Domain fronting is a technique to hide the true origin of HTTPS requests by hiding the real domain name encrypted inside a legitimate TLS request.
Tag: TLS
Public and free WiFi: Can I safely use it?
We’ve got into the habit of expecting internet access wherever we go. But data costs can be expensive, and out of…
Record breaking HTTPS DDoS attack
Last week, Cloudflareblocked the largest HTTPS DDoSattack on record. The attack amassed some 26 million requests per second (rps). The previous…
Let’s Encrypt to revoke “mis-issued” certificates
If you use a Let’s Encrypt SSL/TLS certificate, you may wish to check your account over the coming days. Revocation is…
What are SSL certificates?
Secure Sockets Layer (SSL) certificates are what cause your browser to display a padlock icon, indicating that your connection to a…
Researchers go hunting for Netflix’s Bandersnatch
A new research paper from the Indian Institute of Technology Madras explains how popular Netflix interactive show Bandersnatch could fall victim to…
HTTPS: why the green padlock is not enough
When goods get sold in large quantities, the price goes down. This might not be the first law of economics, but…
A week in security (March 26 – April 01)
Last week, we looked at the thought process behind creating a ransomware decryptor, the inner workings of QuantLoader, the ways one…
TLS 1.3 is nearly here
TLS stands for “Transport Layer Security” and it’s rather important. Why’s that? Oh, I’m glad you asked. Here’s me, yelling my…