标签: heartbleed

A few weeks ago, the cyberworld was embarassed to reveal a major memory-handling bug in the Heartbeat extension of the Transport Layer Security protocol used in the popular OpenSSL cryptographic software library. The Heartbeat extension allows a client to tell a server that it's still connected, even if it's not doing anything at the moment, thereby preventing the server from shutting down the link between them.   The Internet and other news channels are being flooded with stories about how a vast number of users' passwords, credit card numbers, and things like online banking communications are vulnerable to attack. There are also a lot of discussions and explanations about the Heartbleed bug works; most of them make my eyes glaze over in confusion.   But then someone pointed me toward a cartoon explanation of the bug on XKCD.com. I have to say that this is the clearest explanation one could get. Take a look, and see what you think.   (Source: XKCD.com)   I also have to say I am in awe of the comic's creator, Randall Munroe. His subjects range from statements on life and love to mathematical and scientific in-jokes. When it comes to the science and technology side of things, he has a unique gift for presenting complex information in an incredibly understandable way.   One of my personal all-time favorites was the XKCD Radiation Dose Chart . I often use it to locate obscure radiation-related information, such as the dose one might expect from eating a banana. How about you? Do you have a personal XKCD favorite?

Several days ago, the cyberworld was embarassed to unravel a major memory-handling bug in the Heartbeat extension of the Transport Layer Security protocol used in the popular OpenSSL cryptographic software library. The Heartbeat extension allows a client to tell a server that it's still connected, even if it's not doing anything at the moment, thereby preventing the server from shutting down the link between them.   The Internet and other news channels are being flooded with stories about how a vast number of users' passwords, credit card numbers, and things like online banking communications are vulnerable to attack. There are also a lot of discussions and explanations about the Heartbleed bug works; most of them make my eyes glaze over in confusion.   But then someone pointed me toward a cartoon explanation of the bug on XKCD.com. I have to say that this is the clearest explanation one could get. Take a look, and see what you think.   (Source: XKCD.com)   I also have to say I am in awe of the comic's creator, Randall Munroe. His subjects range from statements on life and love to mathematical and scientific in-jokes. When it comes to the science and technology side of things, he has a unique gift for presenting complex information in an incredibly understandable way.   One of my personal all-time favorites was the XKCD Radiation Dose Chart . I often use it to locate obscure radiation-related information, such as the dose one might expect from eating a banana. How about you? Do you have a personal XKCD favorite?