Networking

Network Security Topic Center

Network security news, features, advice and more to help you protect your IT systems

Trustwave admits issuing man-in-the-middle digital certificate; Mozilla debates punishment

Digital Certificate Authority Trustwave revealed that it has issued a digital certificate that enabled an unnamed private company to spy on SSL-protected connections within its corporate network, an action that prompted the Mozilla community to debate whether the CA's root certificate should be removed from Firefox.
Read more...

Google Chrome will no longer check for revoked SSL certificates online

Google plans to remove online certificate revocation checks from future versions of Chrome, because it considers the process inefficient and slow.

Denial-of-service attacks are on the rise, anti-DDoS vendors report

Both the number and volume of distributed denial-of-service attacks are increasing, according to new reports from DDoS mitigation companies Prolexic and Arbor Networks.

Alcatel-Lucent, Arbor Networks partner on DDOS mitigation

Alcatel-Lucent is now offering a router with technology from Arbor Networks that defends against distributed denial-of-service attacks, the two companies said on Wednesday.

Sykipot Trojan hijacks DoD smart cards

A variant of the Sykipot Trojan Horse hijacks U.S. Department of Defense (DoD) smart cards in order to access restricted resources.

Oracle's latest Java moves frustrate users and vendors

The company is under fire for modularization, licensing, and security issues

Juniper vs. Palo Alto: Next-gen firewall legal brawl

Juniper Networks says that Palo Alto Networks is infringing on its next-generation firewall technology, which was invented by Palo Alto's founders but for which Juniper holds the patents.

With great privilege comes great responsibility

While additional IT privileges are part of IT management, recent incidents and a number of surveys show many organizations don't do what's necessary to ensure such access isn't abused

Putting a Lock on Password Management

A cancer diagnostics firm is using a single sign-on service to secure a growing pool of SaaS subscriptions.

Small company, big security challenges

Small company, big ambitions. Sounds like the classic entrepreneurial dream -- but what if it means you bear the burden of big-company regulatory or standards compliance? Insider (registration required)

Security Manager's Journal: BYOD Planning Gets a Boost

A virtual desktop infrastructure will be the security key to reaching the CIO's goal of allowing personal devices on the corporate network.

2012 Outlook: The end of everything?

Gibbs reviews last year's predictions and sees that the end could be nigh ...

InfoWorld's top 10 emerging enterprise technologies

Which of today's newest shipping technologies will triumph over the long haul? Here are our best guesses

Car tech: The connected car arrives

The technology is still in its infancy, and there are technical, legal, safety and privacy issues to be worked out -- but we're entering the era of cars that connect to the Internet, to each other and to the public infrastructure.

High-speed Ethernet planning guide

Ten-gigabit Ethernet was so last year: Standards-based 40- and 100-gigabit Ethernet switches and routers are starting to show up in enterprise networks. Here's what you need to know.

Father of SSL says despite attacks, the security linchpin has lots of life left

SSL/TLS, the protocol that protects security of e-commerce, has taken a beating lately, with news items ranging from the violation of certificate authorities to the discovery of an exploit that beats the protocol itself.

Internet privacy: Cookies as a weapon

In November 2009 the European Parliament approved a directive on Internet privacy that, among other things, required user opt-in before websites could install cookies on the user's computer.

Keeping the DMZ Safe

A security manager has to be vigilant about what goes into the exposed portion of the company network, and he has to make sure it's all configured correctly.

Palo Alto PA-5060 is one fast firewall

Palo Alto's new firewall delivered performance 10 times faster than when we tested in 2008, and came close to its rated capacity of 20Gbps in firewall-only mode, according to our exclusive Clear Choice testing.

How We Tested the Palo Alto PA-5060 firewall

We assessed the performance of the Palo Alto PA-5060 firewall using three sets of tests, covering rates with mixed content, rates with static content, and TCP connection behavior. Two pairs of Spirent Avalanche 3100 GT traffic generator/analyzers, each equipped with two 10G Ethernet interfaces, served as the primary test tool.