In January and April 2014, Oracle has released critical Java software security updates. They resolve vulnerabilities that affected the "Java Secure Socket Extension" (JSSE), a software library ...

One proposal would restrict Java APIs to maintain the strong encapsulation that assures the integrity of code and data, while a second would introduce a Key Encapsulation Mechanism API. Code and data ...

A team of academics has revealed a new cryptographic attack this week that can break encrypted TLS traffic, allowing attackers to intercept and steal data previously considered safe & secure. This new ...

Is your data secure? Researchers recently discovered a new variation of the Bleichenbacher oracle attack that could threaten TLS 1.3 encryption. Seven researchers discovered that OpenSSL, Amazon s2n, ...

Without these TLS certificates, it's trivial to steal your login and password over Wi-Fi. The only way to have reliable security is for every website to use encrypted connections. One reason that hadn ...

Part 6 of a six-part article: Just because you checked a few boxes on your Microsoft Exchange Server does not mean that there is secure TLS encryption between your domain and another SMTP server that ...

TLS is the successor to the better-known SSL (Secure Socket Layer) encryption protocol; both are used to secure data communications between browsers and the destination server. The makers of the four ...

Many users of XMPP (Extensible Messaging and Presence Protocol—formerly Jabber) chat services are going to be more secure starting this week. The XMPP Standards Foundation announced that a large ...