Google: 80% of Android apps encrypt traffic by default
Slow progress on encrypting Android app communications, but it's finally picking up pace.
Slow progress on encrypting Android app communications, but it's finally picking up pace.
US spy agency issues an alert to enterprise organizations that decrypt TLS-protected communications as part of the security strategy.
Changes follow a "significant" increase in error reports after Firefox 65 in December.
Government websites with expired certificates grows as US government shutdown enters its 27th day.
Browser makers take aim at the 20 year old protocol for creating secure connections between browsers and web servers.
Secure Shell (SSH) server keys or Transport Layer Security (TLS) private keys under threat from new side-channel attack.
Google reminds site owners that it will soon start removing trust for Symantec SSL certificates in Chrome.
Who better to verify that Google is Google than Google?
Beginning January Google will start using full page warnings in Chrome when the browser encounters sites using TLS/SSL or digital certificates signed with the aging SHA-1 hashing algorithm.
Metadata has been in the news over the last couple of years.
Anthony Caruana | 02 Aug | Read more
Google has forked out $17,500 to researchers for bugs fixes in Chrome 50, which addresses 20 security issues.
Siemens is working on a patch to address multiple industrial switches affected by the recently published DROWN vulnerability.
Heartbleed wasn't just an interesting Internet security story. It was a sign that one of the most fundamental building blocks relied on by many large companies was significantly flawed. Even more staggering was the revelation that the OpenSSL open source code library, that is responsible for SSL communications between systems, had another flaw that went undetected for over a decade.
Anthony Caruana | 24 Jun | Read more
Symantec today began offering multi-algorithm SSL certificates for Web servers that go beyond traditional crypto to include what's known as the Elliptic Curve Cryptography (ECC) Digital Signature Algorithm (DSA), which the firm says will be 10,000 times harder to break than an RSA-bit key. Certificates are used to prove site identity to the visitor through a validation check that involves the user's browser and the site certificate, and Symantec is making the argument that authentication will happen faster using this particular ECC algorithm.
Ellen Messmer | 13 Feb | Read more