Threat Post

Covert Data Channel in TLS Dodges Network Perimeter Protection

Researchers have found a new covert data exchange technique that abuses the TLS protocol that can circumvent traditional network perimeter protections. Researchers have released a proof-of-concept ...
EDN

Understanding LZS Compression in TLS security: A Tutorial

In data communications it is desirable to have faster transfer rates at lower costs. Data compression addresses these demands by reducing the amount of data that must be transferred over a medium of ...
TechRadar

What is TLS and how does it work?

Implementing TLS on your website is complex if you don't have the right tools When you purchase through links on our site, we may earn an affiliate commission. Here’s how it works. TLS (Transport ...
PC World

‘CRIME’ attack abuses SSL/TLS data compression feature to hijack HTTPS sessions

The ‘CRIME’ attack announced last week exploits the data compression scheme used by the TLS (Transport Layer Security) and SPDY protocols to decrypt user authentication cookies from HTTPS (HTTP Secure ...
CSOonline

Security vs. visibility: Why TLS 1.3 has data center admins worried

A number of data center administrators from large financial, health care and retail corporations have begun to regard the current draft of the 1.3 version of the TLS protocol with increasing alarm.
AppleInsider

TLS vulnerability in popular iOS apps allows user data to be intercepted in man-in-the-middle attack

A number of popular apps are vulnerable to a 'man-in-the-middle'attack due to poorly implemented TLS protection, an examination of apps in the iOS App Store has revealed, with a security researcher ...
Infosecurity-magazine.com

TLS Protocol 1.3 Approved

The Internet Engineering Task Force (IETF) has published its 1.3 version of the Transport Layer Security (TLS) protocol. The application allows client/server applications to communicate over the ...