How to defend against the OpenSSL Heartbleed flaw

10.04.2014

CSOs should also review their service level agreements with websites and software-as-a-service providers.

[What you need to know about Heartbleed and OpenSSL]

"They should be able to leverage security requirements within those contracts to push for a faster turnaround," Lucas Zaichkowsky, enterprise defense architect for computer forensics vendor AccessData, said. "If it's found that important contracts are lacking security requirements, make it a point to get them added now while there's a sense of urgency to support the initiative."

(www.csoonline.com)

Antone Gonsalves

Zur Startseite