21ics is committed to providing power, secure, reliable and high-performance semiconductor technology solutions. Microsemi Corporation has released an encryption key management plug-in for OpenSSL and a universal alternative, WhiteboxSSL. Based on Microtek's proven and deployed Whitebox CRYPTOTM product line, it provides security for server keys in storage and other devices. Microsemi's advanced WhiteboxSSL white-box password protection technology, designed for IT managers responsible for maintaining IT security infrastructure, protects the keys generated and managed by servers running popular OpenSSL software. Microsemi's advanced security solutions enable more powerful protection against memory attacks such as Heartbleed.
This article refers to the address: http://
Michael Mehlberg, vice president of security product management at Microsemi, said: "The Heartbleed vulnerability in OpenSSL is one of the most devastating vulnerabilities in the history of the server. Although it has been quickly released, it does not guarantee that it will not be similar in the future. The vulnerability compromises the security of the server key. Microsex's WhiteboxSSL is not just a patch, but a fundamental solution to the security issues associated with generating, storing, and transmitting keys through a networked system. Using WhiteboxSSL is fundamentally better. Protect the server key from memory attacks."
Netcraft pointed out that 66% of active websites on the Internet today use OpenSSL, and about 17% of these websites are exposed to the Heartbleed vulnerability. A typical server running OpenSSL will generate thousands of keys over its lifetime, which are critical to protecting the data stored and transmitted via the system. If the key is damaged, it may cause a major privacy leak, expose sensitive user data, and even cause loss of company IP. Microsemi's WhiteboxSSL enhances and complements the field-tested Whitebox CRYPTO, providing the ability to protect keys generated by OpenSSL through complex encryption algorithm traps and key transitions, making network-based attackers unable to capture networks with available tools Key.
WhiteboxSSL makes the attack system complicated, but there are two quick and easy ways to install it: IT managers can easily replace the OpenSSL device with Microsex WhiteboxSSL, or add WhiteboxSSL as the main management part of OpenSSL. Plugin. The advanced technology of Microsemi's security solutions handles the rest of the business – seamlessly generating and distributing white-box-protected keys.
Main features of WhiteboxSSL
Whitebox SSL, designed by Microsemi, replaces the vulnerable key library in OpenSSL and serves as a complete OpenSSL implementation or plug-in. WhiteboxSSL uses typical OpenSSL cryptographic algorithms such as AES, ECC, SHA, and RSA, each of which is specifically mixed for individual servers; that is, each WhiteboxSSL user has a uniquely constructed key algorithm that prevents attackers. Perform a "break-once-run-everywhere" attack.
Unlike OpenSSL-generated traditional keys that cause all data loss when captured, the Microsex WhiteboxSSL key can withstand an endless attempt by an attacker to perform cryptanalysis. The relationship between the Whitebox SSL key and the traditional key is not obvious, and a network-based attacker cannot reconstruct a traditional key using the available tools. Crosemiy libraries found innni
mask, disapoable mask, medical mask, surgcal mask
Dongguan Formal Precision Metal Parts Co,. Ltd , https://www.formalmetal.com