Previous
SSL market heats up
News Cisco Systems became the latest company to introduce a virtual private network (VPN) product based on secure sockets layer (SSL) encryption when it announced on Monday that it would add the feature to its 3000 series of network concentrators.
[November 11, 2003, 10:55]
SSL VPNs to take over remote access
News Virtual private networks built on the Web's secure sockets layer (SSL) are tipped as the hottest way to give employees and business partners access to corporate applications. Aventail, one of the first in this field as a service-provider, has moved...
[January 24, 2003, 16:52]
Aventail's SSL VPN security locks down PDAs
News Another big plus is that Aventail's SSL VPN platform is network independent. A security solution using SSL VPN In the light of these security concerns, Aventail's announcement of the first SSL VPN to support full anywhere, anytime application...
[June 3, 2003, 10:15]
SSL-based VPNs are gaining favour
News How SSL-VPNs work Such complications can be avoided with an SSL-based VPN because the user simply uses a Web browser and enters the URL of the SSL/proxy server. One alternative to a traditional VPN is an SSL-based VPN.
[August 27, 2002, 16:01]
Netilla launches VPN SSL solution for MetaFrame
News Reggie Best, the chief executive of Netilla, said that its application was easier to install and maintain because it used the browser protocol SSL to secure the VPN, while Secure Gateway uses IPSec, which requires the installation of software on...
[September 13, 2004, 13:40]
Researcher demonstrates SSL attack
News A security researcher has demonstrated a way to hijack Secure Sockets Layer (SSL) sessions to intercept login data. Moxie Marlinspike, who spoke at the Black Hat security conference on Wednesday, explained how to subvert an SSL session by...
[February 20, 2009, 14:21]
Researchers exploit SSL and domain flaws
News Marlinspike said a flaw in the way browsers and mail clients implement Secure Sockets Layer (SSL) allows for so-called "man-in-the-middle" attacks in which an attacker could trick browsers into presenting the site as legitimate.
[July 30, 2009, 10:55]
Researcher delays release of SSL exploit
News Mike Perry, a reverse engineer and developer at Riverbed Technology, said he announced on the Bugtraq email list a year ago a common flaw with the way websites implement the SSL (Secure Sockets Layer) protocol, which is designed to protect people...
[August 26, 2008, 11:16]
Microsoft is forced to issue SSL patch for IE
News A flurry of new Microsoft Security Bulletins, updates and patches is following closely on the heels of the ground-shaking revelation that Internet Explorer has a critical flaw in the way it handles SSL.
[September 9, 2002, 16:59]
More VPN choice -- why not base them on SSL?
News Q: What are SSL-based VPNs? Such applications would be accessible using the SSL-based VPN approach. Where and how does SSL fit in? Salamone: The Secure Sockets Layer (SSL) VPN is a relatively new concept that's gaining interest in some corporations.
[August 27, 2002, 15:02]
Security flaw throws SSL back on quick-fix drawing board
News Although there are no known real-world attacks taking advantage of this SSL flaw, software vendors promise to have patches that mask the error messages. Because a session key is randomly generated for each session, it's possible for a hacker to...
[June 29, 1998, 9:19]
'Friendly rootkits' proposed for safe e-commerce
News Secure socket layer, or SSL, certificates have made e-commerce more secure, according to VeriSign, but a US security researcher believes benevolent rootkits served by retailers might do a better job. SSL certificates are issued to merchants by...
[November 28, 2007, 15:18]
MySQL database to get a revamp
News MySQL AB plans to make major changes to its namesake open-source database technology by year's end, including support for SSL and nested queries. New with 4.0 is support for the Unicode character set, the SSL (Secure Sockets Layer) protocol...
[October 10, 2001, 14:08]
Zero-day flaw found in web encryption
News A zero-day flaw in the TLS and SSL protocols, which are commonly used to encrypt web pages, has been made public. TLS and its predecessor, SSL (Secure Sockets Layer), are typically used by online retailers and banks to provide security for web...
[November 5, 2009, 14:54]
Demand for IT professionals rises
News According to a survey from Salary Services Limited (SSL), over the last six months 122,987 IT vacancies have been advertised as the employment market recovers from its blues. The SSL research, which is published jointly with Computer Weekly, shows...
[May 16, 2007, 18:13]
Expired VeriSign certificates cause confusion
News Users have experienced problems when accessing SSL-encrypted pages on sites whose certification depended on VeriSign's own expired certificates. As a result, users attempting to establish SSL session with sites that had not updated their CA...
[January 9, 2004, 12:59]
Firm aims to simplify internal security
News SSH Tectia is unlike traditional SSL-based solutions because it does not require any additional hardware, changes to the corporate IP infrastructure or application development -- legacy or not. He admits this may sound like an IPSEC or SSL VPN...
[October 31, 2003, 16:00]
Netscape secure socket not secure
News In order for this Netscape SSL vulnerability to be exploited, certain conditions need to be met. On May 12, 2000, CERT, an Internet security organisation, reported on a security deficiency regarding the way Netscape's browser validates SSL (Secure...
[May 19, 2000, 9:24]
Start-up claims secure VoIP on any network, anywhere
News SSL has become a popular alternative to VPNs that use IPsec encryption and tunnelling for connecting remote workers to corporate networks. Because SSL VPNs give access through a standard Web browser instead of through an IPsec client running on...
[September 8, 2004, 10:20]
Open source renders patching a problem
News In addition, almost every reputable site that asks you for any personal information will do so using the Secure Sockets Layer (SSL) protocol. The SSL_OP_MSIE_SSLV2_RSA_PADDING option is a common configuration workaround that disables a verification...
[November 17, 2005, 11:10]
