Ars Technica

OpenSSL Certificate help

I'm trying to generate a certificate (using the openssl command line tool) that can't actually DO anything - can't sign, can't encrypt. Is this possible? It seems like the purpose of the certificate ...
Threat Post

OpenSSL Patches Critical Certificate Validation Vulnerability

A high-severity bug in OpenSSL was disclosed today, and it affects only organizations that installed an update released in June, and allows anyone with an untrusted TLS certificate to become a CA.
eWeek

OpenSSL Patches for ‘Boring’ Certificate Risk

eWEEK content and product recommendations are editorially independent. We may make money when you click on links to our partners. Learn More. The open-source OpenSSL cryptographic library project came ...
Bleeping Computer

OpenSSL fixes severe DoS, certificate validation vulnerabilities

Today, the OpenSSL project has issued an advisory for two high-severity vulnerabilities CVE-2021-3449 and CVE-2021-3450 lurking in OpenSSL products. OpenSSL is a commonly used software library for ...
InfoQ

OpenSSL 3.2 Brings Support for QUIC, Windows Certificate Store, and More

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources. Cory Benfield discusses the evolution of ...