IBM working to redefine IPS, SSL is failing and more

On Tuesday, IBM unveiled their latest intrusion-protection system, that offers resilience to network-based but also application controls and URL filtering. This combined capability offers cost savings and enhanced capabilities. Via Network World, more here. SSL is no longer the catch all, it needs duct tape! In this excellent article by Kenneth van Wyk, he explores […]

SSL : Implementation Gone Wrong

During the recent security conference Hack In The Box, security researchers from Qualys Labs showcased the fruits of their efforts to scan the Internet’s websites for proper implementation of security features like SSL and its successor TLS.  What they found could only be described as dismal. SSL stands for Secure Sockets Layer, and TLS for […]