Let’s Encrypt scales rate limits to prepare for a billion active certificates
Guest Post: Let’s Encrypt have evolved rate limits to better serve subscribers and keep the service healthy.
Tag: TLS
Three of the best: ‘How to…’
‘How to’ posts are a great way to learn how to use a new tool, troubleshoot problems, or perform advanced tasks. Here are three of 2024’s best.
Post-Quantum Cryptography
Using Moore’s Law, a computer 20 years into the future is predicted to be around 10,000 times more capable than today’s computation capabilities. Geoff Huston explores some practical implications.
How to inspect TLS encrypted traffic
Guest Post: Three methods to decrypt TLS traffic, how each works, and when to use them.
SMTP downgrade attacks and MTA-STS
Guest Post: Auditing prominent mail providers to discover how they handle email encryption and show how MTA-STS can help improve email security.
[Podcast] Calling time on DNSSEC: Part 1 of 2
Geoff Huston discusses the market failure of DNSSEC in deployment.
Three of the best: Security
Here are APNIC Blog’s top three posts related to Security for 2023.
Security control changes due to TLS Encrypted Client Hello
Guest Post: How will the forthcoming TLS Encrypted Client Hello changes affect your current set of defences?
HSTS preload adoption and challenges
Guest Post: HSTS preload is a mitigation against a specific attack. How widely is it used?
Delegated domain verification
Guest Post: When it comes to managing TLS certificates, one often-overlooked aspect is delegated domain verification.