March 2013 - Entrust, Inc. 1-6 of 6
RC4, CBC, what the …?
BEAST & Lucky Thirteen attacks said, “Prioritize RC4 cipher suite.” AlFBPPS attack said, “RC4 is old and crummy. CBC-mode would be better."
Mobile Devices Empower Customers in Fight Against Fraud
Mobile, when implemented correctly, has the power to deliver unmatched security and user convenience, while also enabling new business processes that actually lead to delighting customers and engaging them in the fight against fraud.
IETF 86 – Web PKI Working Group
At the IETF 86 meeting in Orlando last week, there was a working group meeting discussing the operations of the Web PKI. At the previous IETF 85 meeting a birds-of-a-feather was held to discuss the purpose of having such a group.
Mobile World Congress Reflects Importance of Mobility
February 2013 was a busy month for Entrust. We exhibited at Mobile World Congress in Barcelona, Spain, while concurrently exhibiting at the RSA Conference in San Francisco.
RC4 Attack in SSL/TLS
The team of Nadhem AlFardan, Dan Bernstein, Kenny Paterson, Bertram Poettering and Jacob Schuldt published an RC4 encryption attack in SSL/TLS.
SSL Certificate Status Checking
As part of its effort to promote SSL certificate best practices, the CA Security Council (CASC) has offered a couple of blogs on the importance of revocation checking