So far, the VPNC has granted SSL JavaScript certification to equipment from eight vendors: * AEP Networks Netilla Security Platform. * Caymas Networks Caymas gear. * Check Point Connectra.

Fedor Indutny, a core member of the node.js team, has proved that it is in fact possible for an attacker to sniff out the private SSL keys from a server left exposed by the Heartbleed bug.