Category: vpn

Auto Added by WPeMatico

NSA Attacks Against Virtual Private Networks

Posted on By infossl
edwardsnowden, nsa, Security technology, vpn

A 2006 document from the Snowden archives outlines successful NSA operations against “a number of “high potential” virtual private networks, including those of media organization Al Jazeera, the Iraqi military and internet service organizations, and a number of airline reservation systems.” It’s hard to believe that many of the Snowden documents are now more than … Read More “NSA Attacks Against Virtual Private Networks” »

Security Vulnerabilities in Certificate Pinning

Posted on By infossl
academicpapers, certificates, maninthemiddleattacks, Security technology, vpn, vulnerabilities

New research found that many banks offer certificate pinning as a security feature, but fail to authenticate the hostname. This leaves the systems open to man-in-the-middle attacks. From the paper: Abstract: Certificate verification is a crucial stage in the establishment of a TLS connection. A common security flaw in TLS implementations is the lack of … Read More “Security Vulnerabilities in Certificate Pinning” »