All-clear: No “heartbleeding” PTV xServer

Heartbleed-LogoThe Internet is abuzz with the recently found Heartbleed bug that affected the security of many servers relying on OpenSSL code. This bug is serious: “Catastrophic is the right word. On the scale of 1 to 10, this is an 11.” commented security expert Bruce Schneier. The security firm Codenomicon that discovered Heartbleed published a website with detailed information.

But here are some good news: The PTV xServer itself is not affected! The OpenSSL cryptographic software library is not included in the initial distribution of the PTV xServer. For handling HTTPS requests we use the Java SE implementation of the TLS protocol (see the Oracle website under point “5.0 Products That Do Not Include OpenSSL”).

Of course, in case of using a separate proxy server that redirects HTTPS requests to the PTV xServer as simple HTTP (recommended scenario by PTV), you have to check if your proxy server is affected.

Meet the PTV Developer Network

Gallery

This gallery contains 5 photos.

Almost every day there are news on releases, free webinars, updated documents, product information and background data. Be among the first to get informed!

PTVLogisticsFollow us on Twitter for all the latest news, insights and events – stay tuned with a few characters. Follow us …

 

PTVGroupSoftwareThe PTV Group Software Fan Page – features, content and sector information to supplement our cooperation.… Read more

Free Quarterly Newsletter

Starting January 2013, four times a year, the PTV Components team publishes a free newsletter which is distributed by e-mail to all subscribers. 

PTV Components NewsletterOur newsletter provides you with a roundup of news from around the PTV Components. Find out more about the latest trends and developments and register to receive the newsletter.

Subscribe to the German or the English newsletter.