Threat Post

SLOTH Attacks Up Ante on SHA-1, MD5 Deprecation

Researchers have demonstrated new collision attacks against SHA-1 and MD5 implementations in TLS, IKE and SSH. If you’re hanging on to the theory that collision attacks against SHA-1 and MD5 aren’t ...
ZDNet

Zero-day flaw found in web encryption

A zero-day flaw in the TLS and SSL protocols, which are commonly used to encrypt web pages, has been made public. Security researchers Marsh Ray and Steve Dispensa unveiled the TLS (Transport Layer ...
Dark Reading

Case Closed On SSL/TLS Authentication Vulnerability

OVERLAND PARK, KS--(Marketwire - August 19, 2010) - PhoneFactor, Inc., the leading global provider of phone-based multi-factor authentication services, declares victory on the SSL/TLS authentication ...
Ars Technica

PEAP-MS-CHAPv2 vs. PEAP-EAP-TLS for wireless authentication?

I'll start with the background. We have wireless deployed in certain locations at work. It's currently setup using WPA2-Enterprise with AES encryption and the authentication is EAP-TLS. All our ...
eWeek

EAP-TLS Detailed as WiFi Security Best Practice at SecTor

AI thrives on data but feeding it the right data is harder than it seems. As enterprises scale their AI initiatives, they face the challenge of managing diverse data pipelines, ensuring proximity to ...
Houston Chronicle

Can Two SSL Certificates Sit on the Same IP?

Using certificates to authenticate your business website is a must when dealing with Secure Sockets Layer or Transport Layer Security traffic. The Server Name Indication extension to the TLS protocol ...
Threat Post

Triple Handshake Attacks Target TLS Resumption, Renegotiation

A team of researchers has published a paper that explains a number of attacks against websites and Web-based applications running TLS. A team of researchers has published a paper that explains a ...