Security News

Could TLS session resumption be another ‘super cookie’?
2018-10-25 09:51

Researchers think they’ve spotted a tracking technique that nobody has been paying attention to - TLS session resumption.

You like HTTPS. We like HTTPS. Except when a quirk of TLS can smash someone's web privacy
2018-10-19 07:04

Never-closed browsers and persistent session tickets make tracking a doddle Analysis Transport Layer Security underpins much of the modern internet. It is the foundation of secure connections to...

Browser vendors unite to end support for 20-year-old TLS 1.0
2018-10-16 22:00

Almost everyone has now migrated to TLS 1.2, and a few have moved to TLS 1.3.

Major Browsers to Kill TLS 1.0, 1.1
2018-10-16 12:16

All major web browsers will deprecate support for the older Transport Layer Security (TLS) 1.0 and 1.1 traffic encryption protocols in the first half of 2020. Apple, Google, Microsoft and Mozilla...

Web browsers sharpen knives for TLS 1.0, 1.1, tell protocols to dig their own graves for 2019
2018-10-16 07:03

IE, Edge, Safari, Firefox, Chrome, all planning to deprecate lousy old versions by 2020 Sysadmins and netizens, it's time to get serious about killing off old, buggy and insecure versions of...

Chrome, Firefox, Edge and Safari Plans to Disable TLS 1.0 and 1.1 in 2020
2018-10-15 18:18

All major web browsers, including Google Chrome, Apple Safari, Microsoft Edge, Internet Explorer, and Mozilla Firefox, altogether today announced to soon remove support for TLS 1.0 (20-year-old)...

OpenSSL 1.1.1 Released With TLS 1.3, Security Improvements
2018-09-11 16:01

The OpenSSL Project on Tuesday announced the release of OpenSSL 1.1.1, the new Long Term Support (LTS) version of the cryptographic software library. read more

How to enable DNS over TLS in Android Pie
2018-08-23 17:46

Jack Wallen shows you how to use the new Private DNS feature in Android Pie, which allows DNS over TLS for a more secure experience.

TLS developers should ditch 'pseudo constant time' crypto processing
2018-08-21 10:17

Fixes for Lucky 13-type bugs could still be vulnerable More than five years after cracks started showing in the Transport Layer Security (TLS) network crypto protocol, the author of the "Lucky 13"...

It's official: TLS 1.3 approved as standard while spies weep
2018-08-13 22:19

Now all you lot have to actually implement it An overhaul of a critical internet security protocol has been completed, with TLS 1.3 becoming an official standard late last week.…