Ars Technica

How the NSA can break trillions of encrypted Web and VPN connections

For years, privacy advocates have pushed developers of websites, virtual private network apps, and other cryptographic software to adopt the Diffie-Hellman cryptographic key exchange as a defense ...
Threat Post

TLS 1.3 Working Group Has Consensus to Deprecate RSA Key Transport

RSA key transport cipher suites could be deprecated in TLS 1.3 in favor of Diffie-Hellman Exchange or Elliptic curve Diffie-Hellman. The IETF working group responsible for the TLS 1.3 standard is ...
Threat Post

Socat Warns Weak Prime Number Could Mean It’s Backdoored

Socat published a security advisory warning users that a hard-coded 1024 Diffie-Hellman prime number was not prime, and that an attacker could listen and recover secrets from a key exchange. Update ...