tls   6561

« earlier    

The ROBOT Attack - Return of Bleichenbacher's Oracle Threat
Return of Bleichenbacher's Oracle Threat - ROBOT is the return of a 19-year-old vulnerability that allows performing RSA decryption and signing operations with the private key of a TLS server.
tls  rsa  security 
3 days ago by geetarista
Internet protocols are changing | APNIC Blog
Now, significant changes to the core Internet protocols are underway. While they are intended to be compatible with the Internet at large (since they won’t get adoption otherwise), they might be disruptive to those who have taken liberties with undocumented aspects of protocols or made an assumption that things won’t change.
dns  encryption  http  tls  internet 
3 days ago by whip_lash
Internet protocols are changing | APNIC Blog
Covering QUIC, HTTP/2, TLS 1.3(a major rewrite), and DOH(DNS over HTTP)
dns  tls  quic  http  http2  internet  protocol  networking  2017 
3 days ago by mechazoidal
Internet protocols are changing
per @mnot. HTTP/2; TLS 1.3; QUIC and UDP; and DOH (DNS over HTTP!)
crypto  encryption  http  https  protocols  http2  tls  quic  udp  tcp  dns  tunnelling 
3 days ago by jm
Internet protocols are changing | APNIC Blog
“encryption is one of best tools we have to ensure that protocols can evolve”
encryption  protocols  http  tls 
3 days ago by jhealy
Extended Validation is Broken
Extended Validation Is Broken — »…It took about 48 hours from incorporation to the issuance of the certificate…« By @iangcarroll
identity  security  tls  ssl  certificate  tweet 
3 days ago by
WrapAPI: APIs for the whole web
Build an API on top of any existing website or find an API for a site that you need
SSL  TLS  webAPIU  debug  proxy  service  wrapper  API  network  traffic 
4 days ago by asteroza
Make SSL boring again
It may (or may not!) come as surprise, but a few months ago we migrated Cloudflare’s edge SSL connection termination stack to use BoringSSL: Google's crypto and SSL implementation that started as a fork of OpenSSL.
CloudFlare_Blog  BoringSSL  SSL  TLS 
6 days ago by GameGamer43
Spinner: Semi-Automatic Detection of Pinning without Hostname Verification
We present Spinner, a new
tool for black-box testing for this vulnerability at scale that does
not require purchasing any certificates. By redirecting traffic to
websites which use the relevant certificates and then analysing the
(encrypted) network traffic we are able to determine whether the
hostname check is correctly done, even in the presence of certificate
pinning. We use Spinner to analyse 400 security-sensitive Android
and iPhone apps. We found that 9 apps had this flaw, including
two of the largest banks in the world: Bank of America and HSBC.
We also found that TunnelBear, one of the most popular VPN apps
was also vulnerable. These apps have a joint user base of tens of
millions of users.
tls  cybersecurity  app  banking  compsci  privacy  certificatepinning 
8 days ago by bwiese

« earlier    

related tags

2017  access  acme  adolescence  aes  android  android7  anonymous  apache  api  app  art  assistant  asymmetrical  attack  audit  authentication  authority  automation  banking  book  book_reviews  boringssl  browser  ca  centralization  cert  certificate  certificatepinning  certificates  charlotte_salomon  cheatsheet  chrome  cisco  cli  client  cloud  cloudflare_blog  compsci  cookbook  cookies  crypto  cryptography  csr  ct  cybersecurity  data  debug  debugging  dec17  decryption  development  disclosure  dns  dnssec  docker  emacs  encryption  example  fingerprint  fingerprinting  frida  go-lang  go  golang  google-chrome  google  haproxy  hasdomain  haslogo  hello  history_of_computing  home  howto  http  http2  httprequest  https  identity  ietf  iis  important  infosec  interception  internet  intro  ios  iptest  isp  isscary  issuance  j_m_coetzee  java  jdk  john_le_carré  linux  lived  logging  m_john_harrison  machinelearning  management  metasploit  microservice  microsoft  middlebox  mitm  mobile  monitoring  monnitoring  net  network-protocol  network  networking  nginx  nick_harkaway  nov17  on-premisis  openssl  oracle  otf  paper  papers  pentest  performance  photography  pki  privacy  progressivewebapp  proprietary  protocol  protocols  proxy  quic  reading  reference  research  robot  rsa  security  server  service  short  signature  sniffing  software  ssl  standard  sysadmin  systems  tcp  test  testing  tls-n  tokenbinding  tool  tools  traffic  troubleshooting  tunnelling  tutorial  tweet  u2f  ubuntu  udp  useful  vault  vnc  vpn  web  webapiu  webdev  webservice  windows-server  windows  windows2008  work  wrapper  x509  生成  证书 

Copy this bookmark: