Heartbleed Bug: AnOpenSSL Heartbeat Vulnerability

Authors

  • Siddharth Gujrathi Dept. of Computer Engineering, University of Pune, India

Keywords:

OpenSSL, Heartbleed bug, Vulnerability, Web Encryption, Encryption, heartbeat

Abstract

Due to exponential growth of Internet, Internet user privacy and data integrity is main concern for developers and service providers over Internet. Keeping this aim in mind Internet has adopted web encryption technique called OpenSSL, which gives a way to secure data and user privacy over Internet. Most of security sensitive application on Internet such as Internet banking, eCommerce, eGoverment has adopted this new technique which gives them a trustworthy way to connect them with their users. OpenSSL is only security mechanism having such reliability of work and has used from long time. But researchers have disclosed a serious vulnerability in this standard Web encryption software known as �Heartbleed�, the bug can give hackers access to personal data like credit card numbers, usernames, passwords, and, perhaps most importantly, cryptographic keys�which can allow hackers to impersonate or monitor a server. This research paper provides a detail working of Heartbleed bug and how this bug can affect your online privacy and data integrity.

References

John Viega, Matt Messier, Pravir Chandra, "Network Security with OpenSSL: Cryptography for Secure Communications" O'Really Medi Inc., First Edition, pp. 21-22, 2002.

Behrouz A Forouzan, "Data Communication and Networking", The McGraw-Hills Companies, Fourth Edition, pp. 1008-1014

"Growth of Internet ", http://www.socialmarketingforum.net/2012/09/the-Internet-explosive-growth-and-changes/, 2013

"Heartbleed affected Sites", http://visual.ly/major-sites-affected-heartbleed, 2014

"Definition", http://en.wikipedia.org/wiki/OpenSSL, 2014

"Heartbleed intro", http://heartbleed.com/, 2014

Downloads

Published

2014-05-31

How to Cite

[1]
S. Gujrathi, “Heartbleed Bug: AnOpenSSL Heartbeat Vulnerability”, Int. J. Comp. Sci. Eng., vol. 2, no. 5, pp. 61–64, May 2014.

Issue

Vol. 2 No. 5 (2014): IJCSE May Edition

Section

Research Article

License

Creative Commons License

This work is licensed under a Creative Commons Attribution 4.0 International License.

Authors contributing to this journal agree to publish their articles under the Creative Commons Attribution 4.0 International License, allowing third parties to share their work (copy, distribute, transmit) and to adapt it, under the condition that the authors are given credit and that in the event of reuse or distribution, the terms of this license are made clear.