Tag: TLS

Blog home

---

How to inspect TLS encrypted traffic

By Erik Hjelmvik on 14 Oct 2024

Guest Post: Three methods to decrypt TLS traffic, how each works, and when to use them.

SMTP downgrade attacks and MTA-STS

By Robert Alexander on 4 Oct 2024

Guest Post: Auditing prominent mail providers to discover how they handle email encryption and show how MTA-STS can help improve email security.

[Podcast] Calling time on DNSSEC: Part 1 of 2

By George Michaelson on 27 Jun 2024

Geoff Huston discusses the market failure of DNSSEC in deployment.

Three of the best: Security

By Dan Fidler on 8 Jan 2024

Here are APNIC Blog’s top three posts related to Security for 2023.

Security control changes due to TLS Encrypted Client Hello

By Kathleen Moriarty on 15 Nov 2023

Guest Post: How will the forthcoming TLS Encrypted Client Hello changes affect your current set of defences?

HSTS preload adoption and challenges

By Robert Alexander on 26 Jul 2023

Guest Post: HSTS preload is a mitigation against a specific attack. How widely is it used?

Delegated domain verification

By Shivan Sahib on 3 Jul 2023

Guest Post: When it comes to managing TLS certificates, one often-overlooked aspect is delegated domain verification.

RIPE 86 bites — QUIC and active network management

By Geoff Huston on 8 Jun 2023

What is challenging active network management?

Notes from IETF 116

By Geoff Huston on 12 Apr 2023

NTP security, transition mechanisms, TCP delayed ACKs, alternate name systems, and more from IETF 116.

Not that simple: Email delivery in the 21st century

By Florian Holzbauer on 2 Mar 2023

Guest Post: How do real-world deployments keep up with increasing complexity of email delivery and security.

Top