Crypto Archives - Securezoo

OpenSSL fixes 2 High risk vulnerabilities (CVE-2022-3786 and CVE-2022-3602)

Security Updates & Patches, Vulnerabilities & Exploits / By Frank Crast / November 2, 2022 / Crypto, CVE-2022-3602, CVE-2022-3786, HTTPS, OpenSSL, TLS, X.509

OpenSSL has released a security update with fixes for two High risk vulnerabilities (CVE-2022-3786 and CVE-2022-3602).

Mozilla patches Critical memory corruption vulnerability in NSS

Cryptography, Security Updates & Patches, Vulnerabilities & Exploits / By Frank Crast / December 3, 2021 / CRL, Crypto, DER, DSA, Mozilla, NSS, OCSP, PKCS, RSA-PSS, TLS

The Mozilla Foundation has patched a memory corruption vulnerability CVE-2021-43527 in network security services (NSS) via DER-encoded DSA and RSA-PSS signatures.

NIST SP 800-177: New Email Security Guidelines To Combat Phishing Threats

Cryptography, Messaging Security, Standards & Guidelines / By Frank Crast / February 28, 2019 / Crypto, Cryptography, DKIM, DMARC, NIST, SHA-256, SP 800-177, SPF, SSL, TLS

The NIST standard, SP 800-177 Revision 1, Trustworthy Email (Draft) was released last month and offers up-to-date security guidance to include SPF, DKIM, DMARC, and email digital signatures and encryption (via S/MIME), among others.

Hardware-based Security Controls for IoT

Leave a Comment / Cybersecurity Articles, Internet of Things (IoT) / By Frank Crast / November 9, 2016 / Cloud, Crypto, CSA, DDoS, FIPS, IOT, UART, Zeroization

In this article, we highlight some key points from a recent Cloud Security Alliance (CSA) IoT report, to include hardware-based controls to enhance security of IoT products. The CSA IoT Working Group report, is titled “Future-proofing the Connected World: 13 Steps to Developing Secure IoT Products.”