Skip to main content

Posts

Showing posts from 2018

Featured

Will TLS 1.3 Ruin Security Production Tools?

With the ever-escalating cyberthreats, newer versions of encryption protocols have been developed to address vulnerabilities and support stronger, more secure ciphers and algorithms.

The Background
The Transport Layer Security (TLS) protocol was developed as a successor to the Secure Sockets Layer (SSL).  SSL and TLS are mostly the same cryptographic protocols running at the application layer of the Open Systems Interconnection (OSI) model. Both provide authentication and data encryption between servers, devices, and applications operating over a network.  SSL 1.0 was initially developed by Netscape in 1995 with SSL 2.0 version released for general use. In 1996, it was replaced by SSL 3.0 after several vulnerabilities were discovered. As more vulnerabilities were found, both SSL versions were deprecated in 2011 and 2015 respectively.

TLS 1.0 was released in 1999 through the Internet Engineering Task Force (IETF) organization to standardize SSL. While both SSL and TLS are mostly the same,…

Will TLS 1.3 Ruin Security Production Tools?

How Cybercriminals Attack the Internet of Things

Should a Company Retaliate Against Cyberattacks?

How Corporate Governance Upholds Information Security

10 Steps to Evaluate Cloud Service Providers for FedRAMP Compliance

Choosing the Right Security Framework to Fit Your Business

Meeting Identity and Access Management Challenges in the Era of Mobile and Cloud