ZDNet

Raccoon attack allows hackers to break TLS encryption 'under certain conditions'

From on-premise to hybrid environments and the cloud, we have you covered. Read now A team of academics has disclosed today a theoretical attack on the TLS cryptographic protocol that can be used to ...
Threat Post

TLS 1.3 Working Group Has Consensus to Deprecate RSA Key Transport

RSA key transport cipher suites could be deprecated in TLS 1.3 in favor of Diffie-Hellman Exchange or Elliptic curve Diffie-Hellman. The IETF working group responsible for the TLS 1.3 standard is ...
Linux Journal

Strengthening Diffie-Hellman in SSH and TLS

Conjecture on cracked primes for the Diffie-Hellman asymmetric algorithm is in recent news, suggesting that several nations have broken primes in common use and can read all traffic: [root@host ~]# ...
ZDNet

Logjam security flaw leaves top HTTPS websites, mail servers vulnerable

On Tuesday, a team of computer scientists released a report (.PDF) documenting cryptographic problems with the Diffie-Hellman key exchange, a popular algorithm used by Internet protocols to agree on a ...
Threat Post

Mozilla Reduces Threat of Export-Grade Crypto to Firefox

The Firefox browser will now deny TLS connections to servers using weak Diffie-Hellman keys. Logjam was one of several downgrade attacks discovered in the last 18 months that could theoretically allow ...
PC World

Firefox blocks websites with vulnerable encryption keys

To protect users from cryptographic attacks that can compromise secure web connections, the popular Firefox browser will block access to HTTPS servers that use weak Diffie-Hellman keys. Diffie-Hellman ...
Hackaday

Security This Week: Racoons In My TLS, Bypassing Frontends, And Obscurity

Raccoon is the next flashy security flaw with a name, cute logo, and a website (and a PDF). Raccoon is a flaw in TLS version prior to 1.3, and seems to be a clever bit of work, albeit one with limited ...