Skip the navigation

Encryption Topic Center

Encryption news, in-depth articles and more

Encryption News

Google to lengthen SSL encryption keys in August

Google plans to upgrade the security of its SSL certificates, an important component of secure communications.
Read more...

Name.com forces customers to reset passwords following security breach

Domain registrar Name.com forced its customers to reset their account passwords on Wednesday following a security breach on the company's servers that might have resulted in customer information being compromised.

Assange to Google's Schmidt: 'I don't use email'

Wikileaks' latest release is billed as a transcript of a "secret meeting," but it may more accurately be termed a promotion.

IRS going against privacy tide on warrantless email search

The Internal Revenue Service (IRS) has taken the position it does not need a search warrant to gather email in criminal investigations, despite opposition from lawmakers and privacy advocates and a ruling by a federal appellate court.

Cisco inadvertently weakens password encryption in its IOS operating system

The password encryption algorithm used in some recent versions of the Cisco IOS operating system is weaker than the algorithm it was designed to replace, Cisco revealed earlier this week.

Retailer faces uphill battle in $13M lawsuit against Visa, analyst says

Specialty retailer Genesco faces an uphill battle in its precedent-setting $13.3 million lawsuit against Visa USA Inc., a Garner analyst said.

Researchers resurrect and improve CRIME attack against SSL

Two researchers from security firm Imperva have devised new techniques that could allow attackers to extract sensitive information from encrypted Web traffic.

Lack of HTTPS on iOS App Store left users open to attacks, researcher says

Until late January, Apple's App Store servers did not encrypt all communications with iOS clients, which exposed users to several potential attacks, according to a Google security researcher.

Mozilla moves to limit risk of subordinate CA certificate abuse

Mozilla is taking steps to limit the risk of powerful subordinate Certificate Authority (CA) certificates falling into the hands of attackers and potentially being used to issue rogue certificates for use in SSL snooping attacks.

Certificate Authorities to push for better certificate-revocation checking

Several Certificate Authorities (CAs) have formed an advocacy group called the Certificate Authority Security Council (CASC), which will focus on promoting new security standards, policies and best practices for SSL (Secure Sockets Layer) deployment on the Web.

More Encryption News
Encryption In Depth

Tools for the paranoid: 5 free security tools to protect your data

You just read about another online database hack, and now 4 million users' names and passwords are floating around the Internet--and you have a sinking feeling that one of them might be yours. And then there are the security breaches you don't hear about, the ones that leave nasty surprises in your inbox or on your credit card statement.

Encrypt (almost) anything

It's all too easy to neglect data security, especially for a small business. While bigger organizations have IT departments, service contracts, and enterprise hardware, smaller companies frequently rely on consumer software, which lacks the same sort of always-on security functionality.

Security Manager's Journal: When technologies collide

An encryption initiative runs into the law of unintended consequences, since the legal department can't search encrypted emails for e-discovery purposes.

The do's and don'ts of safeguarding cloud-based data with encryption

A good way to secure sensitive data in the cloud is encryption. But there are trade-offs.

Security Manager's Journal: Can an enterprise run its security with Microsoft's tools?

The desktop group is pushing to abandon enterprise-class tools for built-in antivirus, firewall and encryption software from Microsoft. Is that any way to run a business?

Kenneth van Wyk: Shutting down security gotchas in iOS 6

What to do if you have data on your iPhone or other iOS device that you want to protect.

Security Manager's Journal: DLP tool is suddenly blind to email

Data leak prevention can't be effective if it can't see any Exchange mail on the network. What happened?

Kenneth van Wyk: The iPhone at 5: Keeping it secure

Some tips for good iOS hygiene. Insider (registration required)

Who Holds the Keys?

Experts and IT leaders offer strategies for getting the most from the latest encryption and digital rights management technologies.

More Encryption In Depth