"US-CERT Warns HTTPS Inspection May Degrade TLS Security"

Research reveals that security is weakened when HTTPS inspection tools are ran in TLS traffic streams, which the Department of Homeland Security has now released a warning about. All HTTPS interception products pose potential dangers of man-in-the-middle attacks if proper validation is not performed. This article further discusses ways in which HTTPS inspection tools can significantly reduce the security of the TLS process.

https://threatpost.com/us-cert-warns-https-inspection-may-degrade-tls-security/124375/

Submitted by Anonymous on