Tuesday, March 19, 2024

TLS 1.3 Released – Most Important Security Protocol on the Internet with Extreme Privacy, Security, and Performance

An Internet’s most Important security protocol TLS 1.3 released with various improvement to perform a secure communication for online commerce, medicine, and other sensitive transactions

TLS allows client/server applications to communicate over the Internet in a way that is designed to prevent eavesdropping, tampering, and message forgery.

TLS 1.3 is extremely secured when compared to TLS 1.2 and it provides more security and efficiently access the Internet over the next 20 years and beyond.

IETF(Internet Engineering Task Force) started working hard to upgrade the TLS 1.3 protocol since various high profile vulnerability has been exploited in TLS 1.2.

It considers as a modern internet protocol that released with major improvements in the areas of security, performance, and privacy.

TLS 1.3 eliminates many existing flaws and only includes support for algorithms with no known vulnerabilities.

TLS 1.3 Development Operation

The development process has been engaged with the various cryptographic research community to analyze, improve, and validate the security of TLS 1.3.

This new implementation of TLS 1.3 building and testing implementations by many companies and organizations that provide products such as web browsers, content distribution networks, and services widely used on the Internet.

Apart from this IETF Conducting various workshops where researchers could present their findings and use it to fix and improve the security in the TLS version 1.3.

According to IETF,  This enhancement helps protect the identities of the participants and impede traffic analysis. TLS 1.3 also enables forward secrecy by default which means that the compromise of long-term secrets used in the protocol does not allow the decryption of data communicated while those long-term secrets were in use.

This new enhancement makes hands faster than ever that helps to establish the very fast communication compare the previous version.

IETF Collaborated with various people who work on web browsers, websites, and the Internet of Things and demonstrate interoperability, catch documentation and implementation bugs in IETF 98 Hackathon project.

Now many of the applications and modern browsers already started using new TLS version and the future updates will bring the support for those not currently supporting the protocol.

if you manage a website or other online service, the servers and infrastructure you use are likely to start using TLS 1.3 though it is worth double checking with your providers.IEFT Said.

Also Read

Let’s Encrypt Root Certificate Now Directly Trusted by Microsoft and all Major Root Programs

Facebook Launches Open Source Library Fizz To Enhance TLS 1.3 Protocol

Transport Layer Security (TLS) 1.3 approved by IETF With the 28th Draft

Website

Latest articles

Hackers Exploiting Microsoft Office Templates to Execute Malicious Code

In a cyberattack campaign dubbed "PhantomBlu," hundreds of employees across various US-based organizations were...

How ANY.RUN Malware Sandbox Process IOCs for Threat Intelligence Lookup?

The database includes indicators of compromise (IOCs) and relationships between different artifacts observed within...

CryptoWire Ransomware Attacking Abuses Schedule Task To maintain Persistence

AhnLab security researchers detected a resurgence of CryptoWire, a ransomware strain originally prevalent in...

E-Root Admin Sentenced to 42 Months in Prison for Selling 350,000 Credentials

Tampa, FL – In a significant crackdown on cybercrime, Sandu Boris Diaconu, a 31-year-old...

WhiteSnake Stealer Checks for Mutex & VM Function Before Execution

A new variant of the WhiteSnake Stealer, a formidable malware that has been updated...

Researchers Hacked AI Assistants Using ASCII Art

Large language models (LLMs) are vulnerable to attacks, leveraging their inability to recognize prompts...

Microsoft Deprecate 1024-bit RSA Encryption Keys in Windows

Microsoft has announced an important update for Windows users worldwide in a continuous effort...
Balaji
Balaji
BALAJI is an Ex-Security Researcher (Threat Research Labs) at Comodo Cybersecurity. Editor-in-Chief & Co-Founder - Cyber Security News & GBHackers On Security.

Mitigating Vulnerability Types & 0-day Threats

Mitigating Vulnerability & 0-day Threats

Alert Fatigue that helps no one as security teams need to triage 100s of vulnerabilities.

  • The problem of vulnerability fatigue today
  • Difference between CVSS-specific vulnerability vs risk-based vulnerability
  • Evaluating vulnerabilities based on the business impact/risk
  • Automation to reduce alert fatigue and enhance security posture significantly

Related Articles