Justin Schuh, lead engineer of Chrome Security, said ensuring browser security for Chrome users is a balancing act juggling OEM pressures, questionable certificate authorities and quashing third-party software incompatibility issues.
Tag Archives: HTTPS
Do no evil with Avira (or nasty HTTPS handshakes)
Researchers shows intercepting HTTPS traffic is nothing to sneeze at as it usually lowers user security. Makes you wonder why so many security companies do it. Avira does not.
The post Do no evil with Avira (or nasty HTTPS handshakes) appeared first on Avira Blog.
Firefox 52 Expands Non-Secure HTTP Warnings, Enables SHA-1 Deprecation
The latest version of Firefox expands non-secure HTTP warnings, enables SHA-1 deprecation by default, and removes support for NPAPI.
Scout Explained: Avira Autopilot
What is Autopilot and where can I find it? Avira Autopilot is a browser extension exclusively for the Avira Scout browser. You can download Scout from here. Autopilot includes all the functions of the popular Avira Browser Safety (ABS) extension. Once you have downloaded, installed, and started Scout, you will see a green icon (see […]
The post Scout Explained: Avira Autopilot appeared first on Avira Blog.
Threatpost News Wrap, February 3, 2017
Mike Mimoso and Chris Brook recap the news of the week, including a Microsoft SMB zero day, the latest Netgear router vulnerability, and a new HTTPS milestone.
HTTPS Hits 50 Percent Traffic Milestone
This week HTTPS hit a huge milestone. According to a two-week survey of telemetry data from the Mozilla Firefox browser, 50 percent of page loads used HTTPS.
Google becomes its own Root Certificate Authority
In an effort to expand its certificate authority capabilities and build the “foundation of a more secure web,” Google has finally launched its root certificate authority.
In past few years, we have seen Google taking many steps to show its strong support for sites using HTTPS, like:
Giving more preference to HTTPS websites in its search rankings than others.
Warning users that all HTTP
Heartbleed Persists on 200,000 Servers, Devices
Almost 200,000 servers are still vulnerable to Heartbleed, the OpenSSL vulnerability patched nearly three years ago.
Half of Chrome Pageloads are HTTPS
Google said that more than half of pageloads on Chrome across platforms are encrypted; Android as the lone laggard, but trending upward.
Google Chrome to Label Sensitive HTTP Pages as "Not Secure"
Although over three months remaining, Google has planned a New Year gift for the Internet users, who’re concerned about their privacy and security.
Starting in January of 2017, the world’s most popular web browser Chrome will begin labeling HTTP sites that transmit passwords or ask for credit card details as “Not Secure” — the first step in Google’s plan to discourage the use of sites that
