This Month in SSL: October 2015

Here is our latest news roundup of articles about network and SSL security. (Click here to see the whole series.) SSL & Encryption News Because of recent attacks on SHA-1, Mozilla explained in a recent blog post they are considering deprecating SHA-1 earlier than scheduled by six months. The cost of resources necessary to break SHA-1 […]

Understanding the Google Chrome 46 Connection Tab

On October 13, 2015,  Google released Chrome 46. Chrome 46 introduces an icon change in the URL address bar for sites with minor HTTPS connection errors. Minor errors include a lack of Certificate Transparency (CT) information and/or use of SHA-1 certificates, obsolete cipher suites, and certain types of mixed content. In an effort to encourage […]

Researchers Urge Administrators to Replace SHA-1 Certificates with SHA-2

Research findings do not directly undermine the security of the Internet at large. Given the lessons learned with the MD5 full break, it is not advisable to wait until these become practically possible.