flawed-HTTPS-Connections-Susceptible-to-FREAK-Like-Attack-481744.shtml

Note: This news synopsis is taken from the DHS Daily Open Source Infrastructure Report, a daily [Monday through Friday, except US Federal holidays] summary of open-source published information concerning significant critical infrastructure issues; a 10-day archive of the DOSIR can be found at: http://www.dhs.gov/dhs-daily-open-source-infrastructure-report.


Last Updated: 27 May 2016 10:24:21