Tag: SSL Labs

2017

• SSL Labs Grading Redesign (Preview 1)
  June 30, 2017
• SSL Labs Distrusts WoSign and StartCom certificates
  April 05, 2017
• CAA Mandated by CA/Browser Forum
  March 13, 2017
• Ticketbleed detection added to SSL Labs
  February 23, 2017
• What’s new in SSL Labs 1.26.5
  January 13, 2017

2016

• Per-protocol cipher suite detection in SSL Labs
  November 29, 2016
• SSL Labs now showing multiple certificate chains
  November 22, 2016
• Announcing SSL Labs grading changes for 2017
  November 16, 2016
• Is HTTP Public Key Pinning dead?
  September 06, 2016
• SSL Labs: Improved suite detection
  August 31, 2016
• TLS version intolerance in SSL Pulse
  August 02, 2016
• New release of SSL/TLS Deployment Best Practices
  June 27, 2016
• SSL Labs in 2016 and beyond
  May 16, 2016
• SSL Labs DROWN test implementation details
  March 04, 2016
• DROWN grading update
  March 04, 2016
• DROWN abuses SSL v2 to attack TLS
  March 01, 2016

2015

• SSL Labs: Increased penalty when TLS 1.2 is not supported
  May 22, 2015
• SSL Labs 1.17: RC4, Obsolete Crypto, and Logjam
  May 21, 2015
• What's new in SSL Labs 1.16
  April 28, 2015
• SSL Labs RC4 deprecation plan
  April 23, 2015
• OpenSSL Cookbook 2nd Edition released
  March 03, 2015
• SSL Labs APIs now available in Beta
  January 22, 2015

2014

• SSL Labs end of year 2014 updates
  December 08, 2014
• POODLE bites TLS
  December 08, 2014
• SSL 3 is dead, killed by the POODLE attack
  October 15, 2014
• SHA1 deprecation: what you need to know
  September 09, 2014
• SSL Labs: New grades for trust (T) and mismatch (M) issues
  June 17, 2014
• SSL Pulse: 49% vulnerable to CVE-2014-0224, 14% exploitable
  June 13, 2014
• SSL Labs test for the Heartbleed attack
  April 08, 2014
• SSL Labs: Stricter security requirements for 2014
  January 21, 2014

2013

• Apple enabled BEAST mitigations in OS X 10.9 Mavericks
  October 31, 2013
• SSL Pulse now tracking Forward Secrecy and RC4
  October 09, 2013
• Introducing the SSL Client Test
  October 02, 2013
• Updated SSL/TLS Deployment Best Practices deprecates RC4
  September 17, 2013
• Is BEAST still a threat?
  September 10, 2013
• Defending against the BREACH attack
  August 07, 2013
• Configuring Apache, Nginx, and OpenSSL for Forward Secrecy
  August 05, 2013
• Deploying Forward Secrecy
  June 25, 2013
• RC4 in TLS is broken: Now what?
  March 19, 2013
• SSL Labs update increases security requirements
  February 07, 2013

2012

• CRIME: Information leakage attack against SSL/TLS
  September 14, 2012
• How good is client-side support for RC4?
  July 17, 2012
• Announcing SSL Pulse
  April 30, 2012
• Qualys supports reform at CA/Browser Forum
  March 30, 2012
• SSL and Browsers: The Pillars of Broken Security
  March 07, 2012
• Announcing the SSL/TLS Deployment Best Practices guide
  February 23, 2012

2011

• TLS Renegotiation and Denial of Service Attacks
  October 31, 2011
• Mitigating the BEAST attack on TLS
  October 17, 2011
• SSL Labs: Announcing launch of two Convergence notaries
  September 29, 2011
• SSL Survey: How many sites support TLS 1.1 and better?
  September 23, 2011
• A study of what really breaks SSL
  May 25, 2011
• Fresh Internet SSL Survey results (April 2011) available
  April 27, 2011

2010

• SSL Labs: Added test for ephemeral DH parameters
  December 23, 2010
• Detection of certificate chain issues in SSL Labs
  November 30, 2010
• Private assessment option added to the SSL server test
  October 07, 2010
• Disabling SSL renegotiation is a crutch, not a fix
  October 06, 2010
• Qualys SSL Labs releases raw data from the Internet SSL survey
  October 05, 2010
• Internet SSL Survey 2010 is here!
  July 29, 2010
• SSL Labs 1.0.63: Detection and reporting of certificate chain issues
  July 13, 2010
• SSL Server Survey: what data are we collecting?
  July 02, 2010
• SSL Server Survey: So what's with the 22M invalid certificates claim?
  July 02, 2010
• Internet SSL Server Survey at Black Hat USA 2010
  July 02, 2010
• SSL Labs assessment engine v1.0.59 improvements
  June 17, 2010
• Qualys acquires SSL Labs
  June 15, 2010
• Secure renegotiation test added to SSL Labs
  May 25, 2010
• Deep protocol and cipher suite testing in SSL Labs
  May 14, 2010

2009

• Testing for SSL renegotiation
  December 15, 2009
• Initial test for SSL renegotiation added to SSL Labs
  November 17, 2009
• SSL and TLS Authentication Gap vulnerability discovered
  November 05, 2009
• SSL Labs: a batch of small improvements
  September 03, 2009
• Announcing the SSL Server Rating Guide and the Public SSL Server Database
  July 22, 2009
• SSL Labs launches
  June 15, 2009