Apr20
by
Paul Ducklin
3
Critical cryptographic Java security blunder patched – update now!
Either know the private key and use it scrupulously in your digital signature calculation…. or just send a bunch of zeros instead.