Ars Technica

SSL/TLS Accelerated by GPUs

SSL offload to GPU's died about a decade ago, when AES-NI became a meaningful thing. You can do line rate 10G AES on a single cores worth of AES-NI in x86 land, taking the latency hit of pushing that ...

OpenSSL 4.0 encrypts what TLS previously revealed

The crypto library removes legacy code, introduces ECH for better privacy, and prepares for post-quantum cryptography.
ZDNet

Amazon introduces new open-source TLS implementation 's2n'

Unless you haven't been on the net for a year, you know Transport Layer Security/Secure Socket Layer (TLS/SSL) software, such as OpenSSL, have had numerous serious security problems. Now, Amazon, is ...
Ars Technica

Web served, part 2: Securing things with SSL/TLS

If you’ve followed the steps we laid out in our initial feature, you’ve got a safe Nginx server all set up and working. It’s serving your static pages without any issue. We don’t yet have a database, ...
TechRepublic

Here’s how to disable outdated TLS and SSL versions in Apache (and why you should)

Here’s how to disable outdated TLS and SSL versions in Apache (and why you should) Your email has been sent Older TLS and SSL protocols can pose a security risk and will no longer be supported as of ...
Bleeping Computer

TLS Certs Outliving Domain Ownership Open Door to MitM and DoS

Digital certificates that allow secure data exchange over the internet can survive domain ownership transfer and can open the door for malicious actions to the previous holder. An SSL/TLS certificate ...
PC World

‘CRIME’ attack abuses SSL/TLS data compression feature to hijack HTTPS sessions

The ‘CRIME’ attack announced last week exploits the data compression scheme used by the TLS (Transport Layer Security) and SPDY protocols to decrypt user authentication cookies from HTTPS (HTTP Secure ...

Why October 1, 2026, could be the day SSL/TLS certificates break the internet

The 200-day certificate limit starts March 15. Is your organization ready for the fallout?