ZDNet

'Triple handshake' bug another big problem for TLS/SSL

You could miss it if you weren't paying close attention through all the Heartbleed blather, but last week Apple patched a severe problem in their TLS/SSL code in iOS and OS X. An attacker in a ...
Bleeping Computer

Attackers Evade Detection By Randomizing TLS Handshake Ciphers

Cybercriminals are using a new method to evade detection to make sure that the traffic generated by their malicious campaigns is not being detected, a technique based on SSL/TLS signature ...
Threat Post

Apple SSL Vulnerability Affects OSX Too

The certificate-validation vulnerability that Apple patched in iOS yesterday also affected Mac OS X up to 10.9.1, the current version. The certificate-validation vulnerability that Apple patched in ...
TechRepublic

Keep Servers Up and Running and Attackers in the Dark

An SSL/TLS handshake requires at least 10 times more processing power on a server than on the client. SSL renegotiation attacks can readily take advantage of the asymmetric workload. Attackers request ...
Design-Reuse

Embracing a More Secure Era with TLS 1.3

Transport Layer Security (TLS) is the protocol that underpins secure client/server communications over the Internet. TLS guarantees this by providing the cryptographic functions of authentication, ...