Contact Us +1-202-802-9399 U.S. Headquarters

Posts Tagged ‘SSL’

POODLE: Not your typical walk in the park

Wednesday, October 15th, 2014

Google, among several security organizations, recently announced a vulnerability in the SSL protocol, particularly SSL version 3. SSL is used to secure connections between a client and server to prevent eavesdropping, and that the data has not been tampered. SSLv3 is an old version of the SSL protocol, dating back to 1996 and debuted with Netscape […]

Infamous Heartbleed Bug Responsible for Over 4.5 Million Patient Records Leaked

Tuesday, September 9th, 2014

Heartbleed continues to haunt the organizations as patch efforts remain ignored. In April we notified our customers that our solutions remained unaffected, but unfortunately for millions that was not the case. Over six months later a data breach at Community Health Systems is the result of the infamous Heartbleed vulnerability that several versions of OpenSSL […]

SSL: Beyond the Basics Part 4: Strict Transport Security

Thursday, June 5th, 2014

In our previous post, we discussed SSL certificates and new cryptographic functionality that can be used with modern SSL certificates. Next, we are going to look at how to make sure SSL is always used for web clients in a browser. SSL doesn’t do much for securing browsers if it isn’t used, which is why […]

SSL: Beyond the Basics Part 3: Certificates

Thursday, May 22nd, 2014

In our previous post, we discussed configuring TLS cipher suites to maximize security by preferring newer, more secure ciphers and removing older ones where possible. For this post, we will take a closer look at different types of certificates that are used in HTTPS. The certificate is responsible for several different things when securing a […]

SSL: Beyond the Basics Part 2: Ciphers

Friday, May 16th, 2014

In our previous post, we discussed the different protocols for SSL and TLS, and how we can improve security by disabling older, less secure protocols and enabling newer, more secure ones. Today, we will talk about ciphers, which is one of the key pieces to making these protocols work. Here’s a quick refresher from last […]

SSL: Beyond the Basics

Thursday, May 8th, 2014

Part 1: Protocol Selection Here at Thycotic we have a wide range of recommended security best practices for our customers, and one of the first things we recommend is setting up SSL, or Secure Socket Layer, for Secret Server. Setting up SSL is fairly trivial once an SSL certificate is obtained. Once it’s set up, […]

SSL Certificates, License Keys & More in Secret Server

Monday, August 27th, 2012

Do you have copies of your SSL Certificates, Licensing Data, and Support Documentation? Of course! Can you easily search for all of those files with a single term? Maybe. Is it well-organized, access-controlled, and verified? Maybe not. Secret Server supports the functionality above by simply building a Secret Template with the proper settings. For example: […]

Secret Server is the enterprise password management software that IT Admins and Security Pros love!

Try it FREE for 30 Days