CRN

Verisign Discontinues Flawed MD5 Certificates

Mountain View, Calif.-based Verisign, a managed security service provider, said that it has immediately discontinued the flawed MD5 cryptographic function used for digital signatures, while offering a ...
CSOonline

Continued support for MD5 endangers widely used cryptographic protocols

The old and insecure MD5 hashing function hasn’t been used to sign SSL/TLS server certificates in many years, but continues to be used in other parts of encrypted communications protocols, including ...
Computerworld

Ongoing MD5 support endangers cryptographic protocols

The old and insecure MD5 hashing function hasn’t been used to sign SSL/TLS server certificates in many years, but continues to be used in other parts of encrypted communications protocols, including ...
Computerworld

Security Manager’s Journal: Hashing out secure applications

My company has a small team of software developers, who program applications for the business. Nothing too fancy. Sometimes the applications they produce are meant only for system-to-system ...
adtmag.com

Oracle Delays Plan to Block JAR Files Signed with MD5 until April

When Oracle Corp. publishes its next quarterly patch update in April, the company will begin treating JAR files signed with the MD5 hashing algorithm as unsigned, the company announced. As of April 18 ...
Network World

Microsoft moves to block MD5 certificates and improve RDP authentication

Microsoft released two optional security updates Tuesday to block digital certificates that use the MD5 hashing algorithm and to improve the network-level authentication for the Remote Desktop ...
Threat Post

Microsoft Starts Countdown on Eliminating MD5

Microsoft has given customers six months to find MD5 installations and prepare for a February 2014 patch that will block the broken algorithm. The clock is running on Windows administrators to sweep ...