Tag: Security

HTTPS now active

The little lock icon is a thing of beauty.     

The FREAK Attack

On Tuesday, March 3, 2015, researchers disclosed a new SSL/TLS vulnerability — the FREAK attack. The vulnerability allows attackers to intercept HTTPS connections between vulnerable clients and servers and force them to use ‘export-grade’ cryptogrpahy [sic], which can then be decrypted.. § This all traces back to the Clinton administration. The US government wanted decided that cryptography was the same as military weaponry. This led to an export ban in which US designed crypto apps couldn’t be sold outside the US borders.