Security KeyA new attack vulnerability has been found that has ten of thousands of HTTPS-protect websites, mail servers and other internet services open to eavesdropping. There are 8.4% of the top million websites open to this vulnerability and more mail services using the IPv4 address space. The issue is found in the Diffie-Hellman key exchange, and the attack called Logjam. Mail servers that use simple mail transfer protocol with StartTLS, secure POP3 and IMAP are vulnerable in 14.8 percent, 8.9 percent and 8.4 percent.

The Diffie-Hellman key exchange was designed for users who have no contact with each other can send encrypted information to each other. A shared key is agreed upon using the Diffie-Hellman key exchange for allowing Internet protocols on a negotiated secure connection. HTTPS, SSH, IPsec, SMTPS and other protocols that need TLS require the Diffie-Hellman key exchange.

+Continue Reading