Secure

Engineer's Corner
1:11 pm
Thu April 10, 2014

TheEC: Heartbleed and Donations to RIPR

The big news in computing this week is Heartbleed, a serious security problem with secure websites.   Specifically, it's a two-year-old bug in the near-ubitiquous OpenSSL (Secure Socket Layer) protocol...most commonly recognized when there's a "https" (instead of "http") at the beginning of a website address.

It's a big problem, and I'll explain why in a second, but first I wanted to let everyone know that the RIPR donations website is secure and never was vulnerable to Heartbleed.   They use a hardware-based implementation of SSL, not OpenSSL.

So if you have donated or plan to donate to RIPR, you have nothing to worry about in regards to Heartbleed and that donation.  Whew!

Read more