Using just a laptop, boffins sniff, spoof and pry – without busting browser padlock

6 September 2018

Researchers based in Germany have discovered how to spoof certificates they don’t own – even if the certs are protected by the PKI-based domain validation. Though the group withheld the names of certificate authorities whose certs could be spoofed, Dr Haya Shulman, of the Fraunhofer Institute for Secure Information Technology, told The Register a “weak off-path attacker”

Read full news article on The Register

Date:

6 September 2018

Categorie(s):

NEWS

Tag(s):

Using

Australia News live: Electric Fields crash out of Eurovision semi-final; half of NSW threatened species face extinction7 May 2024
#RSAC: Two-Thirds of Organizations Failing to Address AI Risks, ISACA Finds7 May 2024
Watch out for rogue DHCP servers decloaking your VPN connections7 May 2024
Major UK Security Provider Leaks Trove of Guard and Suspect Data7 May 2024
RSAC: Decoding US Government Plans to Shift the Software Security Burden7 May 2024