US-CERT Warns of Security Impact of SSL Interception
The Department of Homeland Security’s US-CERT group has issued an advisory warning enterprises that many security appliances that perform HTTPS inspection through a man-in-the-middle position don’t correctly verify certificate chains before forwarding traffic, weakening the security benefits of TLS in the process. The advisory comes after a recent paper by security researchers from Google, Mozilla, Cloudflare, […]