InfoWorld - Security Adviser: Now that SSL has been cracked, watch out

/Home/Internet Security: Blogs/Internet Security: InfoWorld blog/InfoWorld: Security Adviser 2011

Organizations can ignore the BEAST attack against SSL today, but the tools behind the exploit will only continue to evolve

By Roger A. Grimes
OCTOBER 04, 2011

Ever since rumors started to spread about Thai Duong and Juliano Rizzo's BEAST attack against SSL/TLS, onlookers have fretted as to just how serious a threat it poses. In a nutshell, the attack is serious -- though for the time being, it's difficult to pull off because a would-be attacker has to work pretty hard to ensure that the target meets multiple preconditions. Unfortunately, the tools to pull off the attack are certain to evolve -- and many IT organizations aren't even taking the simple, necessary steps to protect themselves today.

Click the URL above to read the full article