[OPLIN 4cast] OPLIN 4Cast #607: Internet security is about to take a big leap forward
OPLIN Support
support at oplin.ohio.gov
Wed Aug 15 10:35:49 EDT 2018
Email not displaying correctly? View it in your browser.
<http://www.oplin.org/4cast/>
[image: OPLIN 4Cast]
OPLIN 4Cast #607: Internet security is about to take a big leap forward
August 15th, 2018
[image: Press enter button on the keyboard computer Shield cyber Key lock
security system abstract technology world digital link cyber security on hi
tech Dark blue background, Enter password to log in. lock finger Keyboard]
You've probably heard of SSL (Secure Socket Layer) technology, which allows
for the "S" part of the "https" address you've now seen everywhere.
However, not as many of us are aware of the underlying standard for SSL,
called TLS (Transport Layer Security). While we may not care about that
standard most of the time, it's making big news now: it has just been
revised and, as a result, is going to be adding some major improvements to
security on the web.
According to Olaf Kolkman
<https://www.internetsociety.org/blog/2018/08/internet-security-gets-a-boost/>,
the Chief Internet Technology Officer for the Internet Society, TLS is "an
Internet standard used to prevent eavesdropping, tampering, and message
forgery for various Internet applications. It is probably the most widely
deployed network security standard in the world." The newest version, 1.3,
has been in development for the past four years and represents significant
enhancements to internet security.
-
- Protecting your data on the web is about to get faster
<https://www.cnet.com/news/protecting-data-on-web-about-to-get-faster-with-tls-1-3/>
[CNET] "Setting up an encrypted connection on the web historically has
caused delays since your browser and the website server must send
information back and forth in a process called a handshake. The slower your
broadband or the more congested your mobile network is, the more you'll
notice these delays. TLS 1.3 cuts the number of round-trip exchanges in
the handshake from two to one, and a more advanced version can cut it all
the way to zero."
- It's official: TLS 1.3 approved as standard while spies weep
<https://www.theregister.co.uk/2018/08/13/tls_13_approved/> [The
Register] "The new version – which some argue could be called TLS 2.0 due
to the significance of the changes – makes no less that three previous RFCs
obsolete and updates another two. As things stand, there are currently no
identified security holes in the algorithms used in TLS 1.3; the same
cannot be said for 1.2."
- Firefox now supports the newest internet security protocol
<https://techcrunch.com/2018/08/13/firefox-now-supports-the-newest-internet-security-protocol/>
[TechCrunch] "And the good news is, you can already use it today, because,
as Mozilla <https://www.crunchbase.com/organization/mozilla/> today
announced
<https://blog.mozilla.org/security/2018/08/13/tls-1-3-published-in-firefox-today/>,
Firefox already supports the new standard out of the box. Chrome, too,
started supporting the new protocol (based on earlier drafts) in
version 65."
- Introducing TLS 1.3, the first major overhaul of the TLS protocol with
improved security and speed
<https://hub.packtpub.com/introducing-tls-1-3-the-first-major-overhaul-of-the-tls-protocol-with-improved-security-and-speed/>
[Packt] "In contrast to the TLS 1.2, the v1.3 has an added privacy for data
exchanges. This is done by encrypting more of the negotiation handshake to
protect it from eavesdroppers. This helps in protecting the identities of
the participants and impedes traffic analysis."
*From the Ohio Web Library <http://ohioweblibrary.org>:*
- Spirent Gives Customers a Head Start in Validating and Testing New
Transport Layer Security (TLS 1.3) Infrastructure
<http://proxy.oplin.org:2054/login.aspx?direct=true&db=bwh&AN=bizwire.c80584117&site=ehost-live>
(Spirent Communications plc First to Offer Security Testing for TLS 1.3
with Advanced, F. (9). Spirent Gives Customers a Head Start in Validating
and Testing New Transport Layer Security (TLS 1.3) Infrastructure. Business
Wire (English). )
- TLS 1.3 Encryption Standard Moves Forward, Improving Internet Security
<http://proxy.oplin.org:2054/login.aspx?direct=true&db=buh&AN=128717062&site=ehost-live>
(Kerner, S. M. (2018). TLS 1.3 Encryption Standard Moves Forward, Improving
Internet Security. *Eweek*, 7. )
- CloudFlare Implementing Latest Draft of TLS 1.3
<http://proxy.oplin.org:2054/login.aspx?direct=true&db=buh&AN=118282138&site=ehost-live>
(Kerner, S. M. (2016). CloudFlare Implementing Latest Draft of TLS 1.3.
*Eweek*, 1. )
------------------------------
The *OPLIN 4cast* is a weekly compilation of recent headlines, topics, and
trends that could impact public libraries. You can subscribe to it in a
variety of ways, such as:
- *RSS feed.* You can receive the OPLIN 4cast via RSS feed by
subscribing to the following URL: http://www.oplin.org/4cast/
index.php/?feed=rss2.
- *Live Bookmark.* If you're using the Firefox web browser, you can go
to the 4cast website (http://www.oplin.org/4cast/) and click on the
orange "radio wave" icon on the right side of the address bar. In Internet
Explorer 7, click on the same icon to view or subscribe to the 4cast RSS
feed.
- *E-mail.* You can have the OPLIN 4cast delivered via e-mail (a'la
OPLINlist and OPLINtech) by subscribing to the 4cast mailing list at
http://lists.oplin.org/mailman/listinfo/OPLIN4cast
<http://lists.oplin.org/mailman/listinfo/OPLIN4cast>.
© 2018 Ohio Public Library Information Network
[image: Find us on Slideshare] <http://www.slideshare.net/oplin> [image:
Find us on Facebook] <http://www.facebook.com/oplin.org> [image: Find us
on Google+] <https://plus.google.com/107751358238995507967> [image: Find
us on Twitter] <http://www.twitter.com/oplin>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.oplin.org/pipermail/oplin4cast/attachments/20180815/c5e56841/attachment.html>
More information about the OPLIN4cast
mailing list