Kevin Robinson, vice president of marketing for WiFi Allaince announced in the beginning of the year about the latest WiFi protocol i.e. WPA3. Now this protocol is finally out in the market in the latest products offering a new level of security – authentication and encryption- for both personal and enterprise. Although, WPA2 is still a mandatory protocol for the devices that connect over WiFi and WPA3 is optional for now. Some changes brought in WPA3 are simplified configuration, better authentication and increased cryptographic levels. Bruteforce dictionary attacks will now take even more time and the attacker will have to interact with the network every time making any unauthorised access even more difficult.

Read More at https://www.darkreading.com/operations/wpa3-brings-new-authentication-and-encryption-to-wi-fi/d/d-id/1332145

Cryptology plays a crucial role in cyber security. There could be use of sign language and different cypher code to encrypt the sensitive data. The decipher mechanism helps to decode the message. In ancient times, Julius Caesar used to send his secret messages to his army in cypher code. Later this process is followed by Germans during the Second World War. In modern organizational context, cyber security is the most important parameter. So, to protect organizational data they can adopt cryptology to encrypt their data and hide them from the normal visibility level. The reader can go through the article written by Mark Ward (Technology correspondent, BBC News) and understand more about cypher process and the levels of challenges at:

http://www.bbc.com/news/technology-34312697

OpenSSL is a popular cryptographic library used to digitally scramble sensitive data as it passes to and from computer servers so that only the service provider and the intended recipients can make sense of it. If an organisation employs OpenSSL, users see a padlock icon in their web browser - although this can also be triggered by rival products. Google Security and Codenomicon - a Finnish security company - revealed on Monday that a flaw had existed in OpenSSL for more than two years that could be used to expose the secret keys that identify service providers employing the code. They said that if attackers made copies of these keys they could steal the names and passwords of people using the services, as well as take copies of their data and set up spoof sites that would appear legitimate because they used the stolen credentials. This vulnerability allows anyone on the internet to read the memory of the system protected by the bug-affected code. In this way, they can get the keys needed to decode and read the data, according security researchers at the Finnish firm Codenomicon who discovered it. The bug is independently discovered recently by Codenomicon and Google Security researcher Neel Mehta. The official name for the vulnerability is CVE-2014-0160.

To read more, visit:

http://www.cbc.ca/news/technology/heartbleed-web-security-bug-what-you-need-to-know-1.2603988