Tag
tls-security
Safeguard articles tagged "tls-security" — guides, analysis, and best practices for software supply chain and application security.
4 articles
Cryptography
Certificate transparency log
A concrete guide to certificate transparency logs: how SCTs verify issuance, how CT monitoring works, and how rogue certificates get detected fast.
Mar 4, 20267 min read
Vulnerability Analysis
What Was the Heartbleed Bug
A deep dive into CVE-2014-0160 (Heartbleed): the OpenSSL heartbeat flaw, its severity, exploitation timeline, and how to remediate it today.
Feb 12, 20269 min read
Vulnerability Analysis
Heartbleed OpenSSL memory disclosure (CVE-2014-0160)
Heartbleed (CVE-2014-0160) let attackers silently read server memory over TLS. Here's the impact, timeline, remediation, and how to detect lingering exposure today.
Jan 19, 20268 min read
Vulnerability Analysis
OpenSSL BN_mod_sqrt infinite loop DoS (CVE-2022-0778)
CVE-2022-0778 lets attackers hang OpenSSL with a single malformed certificate. Here's the impact, affected versions, and how to remediate fast.
Jan 10, 20267 min read