Akamai admits its OpenSSL patch was faulty, reissues keys

Jeremy Kirk

With a private SSL key, it's possible for a hacker to set up a fake website that passes a cryptographic security verification. It would also allow for a man-in-the middle attack, where encrypted traffic is intercepted and read.

Ellis wrote that issuing new SSL keys and certificates may be fast in some cases, but those that require extra validation with certificate authorities may take longer.

Akamai could not be immediately reached for further comment on Sunday.

Previous Page  1  2