Here is our latest news roundup of articles about network and SSL security. (Click here to see the whole series.) SSL & Encryption News Because of recent attacks on SHA-1, Mozilla explained in a recent blog post they are considering deprecating SHA-1 earlier than scheduled by six months. The cost of resources necessary to break SHA-1 […]
On October 13, 2015, Google released Chrome 46. Chrome 46 introduces an icon change in the URL address bar for sites with minor HTTPS connection errors. Minor errors include a lack of Certificate Transparency (CT) information and/or use of SHA-1 certificates, obsolete cipher suites, and certain types of mixed content. In an effort to encourage […]
Research findings do not directly undermine the security of the Internet at large. Given the lessons learned with the MD5 full break, it is not advisable to wait until these become practically possible.
.Onion now classified as a special-use, top-level domain by Internet Engineering Steering Group (IESG).
65% of health care organizations reported electronic information being stolen or misused in some way.
The major deficiencies in the HTTP protocol led Google and Mozilla to announce their plans to deprecate HTTP in Chrome and Firefox.
DigiCert is one of the IRS-approved Certificate Authorities that can issue SSL Certificates needed to submit data to IDES.
Security should be an integral part of the development process to ensure user data is protected.
The Logjam attack does not affect SSL Certificates, but admins should disable support for DHE_EXPORT ciphers and generate a unique 2048-bit Diffie-Hellman group. Users should update their browsers to the most recent version and then watch for updates.