My Top Network Security Tools
I listed some of my favorite and useful Internet websites and network tools in previous post which has been used in…
Troubleshooting Java HTTPS Security Warning Message
One of our Internal Website is always having a Security Warning message when using Internet Explorer https to it, but…
CVE-2015-0235: GHOST – A Critical Vulnerability in the Glibc Library
GHOST is a ‘buffer overflow’ bug affecting the gethostbyname() and gethostbyname2() function calls in the glibc library. If a remote…
Poodle : New SSL 3.0 Bug (CVE-2014-3566)
Oct 14 2014, this bug CVE_2014-3566 has been found as a subtle but significant security weakness in version 3 of…
Shellshock (Bash Computer Bug) Exploited – Responding from Venders
Heartbleed Extension Vulnerability caused lots of worries for Internet system. The affects still do not go away and now Shellshock coming.…
Reset SonicWall NSA 4500 to Factory Default Configuration
SonicWall NSA 4500 is Next-Generation Firewall features integrate intrusion prevention, gateway anti-virus, anti-spyware and URL filtering with application intelligence and…
PKI Basic Flow Chart
PKI = Public Key Infrastructure(公鑰基礎設施) 基礎設施: 就是一個普適性基礎,它在一個大環境裏起着基本框架的作用,,設施基本原理共通,操作簡便,只要遵循基本原則,不同的實體就可以方便地使用基礎設施提供的服務。 公鑰基礎設施: 用非對稱密碼算法原理和技術是實現並提供安全服務的具有通用性的安全基礎設施。 公鑰證書: 用戶的身份與之所持有的公鑰的結合,在結合之前,由一個可信任的權威機構——認證機構(CA)來證實用戶的身份。然後由可信任的CA對該用戶身份及對應公鑰相結合的證書進行數字簽名,用來證明證書的有效性。 一個PKI系統主要包括: 認證機構,證書庫,密鑰備份及恢復系統,證書撤銷處理系統,PKI應用接口系統。 PKI主要包括四個部分: X.509格式證書,證書註銷列表CRL;…
