Tuesday, January 06, 2009

Recent SSL Exploit Not Earth Shattering

The big hype over a crack in SSL is way overblown, according to Tom Olzak in this excellent blog post on TechRepublic.

He said the real issue, as has already been publicized, is the weakness in the MD5 hash algorithm used for creating some certificates. The weakness of MD5 has been known for a few years and has already been abandoned by most Certificate Authorities, in any case.


Post a Comment

<< Home