The OpenSSL Heartbleed bug is a serious vulnerability which can be exploited by attackers to eavesdrop on communications, steal data and to impersonate services and users. Now it is being addressed with painful security patches across the Internet.
Vulnerabilities like Heartbleed are revealed on a regular basis and, while many are software-based, security implemented in Hardware IP is not immune. A bug propagated in hardware is difficult, sometimes impossible, to work around and the cost implications are enormous, raising the importance of properly implementing hardware-based security at the design stage.
Vulnerabilities like Heartbleed and the time to address them come at great cost to all parties involved. Once again proving the point that when it comes to security, the cost of prevention is ultimately a fraction of the cost of remediation.
Click here to read more ...