JSON Libraries Patched Against Invalid Curve Crypto Attack

JSON libraries using the JWE specification to create, sign and encrypt access tokens have been patched against an attack that allows for the recovery of a private key. JSON Libraries Patched Against Invalid Curve Crypto Attack

Bruce Schneier on the Integration of Privacy and Security

Threatpost Editor in Chief Mike Mimoso talks to crypto pioneer and security expert Bruce Schneier of Resilient Systems about the early days of the RSA Conference, the integration of privacy and security, and the current FBI-Apple debate over encryption and surveillance. Bruce Schneier on the Integration of Privacy and Security

Threatpost News Wrap, March 11, 2016

Mike Mimoso and Chris Brook discuss the week in news, including how Amazon is backtracking on encryption when it comes to their devices, a new set of alleged passcode bypasses for iOS, and the new OS X ransomware KeRanger. {$inline_image} Threatpost News Wrap, March 11, 2016