Friday, September 04, 2015
Search
  
Submit your own News for
inclusion in our Site.
Click here...
Breaking News
Updated Google Street View App Has 360-degree Images
Samsung Seeks Piece of Nascent Smartwatch Market With New Gear S2 Smartwatch
Ricoh Unveils Upgraded THETA S Spherical Camera
Barnes & Noble and Samsung Unveil New Samsung Galaxy Tab S2 NOOK
Sony Is Entering The Pico Projector Market
Intel Media Server Studio 2016 Enables Faster Video Transcoding and Transition to HEVC and 4K
JBL Expands Aftermarket Subwoofer Line-up, Promises Big Concert Sound From New Portable Bluetooth Speaker
AMD To Showcase Broadcast Ecosystem Workflows at IBC 2015
Active Discussions
How to back up a PS2 DL game
Copy a protected DVD?
roxio issues with xp pro
How to burn a backup copy of The Frozen Throne
Help make DVDInfoPro better with dvdinfomantis!!!
Copied dvd's say blank in computer only
menu making
Optiarc AD-7260S review
 Home > News > Mobiles > Samsung...
Last 7 Days News : SU MO TU WE TH FR SA All News

Monday, January 13, 2014
Samsung Denies Vulnerability In KNOX


Samsung has denied a reported vulnerability on a Samsung Galaxy S4 device with the KNOX security platform.

Last month, security researchers at Ben-Gurion University Cyber Security Labs said that they had identified a critical vulnerability in highly secure Samsung mobile devices which are based on the Knox architecture. The breach, researchers believe, enables easy interception of data communications between the secure container and the external world including file transfers, emails and browser activity.

Samsung said that after collaborating with Google and having discussed the research with the original researchers, the company has verified that "the exploit uses legitimate Android network functions in an unintended way to intercept unencrypted network connections from/to applications on the mobile device." Samsung said the research did not identify a flaw or bug in Samsung KNOX or Android; "it demonstrated a classic Man in the Middle (MitM) attack, which is possible at any point on the network to see unencrypted application data."

Samsung and Google said that such attacks can be prevented if apps are built to support Secure Sockets Layer (SSL) encryption. In additio, such issues can be addressed through the proper configuration of mechanisms available in Knox.

The configuration settings Samsung said would prevent the attack from working include Knox?s mobile device management feature, which can lock down security-sensitive device settings; and "per-app VPN", which forces traffic from a designated app through a VPN tunnel. KNOX implements a FIPS 140-2 Level 1 certified VPN client, a NIST standard for data-in-transit protection along with NSA suite B cryptography.




Previous
Next
Acer CEO Blames Ultrabook Strategy For Company's Weak Results        All News        Samsung Display Showcased Foldable Display Prototype At CES
Sony Introduces The Xperia E1 And The Xperia T2 Ultra Smartphones     Mobiles News      Competition Among U.S. Mobile Carriers Escalates

Get RSS feed Easy Print E-Mail this Message

Related News
Samsung Seeks Piece of Nascent Smartwatch Market With New Gear S2 Smartwatch
Samsung Focuses On The Internet of Things at IFA 2015
IFA: Samsung Launches The "HumanFit" Wearable Platform
Samsung IoT Device Will Take Care Of Your Sleep
Samsung's Circular Gear S2 Smartwatches Unveiled
Samsung Used TSMC's Technology To Prevail In Chip Manufacturing Race
Samsung To Accelerate Chip Production
Samsung Announces New Wireless Audio 360 Speakers
Samsung Says Users Should Follow The Manual With Galaxy Note 5 Stylus
Samsung To Give iPhone Users The new Galaxy Smartphones
New Galaxy Note 5 Phablet Has The Best Display: report
Samsung Offers USB Flash Drive Family

Most Popular News
 
Home | News | All News | Reviews | Articles | Guides | Download | Expert Area | Forum | Site Info
Site best viewed at 1024x768+ - CDRINFO.COM 1998-2015 - All rights reserved -
Privacy policy - Contact Us .