VPN security
Learn how to use virtual private networks (VPN) to control remote access. This resource guide offers news and tips on VPN security benefits as well as vulnerabilities and threats, plus information on TLS, SSL and Ipsec.
New & Notable
VPN security News
-
January 30, 2018
30
Jan'18
Critical Cisco ASA vulnerability patched against remote attacks
Experts urge users to patch a new Cisco ASA vulnerability that earned the most critical CVSS score of 10.0 and could lead to remote code execution and denial-of-service attacks.
-
January 17, 2018
17
Jan'18
Cloudflare Access takes on VPNs with reverse proxy approach
Cloudflare takes inspiration from Google's BeyondCorp with a new service called Cloudflare Access, which aims to replace corporate VPNs and embrace perimeter-less security.
-
February 27, 2017
27
Feb'17
Chrome backs out of TLS 1.3 support after proxy issues
After Google rolled out the latest version of Chrome, Blue Coat proxy software issues prompt rollback of TLS 1.3 support in latest version of Chrome browser.
-
October 13, 2016
13
Oct'16
Researchers demonstrate undetectable encryption backdoor in crypto keys
Academic researchers show how to place undetectable encryption backdoors in cryptographic keys and passively decrypt data, which could undermine confidence in certain algorithms.
VPN security Get Started
Bring yourself up to speed with our introductory content
-
IPsec (Internet Protocol Security)
IPsec, also known as the Internet Protocol Security or IP Security protocol, defines the architecture for security services for IP network traffic. Continue Reading
-
SSL VPN (Secure Sockets Layer virtual private network)
An SSL VPN is a type of virtual private network that uses the Secure Sockets Layer protocol -- or, more often, its successor, the Transport Layer Security (TLS) protocol -- in standard web browsers to provide secure, remote-access VPN capability. Continue Reading
-
Secure Sockets Layer (SSL)
Secure Sockets Layer (SSL) is a computer networking protocol for securing connections between network application clients and servers over an insecure network, such as the internet. Continue Reading
Evaluate VPN security Vendors & Products
Weigh the pros and cons of technologies, products and projects you are considering.
-
OpenVPN Access Server is an SSL VPN based on open source software
Expert Karen Scarfone takes a look at the OpenVPN Access Server SSL VPN for securing network traffic by providing encrypted tunnels to the enterprise. Continue Reading
-
Pulse Connect Secure offers a variety of authentication options
Expert Karen Scarfone takes a look at the Pulse Connect Secure series of SSL VPNs for securing the connection between clients and networks through encrypted tunnels. Continue Reading
-
SonicWALL SSL VPN provides security for organizations of any size
The SonicWALL SSL VPN protects remote client devices by creating a secure connection to enterprise networks, with many options for customized security features. Continue Reading
Manage VPN security
Learn to apply best practices and optimize your operations.
-
VPNFilter malware: How can users protect themselves?
A new threat named VPNFilter was discovered by cybersecurity researchers after home and office routers were compromised. Learn how this malware works with Judith Myerson. Continue Reading
-
Are browsers using the HTTP/2 protocol vulnerable to HEIST attacks?
HEIST, a new HTTP/2 protocol exploit, can steal encrypted content from HTTPS traffic. Expert Michael Cobb explains how this attack works and how to stop it. Continue Reading
-
How can an HTTPS session get hijacked with the Forbidden attack?
An HTTPS session with a reused nonce is vulnerable to the Forbidden attack. Expert Nick Lewis explains how the attack works, and how to properly secure HTTPS-authenticated sites. Continue Reading
Problem Solve VPN security Issues
We’ve gathered up expert advice and tips from professionals like you so that the answers you need are always available.
-
How can attackers exploit a buffer underflow vulnerability?
A buffer underflow was found to be caused by a vulnerability in strongSwan's open source VPN. Learn how this is possible and how attackers can exploit it with Judith Myerson. Continue Reading
-
What VPN alternatives should enterprises consider using?
VPN vulnerabilities in products from popular vendors were recently found to enable serious threats. Discover how detrimental these threats are and alternatives to the use of VPNs. Continue Reading
-
How does BENIGNCERTAIN exploit Cisco PIX firewalls?
The BENIGNCERTAIN exploit affects certain versions of Cisco systems using the IKEv1 protocol. Expert Nick Lewis explains what the protocol does and how the vulnerability works. Continue Reading