Black Hat 2011: SSL implementations are broken, says noted security researcher

Configuration issues and other errors mire the SSL implementations of thousands of legitimate websites, according to research conducted by SSL Labs, a research arm of Qualys Inc. Ivan Ristic, a noted developer of the open source Web application firewall ModSecurity and founder of SSL Labs, presented his findings at the Black Hat 2011 security conference. Ristic said organizations need to review their SSL implementations to correct many known issues. Protocol improvements being implemented by Google and other browser makers could help bolster SSL in the future, he said.

View All Videos

Start the conversation

Send me notifications when other members comment.

By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Please create a username to comment.