CSO: While security vendors weigh their product ranges for vulnerability to the recently discovered ‘Heartbleed’ bug, Symantec’s massive digital certificate infrastructure remains secure – but the company is advising customers to update the vulnerable OpenSSL code and then regenerate their public key infrastructure (PKI) private keys, according to its Melbourne-based senior principal systems engineer Nick Savvides.
The high-profile bug had generated a flood of calls to the company’s Melbourne customer support centre – one of four facilities in the world to handle both customer validation and the generation of new public keys within its VeriSign infrastructure – but Symantec was providing free certificate renewal services for customers who were generally being encouraged to use self-service control panels to reissue their private keys.