Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Encryption Private Key Detection (DSA)

Low

Synopsis

The remote host passes information across the network in an insecure manner.

Description

The remote host has just passed a DSA encryption private key via plaintext on the network. This is a risk in that private keys should only reside on a local system and if they must be passed, they should be encrypted in transit.

Solution

Ensure that there are policies and guidelines in place that prohibit the passing of private encryption data in plaintext.