TLS 1.3
Enabling TLS 1.3 Certificate – Are You Ready for Moving Forward?
Businesses are often reluctant to embrace new technologies due to assumed dependencies, perceived complications, and unclear information about the advantages. Digital communication security is not exempt from this happening and. The post ...
Raccoon Attack: Researchers Find A Vulnerability in TLS 1.2
Bad news: there’s a vulnerability in TLS 1.2. Good news: researchers say it’s “very hard to exploit” and major vendors have already released security patches for it. A team of... The post ...
DNS over TLS and DNS over HTTPS
By Jamie Brim, Corelight Security Researcher In this post, we’ll explore DNS over TLS (DoT) and DNS over HTTPS (DoH). DoT and DoH were invented to address privacy concerns associated with cleartext ...
Detecting GnuTLS CVE-2020-13777 using Zeek
By Johanna Amann, Software Engineer, Corelight CVE-2020-13777 is a high severity issue in GnuTLS. In a nutshell, GnuTLS versions between 3.6.4 (released 2018-09-24) and 3.6.14 (2020-06-03) have a serious bug in their ...
A Seismic Shift for Decrypted Visibility in the Cloud
There is a seismic shift happening in the cloud. Two great, tectonic forces of change are colliding and creating unprecedented disruption for security, DevOps and cloud professionals. Ultimately, this shift has prompted ...
TLS 1.3: Everything you need to know
TLS 1.3 was officially published as RFC 8446 last Summer. Here's everything you need to know about the newest version of the protocol. The post TLS 1.3: Everything you need to know ...
TLS 1.3 is nearly here
TLS 1.3 is nearly upon us, and with it comes a more secure way to do business online. We look at some of the changes coming into force soon. Categories: Security world ...
You Can Now Help Identify Middleboxes Holding Back TLS 1.3 Adoption
TLS 1.3 promises great improvements for the encrypted Web, both in terms of security and performance. However, its adoption has been held back for the past year by SSL/TLS proxies and other ...