How Heartbleed works thanks to XKCD posted April 2014

I found a pretty nice explanation of Heartbleed for the layman in this XKCD comic. Heartbleed is a recent and alarming vulnerability found in the OpenSSL toolkit that serves most of the application/websites today. To quote Schneier:

"Catastrophic" is the right word. On the scale of 1 to 10, this is an 11.

Here's the comic:

heartbleed

And if you want to dig a bit more into it, you can read some more explanations on security.stackexchange.

Well done! You've reached the end of my post. Now you can leave a comment or read something else.

Here are some random popular articles:

- Let's Encrypt Overview
- How did length extension attacks made it into SHA-2?
- Common x509 certificate validation/creation pitfalls
- QUIC Crypto and simple state machines
- The 9 Lives of Bleichenbacher's CAT: New Cache ATtacks on TLS Implementations
- A New Public-Key Cryptosystem via Mersenne Numbers
- What is the BLS signature scheme?

Here are some random recent articles:

- What's out there for ECDSA threshold signatures
- Are you into finding bugs and learning ZK? Here's a challenge for you
- Two And A Half Coins #7 - It's time to talk about Ethereum
- I talked about ZK security on the first episode of Node Guardians season 2!
- Mum, I was on the zkpodcast!
- Want to learn more about zkBitcoin? I've made some videos
- A journey into zero-knowledge proofs

How Heartbleed works thanks to XKCD posted April 2014

Comments

leave a comment...

How Heartbleed works thanks to XKCD posted April 2014

Comments

leave a comment...

Subscribe to the mailing list