Major Problems in the way Browsers Interact with SSL Certificates

Posted by scamboy on August 3rd, 2009

Look like Secure Sockets Layer (SSL) certificates can be broken and no longer safe now days.

ssl_certificate

The trick in the latest type of attack is that all a criminal would need to do is put the name of a legitimate Web site before that null character, and the browser will believe that the site it’s visiting – which is under the criminal’s control – is legitimate.

The criminal could then forward the traffic onto the legitimate site and spy on everything the victim does on that site.

It’s a complicated attack, but it highlights a significant weakness in the very technology widely used to assure people it’s safe to navigate sensitive sites.

Read the whole story on TheStar Business

Sphere: Related Content

Related posts:

  1. Update Those Browsers! Author of Rough Guide to Windows 7, Simon May who...
  2. 600m Internet browsers were at risk this year A study from the Swiss Federal Institute of Technology, Google...
  3. Pre-Infected Samsung Smartphones Another cellphone manufacturer has fallen victim to an increasingly common...
  4. Italian Parliament to Perform Major Switch from Windows to Linux According to some recent rumors, the Italian Parliament has decided...
  5. Microsoft: Europeans Get to choose Web Browsers In a recent unpredicted move, Microsoft, the world largest software...

Posted in Browser, Security
«
»
You can leave a response, or trackback from your own site.

This website uses IntenseDebate comments, but they are not currently loaded because either your browser doesn't support JavaScript, or they didn't load fast enough.

Leave a Reply

Twitter Delicious Facebook Digg Stumbleupon Favorites More

  • Featured Video

  • Recent Comments

  • Twitter

  • Categories

  • Archives

  • Meta

Premium WordPress Themes