rohamilton
By: rohamilton

August 8, 2019 6:27 pm

943 views

A Blunt Reminder About Security for Embedded Computing

  Recent news of the VxWorks security breach raises the unsettling question that those of us in the embedded computing industry have grappled with for decades. How do we secure an embedded operating system from a nefarious attack? The ICS Advisory (ICSA-19-211-01) released on July 30th by the Cybersecurity and Infrastructure Security Agency (CISA) […]

Read More



By: Marcus Meissner

May 13, 2019 3:08 pm

3,806 views

SUSE addresses Microarchitectural Data Sampling Vulnerabilities

Researchers have identified new CPU side channel information leak attacks against various microarchitectural buffers used in Intel CPUs. These attacks allows local attackers to execute code to read out portions of recently read or written data by using speculative execution. Local attackers can be on the same OS or running code on the same thread […]

Read More


John Dolen
By: John Dolen

October 31, 2018 10:55 pm

1,814 views

SUSE Partners Provide Identity, Access, and Privileged User Management

Halloween is being celebrated in many parts of the world today.  While there may be plenty of tricks and treats, and perhaps little goblins showing up at your door, SUSE customers have less to fear, as they leverage security engineered into our products, and provided by our amazing ecosystem partners.  Earlier this year, […]

Read More


Roger Klorese
By: Roger Klorese

October 17, 2018 11:51 pm

1,251 views

Authenticating to SUSE CaaS Platform Using External LDAP

External Authentication: Secure and Simpler Most of us access multiple systems and applications in the average day. For DevOps or systems management staff, the number may run into the dozens. (If every username and password was a key on a physical keychain, some of us wouldn't even be able to stand up!) You can […]

Read More


BJM
By: BJM

October 4, 2018 5:39 pm

1,297 views

Secure Linux from SUSE on Display at IoT Solutions World Congress

Gartner has predicted that by the year 2020 there will be nearly 21 billion Internet of Things devices in the world, with over 65% of enterprise businesses adopting IoT products. Naturally, the demand for secure and supported platforms and operating systems has never been more critical. With that in mind, SUSE is proud to announce […]

Read More


Alexander Bergmann
By: Alexander Bergmann

October 4, 2018 2:03 pm

2,881 views

DNSSEC – Root Zone KSK Rollover (11th of October)

In just one week from now it will be the first time that the DNS Root Zone Key Signing Key (KSK) will be rolled over and replaced with a new key. This long planed procedure was actually planed one year ago, but postponed because of data that suggested that a significant number of resolvers where […]

Read More


Florian Bergmann
By: Florian Bergmann

August 21, 2018 8:00 am

1,071 views

SUSE CaaS Platform: System-wide Certificates

With SUSE CaaS Platform 3, it is now possible to manage self-signed certificates through the Velum UI. In this blog post, we will explain what these certificates are, why they are needed and how to use them. What are system-wide certificates? When bootstrapping a new cluster or managing an existing one, a new setting is […]

Read More



By: Marcus Meissner

August 6, 2018 5:00 pm

5,985 views

SUSE addresses “SegmentSmack” attack

Today, on August 6th 2018, researchers from FICORA have published a remote denial of service attack against Linux Servers, called "SegmentSmack" (CVE-2018-5390). Due to inefficient programming remote attackers could use a lot of compute resources by exploiting worst-case behaviour in the TCP segment reassembly code of newer Linux Kernels, which could allow even single […]

Read More


John Dolen
By: John Dolen

May 3, 2018 2:57 am

1,558 views

SUSE Partners Provide Endpoint and Data Center Security

RSA Conference, a major information security event, wound down almost two weeks ago.  Hotel prices in San Francisco are back below stratosphere levels (at least for now), but the important work of protecting information continues.  At SUSE, security is a never ending process, and we are committed to delivering best effort security.  […]

Read More


Marijn
By: Marijn

March 30, 2018 1:29 pm

1,328 views

Can a public cloud strengthen National Security and integrity? – Part II

In my previous blog I talked about a recent brainchild of mine "a National Public Cloud". A Public Cloud, which is controlled and supervised by the local authorities or national technical universities to give more security and integrity to our stored data. Because of some feedback I got I like to elaborate a bit […]

Read More