ZDNet

Let's Encrypt to revoke 3 million certificates on March 4 due to software bug

The Let's Encrypt project will revoke more than 3 million TLS certificates on Wednesday, March 4, 2020, due to a bug it discovered in its backend's code. More specifically, the bug impacted Boulder, ...
Infosecurity-magazine.com

Flaw in TLS/SSL Certificates Allows Covert Data Transfer

A new method of covert channel data exchange has been uncovered. It uses a well-known and widely implemented public key certificates standard (X.509), which is a hallmark of both TLS and SSL IP ...
ZDNet

Apple, Google, GoDaddy misissued TLS certificates with weak serial numbers

Major certificate authorities like Apple, Google, and GoDaddy have misissued over 1.2 million TLS certificates that featured an insufficiently long serial number of only 63 bits instead of the ...
Linux Journal

Understanding Public Key Infrastructure and X.509 Certificates

An introduction to PKI, TLS and X.509, from the ground up. Public Key Infrastructure (PKI) provides a framework of encryption and data communications standards used to secure communications over ...
Forbes

Digital Groundhog Day: The 47-Day TLS Certificate Mandate You Can’t Escape

Every digital transaction—checkout, login, API call—runs on a hidden foundation of millions of machine identities. Transport Layer Security (TLS) certificates, just one type of machine identity, are ...
Threat Post

Let’s Encrypt to Revoke Millions of TLS Certs

On Wednesday millions of Transport Layer Security certificates will be revoked because of a Certificate Authority Authorization bug. Popular free certificate authority Let’s Encrypt said it will ...