Monday, December 11, 2017
Search
  
Submit your own News for
inclusion in our Site.
Click here...
Breaking News
LG Tests LTE-based Safety Technology for Connected, Self-driving Cars
Apple Said To Buy Shazam
Intel Uses Cobalt Interconnect for 10nm, Global Foundries Detail EUV Lithography for 7nm
LG Display Starts OLED Light Panel Production
Toshiba Moving Closer to Deal With Western Digital
YouTube Said to Launch Music Subscription Service
NVIDIA Says New TITAN V GPUs Transform the PC into AI Supercomputer
Toshiba Launches First 14TB HDD with Conventional Magnetic Recording
Active Discussions
Which of these DVD media are the best, most durable?
How to back up a PS2 DL game
Copy a protected DVD?
roxio issues with xp pro
Help make DVDInfoPro better with dvdinfomantis!!!
menu making
Optiarc AD-7260S review
cdrw trouble
 Home > News > Mobiles > Samsung...
Last 7 Days News : SU MO TU WE TH FR SA All News

Monday, January 13, 2014
Samsung Denies Vulnerability In KNOX


Samsung has denied a reported vulnerability on a Samsung Galaxy S4 device with the KNOX security platform.

Last month, security researchers at Ben-Gurion University Cyber Security Labs said that they had identified a critical vulnerability in highly secure Samsung mobile devices which are based on the Knox architecture. The breach, researchers believe, enables easy interception of data communications between the secure container and the external world including file transfers, emails and browser activity.

Samsung said that after collaborating with Google and having discussed the research with the original researchers, the company has verified that "the exploit uses legitimate Android network functions in an unintended way to intercept unencrypted network connections from/to applications on the mobile device." Samsung said the research did not identify a flaw or bug in Samsung KNOX or Android; "it demonstrated a classic Man in the Middle (MitM) attack, which is possible at any point on the network to see unencrypted application data."

Samsung and Google said that such attacks can be prevented if apps are built to support Secure Sockets Layer (SSL) encryption. In additio, such issues can be addressed through the proper configuration of mechanisms available in Knox.

The configuration settings Samsung said would prevent the attack from working include Knox?s mobile device management feature, which can lock down security-sensitive device settings; and "per-app VPN", which forces traffic from a designated app through a VPN tunnel. KNOX implements a FIPS 140-2 Level 1 certified VPN client, a NIST standard for data-in-transit protection along with NSA suite B cryptography.




Previous
Next
Acer CEO Blames Ultrabook Strategy For Company's Weak Results        All News        Samsung Display Showcased Foldable Display Prototype At CES
Sony Introduces The Xperia E1 And The Xperia T2 Ultra Smartphones     Mobiles News      Competition Among U.S. Mobile Carriers Escalates

Get RSS feed Easy Print E-Mail this Message

Related News
Luxurious Samsung W2018 Flip Phone Launches in China
Samsung Starts Producing 512-Gigabyte Universal Flash Storage for Mobile Devices
KDDI and Samsung Demonstrate 5G on a Train Moving at 100kmh
Wearables Market Grows as Smart Wearables Rise and Basic Wearables Decline
Samsung to Add Bixby to New ARTIK IoT Solution
Samsung Starts Mass Production of its 2nd Generation 10nm FinFET Process Technology
Samsung's 'Graphene Ball' Technology Speeds up Battery Charging
Samsung Foundry in Advanced Discussions With New Customers for 7nm Chips
Samsung, LG Comment on USITC's Tariffs to Curb Washer Imports
Samsung Says New SZ985 Z-NAND SSD Offers Ultra-Low Latency and High Throughput
Samsung Forecast to Top Intel as Larger Semiconductor Supplier in 2017
Samsung, SK Hynix and Micron Lead the Server DRAM Market

Most Popular News
 
Home | News | All News | Reviews | Articles | Guides | Download | Expert Area | Forum | Site Info
Site best viewed at 1024x768+ - CDRINFO.COM 1998-2017 - All rights reserved -
Privacy policy - Contact Us .