POODLE and The Curse of Backwards Compatibility
This post was written by Martin Lee Old protocol versions are a fact of life. When a new improved protocol is released, products still need to support the old version for backwards compatibility. If...
View ArticleUnderstanding Logjam and Future-Proofing Your Infrastructure
On May 19th, 2015 a team of researchers (Henninger et. al) published a paper with the title “Imperfect Forward Secrecy: How Diffie-Hellman Fails in Practice”. The paper can be divided in two sections:...
View ArticleHiding in Plain Sight: Malware’s Use of TLS and Encryption
Introduction TLS (Transport Layer Security) is a cryptographic protocol that provides privacy for applications. TLS is usually implemented on top of common protocols such as HTTP for web browsing or...
View ArticleWhere is my (intermediate) TLS certificate?
When dealing with TLS connections, it is important to understand how a client (in most cases this is a web browser) will be acting. Let’s quickly check some of the steps that are happening when a TLS...
View ArticleETSI/IQC’s 4th Workshop on Quantum-Safe Cryptography
Quantum computers could break commonly used public key algorithms, which would affect cryptography used today. For that reason, there has been great attention on quantum safe crypto recently. We have...
View ArticleThe impact on network security through encrypted protocols – HTTP/2
This is the start of a planned series of posts around the impact that new protocols are making on the way many of us deal with network security today. The protocols we have been using on the internet,...
View ArticleThe impact on network security through encrypted protocols – TLS 1.3
This post is the second part of my series around the impact of encrypted protocols on network security. You can find the first article about HTTP/2 here:...
View ArticleThe Impact on Network Security Through Encrypted Protocols – QUIC
QUIC stands for Quick UDP Internet Connections, an experimental protocol designed and deployed by Google.
View ArticleTLS 1.3 and Forward Secrecy: Count Us In, and Here’s Why
The damage a hacker can do after discovering a server’s private encryption key is about to shrink considerably. That’s thanks to important improvements in the coming Internet Engineering Task Force...
View ArticleTo the Depth of TLS Invisibility and Beyond
Encrypted traffic is changing the threat landscape. Today’s digital businesses rely on encryption of application traffic for information sharing. The fact that the Internet is becoming increasingly...
View ArticleNetwork Security Efficacy in the Age of Pervasive TLS Encryption
A Reality Check on Firewall Visibility One question which I love to ask next-generation firewall (NGFW) and intrusion prevention system (IPS) administrators is whether they have seen a gradual decline...
View ArticleSeamless shopping with Room & Board
In the bustling world of retail, the customer experience reigns supreme. Retailers are continuously seeking innovative ways to enhance customer engagement and satisfaction. One pioneer in this… Read...
View ArticleYou’re automated for success with Cisco’s Continuing Education program
The tedious task of logging Continuing Education (CE) credits can be a frustrating speed bump in the certification journey. The Learning and Certifications team gets that and has added automation to…...
View ArticleCisco Live Melbourne SOC Report
Executive Summary. 1 The Team… 2 Team Leaders. 2 Core Infrastructure and Threat Hunting. 2 Threat Hunting. 2 Build and Operation. 2 SOC Architecture. 2 Cisco Secure Access Enables ZTNA for SOC… Read...
View ArticleImproved Area Monitoring with New Meraki Smart Cameras
Meraki’s smart cameras offer businesses an easy-to-deploy way to monitor their physical security, with the added benefit of being managed entirely on the cloud. Various Meraki cameras are deployed in…...
View ArticleSimplifying Firewall Management: Cisco Defense Orchestrator Nears FedRAMP®...
Cisco continues its focus on FedRAMP® Authorization for our government customers with yet another solution, Cisco Defense Orchestrator (CDO), which has now achieved FedRAMP In-Process status. With …...
View ArticleCelebrating women’s inclusion in the climate innovation space
International Women’s Day (IWD) gives us time to reflect on the achievements women have made before us, the unique challenges women may face today as they continue to break barriers, and what the f…...
View ArticleMitigating Lateral Movement with Zero Trust Access
Security service edge (SSE) technology was created to protect remote and branch users with a unified, cloud-delivered security stack. To understand how SSE solutions protect organizations and their…...
View ArticleCloud Security API Updates Improve User’s Experience
Welcome “Investigate API” into the Cisco Cloud Security API experience Developers and engineers can now leverage the new Umbrella API authentication to create API keys. This includes access to… Read...
View ArticleHIMSS 2024 Know Before You Go
The future of healthcare is coming into focus! Now more than ever, we believe that technology is a critical enabler to reinventing our care delivery model. We have an opportunity to bring accessible …...
View Article
More Pages to Explore .....