In cryptography, a private key (secret key) is a variable that is used with an algorithm to encrypt and decrypt code. Continued…
Quote of the Day
“Because anyone who steals a private key can sign executable code that would then be successfully verified by the electronic device, that key must remain secure.” – Ellen Muraskin
23,000 Symantec certificates revoked following leak of private keys
DigiCert had more than 20,000 Symantec certificates revoked after reseller partner Trustico exposed the certificates’ private keys.
Risk & Repeat: Trustico certificate drama a cause for concern
This Risk & Repeat podcast discusses the recent Trustico certificate drama, the massive certificate revocation it triggered and the questions it raises.
ROCA RSA flaw unveils secret keys on wide range of devices
The ROCA RSA vulnerability takes advantage of poor implementation by Infineon to undermine the security of encryption keys, affecting some popular products.
Embedded security for IoT lies in the chip
Embedded security for IoT gives connected devices the smarts they need to recognize rogue data or instructions before they execute.
Private encryption key sharing worrying but not new, say security experts
A study has revealed a 40% increase in the past year in the number of internet-connected devices using shared encryption certificates, highlighting that this security risk of mass hacking is growing.
Writing for Business
Many organizations don’t give encryption a thought until they suffer a data _______.