ZDNet

Advertisers can track users across the Internet via TLS Session Resumption

An academic paper published last month has shed new light on a new user tracking technique that takes advantage of a legitimate mechanism associated with the TLS (Transport Layer Security) protocol ...
Linux Journal

Securing Sendmail with TLS

One of the most common uses of network systems is for e-mail-based communications. As such, a great deal of attention has been given to securing e-mail systems. However, most of this focus has been in ...
Hackaday

Security This Week: Racoons In My TLS, Bypassing Frontends, And Obscurity

Raccoon is the next flashy security flaw with a name, cute logo, and a website (and a PDF). Raccoon is a flaw in TLS version prior to 1.3, and seems to be a clever bit of work, albeit one with limited ...
ZDNet

Google and Mozilla's message to AV and security firms: Stop trashing HTTPS

A surprisingly large number of antivirus and security products are undermining HTTPS connections and exposing browser users to decryption attacks, according to a study by researchers at Google, ...
EDN

Understanding LZS Compression in TLS security: A Tutorial

In data communications it is desirable to have faster transfer rates at lower costs. Data compression addresses these demands by reducing the amount of data that must be transferred over a medium of ...
Infosecurity-magazine.com

Breaking Bad – Are You Ready to Lawfully Intercept TLS 1.3?

Almost every year, there is a call from a politician, often from the US, to ban the use of encrypted communication platforms. Occasionally this escalates to demands for “backdoors” to be placed in ...
CSOonline

6 ways HTTP/3 benefits security (and 7 serious concerns)

HTTP/3 brings improved performance and reliability, along with various security and privacy benefits, but there are some noteworthy challenges. HTTP3, the third official version of hypertext transfer ...