Black Hat founder: SSL is broken

Powered by SC Magazine
 

U.S. Department of Homeland Security is on the case.

The founder of the Black Hat conference has told delegates that the secure socket layer (SSL) encryption used in the majority of ecommerce is broken.

Speaking a the keynote of the 2010 Black Hat briefings, founder Jeff Moss was scathing about the current state of internet security for businesses and consumers.

“Thirteen years down the line since the first conference and we're still not able to conduct business online,” he said.

“SSL is broken, and while it's great to see things are going better now, it's a long way down the line.”

However, security specialist Dan Kaminsky disagreed, saying SSL was still useful.

While the situation wasn't perfect, the US government is working to sort out problems and make cyberspace safe for citizens, Jane Holl Lute, US Deputy Secretary of the Department of Homeland Security (DHS), told delegates in her keynote. One of the key remits for the DHS was securing cyberspace she said.

“Wars end lives, but cyberspace destroys them,” she said.

The speed of technological advancement was such that the tools that are now available are almost beyond our ability to use them, she told delegates.

The DHS was gearing up for a comprehensive cybersecurity exercise later this year, she said.

Copyright ©v3.co.uk


Black Hat founder: SSL is broken
 
 
 
Top Stories
ATO shaves $4m off IT contractor panel
Reform cuts admin burden, introduces KPIs.
 
Turnbull introduces data retention legislation
Still no definition of metadata to be stored.
 
Crime Commission prepares core systems overhaul
Will replace 30 year-old national criminal database.
 
 
Sign up to receive iTnews email bulletins
   FOLLOW US...
Latest Comments
Polls
In which area is your IT shop hiring the most staff?




   |   View results
IT security and risk
  27%
 
Sourcing and strategy
  13%
 
IT infrastructure (servers, storage, networking)
  21%
 
End user computing (desktops, mobiles, apps)
  14%
 
Software development
  25%
TOTAL VOTES: 435

Vote
Would your InfoSec team be prepared to share threat data with the Australian Government?

   |   View results
Yes
  54%
 
No
  46%
TOTAL VOTES: 209

Vote