info@secure-ly.com
Securely ltd
  • Home
  • Company
    • About
    • News & Updates
    • Management
    • Partners
    • customers
  • Products
    • C-View Scanner
    • C-View Professional
    • C-View Enterprise
  • Support
    • Customer Support
    • FAQ
    • Resources
  • Services
  • Contact us
  • Home
  • Company
    • About
    • News & Updates
    • Management
    • Partners
    • customers
  • Products
    • C-View Scanner
    • C-View Professional
    • C-View Enterprise
  • Support
    • Customer Support
    • FAQ
    • Resources
  • Services
  • Contact us
Securely ltd
  • Home
  • Company
    • About
    • News & Updates
    • Management
    • Partners
    • customers
  • Products
    • C-View Scanner
    • C-View Professional
    • C-View Enterprise
  • Support
    • Customer Support
    • FAQ
    • Resources
  • Services
  • Contact us
  • Home
  • Company
    • About
    • News & Updates
    • Management
    • Partners
    • customers
  • Products
    • C-View Scanner
    • C-View Professional
    • C-View Enterprise
  • Support
    • Customer Support
    • FAQ
    • Resources
  • Services
  • Contact us
Israel internet – SSL Status
Home ● Articles
02/09/2016 11:11 AM

Communication between client and web sites are vulnerable to attacks like Man in the Middle Attacks.
The HTTP protocol uses clear text thus susceptible to information theft. The Transport Layer Security – TLS protocol add privacy and integrity to the session. Implementing TLS requires a digital certificate that can be purchased from a public CA or issued by internal Certificate Authority – CA and some server configuration.

In the last years many TLS vulnerabilities are published and demonstrated. This weaknesses are the result of bad implementation, public CAs that issue rogue certificates and protocol design issues. This survey covers the Israeli IP address space and shows that only half of the total number of discovered certificates are issued by trusted public CAs the rest are divided between private CAs and self signed certificates. 75% of the untrusted certificates has a partial chain and the rest are already expired. Trusted certificates are those which passed the chain build successfully


SSL in Israel

  • Issued by a trusted certificate authority.
  • The chain is complete.
  • Name is valid.
  • Certificate is valid (not expired).
  • Certificate authority revocation is found.
  • Certificate is not in CRL (Certificate Revocation List)

Of those 9% still use the weak SHA-1 signing algorithm but 99% use 2048 bit and larger keys. 50% of the servers using those trussed certificates still support SSL2/3 protocol and use weak cipher suites. Most of the untrusted certificates protects security network devices like routers, firewalls, IP cameras, cloud storage and specifically provide the worst security. This survey start with introduction to the

  • TLS protocol, history and vulnerabilities.
  • Survey tools and methodology.
  • Results summary.
  • Raw data

There is a lot to be done to improve the security that TLS can provide, having a “good” certificate is not enough, servers and web sites need a better hardening and organization better replace untrusted certificates with trusted certificates.

Click for download the full survey


Share post
  • LinkedIn
  • Facebook
  • Twitter
  • Google
  • Email
  • Print
« Previous Post
Next Post »
Recent Posts
  • Bank Millennium Poland choose CView
  • C-View – 2019 New customers
  • We are pleased to announce, Bankart joined to our customer list
  • 2017 Survey – SSL Status in the Israeli internet
  • Secure-ly at IT Security 2017 Germany
Archives
  • September 2020
  • June 2019
  • February 2018
  • November 2017
  • September 2017
  • March 2017
  • January 2017
  • September 2016
  • July 2016
  • May 2016
Categories
  • Articles
  • general
  • News & Updates
Company
  • About
  • News & Updates
  • Contact us
  • Management
  • Partners
  • Customers
Products
  • C-View Scanner
  • C-View Professional
  • C-View Enterprise
News & Updates
  • Bank Millennium Poland choose CView
  • C-View – 2019 New customers
  • We are pleased to announce, Bankart joined to our customer list
  • 2017 Survey – SSL Status in the Israeli internet




social networks
  • Facebook
  • YouTube
  • LinkedIn
All rights reserved to Secure-ly Ltd
Scroll to top
loading Cancel
Post was not sent - check your email addresses!
Email check failed, please try again
Sorry, your blog cannot share posts by email.
Skip to content
Open toolbar

Accessibility Tools

  • Increase Text
  • Decrease Text
  • Grayscale
  • High Contrast
  • Negative Contrast
  • Light Background
  • Links Underline
  • Readable Font
  • Reset