Saturday, April 12, 2014

F5 Mitigates Heartbleed Bug

F5 Networks confirmed that its BIG-IP Local Traffic Manager, which can be used to terminate SSL connections, already has the necessary protections in place to secure applications against the Heartbleed bug.

For companies terminating SSL connections on application servers (not utilizing F5 SSL offload), F5 said the threat can be mitigated through open, extensible F5 iRules.

“For organizations using F5 BIG-IP Local Traffic Manager (LTM) with our SSL stack, applications are already protected from the Heartbleed vulnerability,” said Mark Vondemkamp, VP of Product Management, Security at F5. “They have been protected from the Heartbleed bug since it was introduced in OpenSSL.”