Encryption/Data Security news, articles & updates| SC Media

Encryption/Data Security

China pushes new global data security initiative, decrying US ‘politicizing’ the issue

China announced a comprehensive global data security program Tuesday, proposing many of the same international norms agreed upon by Western nations already, while protecting China’s interest in balkanizing the internet. State Councilor and Foreign Minister Wang Yi proposed the “Global Data Security Initiative” in a statement translated here by the New America think tank. According…

EARN IT passes Senate Judiciary, stokes concerns over erosion of end-to-end encryption

Proponents of the Eliminating Abusive and Rampant Neglect of Interactive Technologies Act (EARNIT) might tout its tough stance on online child sexual abuse material but privacy and digital rights advocates contend the bill, just passed by the Senate Judiciary Committee, will erode end-to-end encryption. EARN IT revokes Section 230 protection for internet intermediaries for what…

Zoom will extend optional end-to-end encryption to free users

Zoom said Wednesday that it would extend end-to-end encryption to users of its free service. The popular conferencing platform had drawn criticism for its plans to provide E2EE only to its paid customers but after consulting with civil liberties groups, encryption experts, child safety advocates and others, released an updated and inclusive E2EE design on…

Bug prompts Let’s Encrypt to revoke over 3M TLS certificates

Beginning today, Let’s Encrypt is revoking more than 3 million of its Transport Layer Security (TLS) certificates, following the discovery of a bug that affects the way it rechecks CAA (Certificate Authority Authorization) records. “Most subscribers issue a certificate immediately after domain control validation, but we consider a validation good for 30 days,” explained Jacob Hoffman-Andrew,…

RSA certificates vulnerable: Keyfactor

The security firm Keyfactor recently presented information proving that about 250,000 RSA keys are vulnerable to compromise. The report was based on the examination of 175 million RSA certificates and keys. Researchers mined active and publicly available RSA keys to identity any common factors. Keyfactor said Any keys sharing one of their prime factors with…

Next post in Encryption/Data Security