Cloud Security Alliance

Why Zero Trust Needs to Start at the Session Layer

Explains why Zero Trust must start at the session layer, via NHP, to hide endpoints and reduce AI-driven attack surfaces.
ZDNet

Advertisers can track users across the Internet via TLS Session Resumption

An academic paper published last month has shed new light on a new user tracking technique that takes advantage of a legitimate mechanism associated with the TLS (Transport Layer Security) protocol ...
ZDNet

Google and Mozilla's message to AV and security firms: Stop trashing HTTPS

A surprisingly large number of antivirus and security products are undermining HTTPS connections and exposing browser users to decryption attacks, according to a study by researchers at Google, ...
Linux Journal

Securing Sendmail with TLS

One of the most common uses of network systems is for e-mail-based communications. As such, a great deal of attention has been given to securing e-mail systems. However, most of this focus has been in ...
Bleeping Computer

Google Chrome's new post-quantum cryptography may break TLS connections

Some Google Chrome users report having issues connecting to websites, servers, and firewalls after Chrome 124 was released last week with the new quantum-resistant X25519Kyber768 encapsulation ...
Infosecurity-magazine.com

Breaking Bad – Are You Ready to Lawfully Intercept TLS 1.3?

Almost every year, there is a call from a politician, often from the US, to ban the use of encrypted communication platforms. Occasionally this escalates to demands for “backdoors” to be placed in ...
EDN

Understanding LZS Compression in TLS security: A Tutorial

In data communications it is desirable to have faster transfer rates at lower costs. Data compression addresses these demands by reducing the amount of data that must be transferred over a medium of ...