1. Welcome to TechPowerUp Forums, Guest! Please check out our forum guidelines for info related to our community.

90% of SSL Secure sites aren't really secure! Scary...

Discussion in 'General Software' started by newtekie1, May 4, 2012.

  1. newtekie1

    newtekie1 Semi-Retired Folder

    Joined:
    Nov 22, 2005
    Messages:
    23,253 (5.76/day)
    Thanks Received:
    9,209
    https://www.trustworthyinternet.org...se-to-make-ssl-more-secure-and-pervasive.html

    “Looking at the SSL Labs grades, which are designed to sum up the quality of SSL configuration, we can see that about 50% (99,903 sites) got an A, which is a good result. Previous global SSL Labs surveys reported about 33% well-configured sites, which means that more popular sites are better configured. Unfortunately, many of these A-grade sites (still) support insecure renegotiation (8,522 sites, or 8.5% of the well-configured ones) or are vulnerable to the BEAST attack (72,357 sites, or 72.4% of the well-configured ones). This leaves us with only 19,024 sites (or 9.59% of all sites) that are genuinely secure at this level of analysis.
    This is scary. That is really all I can say about it.
     
    10 Year Member at TPU Crunching for Team TPU
  2. AsRock

    AsRock TPU addict

    Joined:
    Jun 23, 2007
    Messages:
    14,454 (4.18/day)
    Thanks Received:
    3,939
    Location:
    US
    I am surprised that your surprised. Although i am surprised it's as high as 90%.
     
  3. newtekie1

    newtekie1 Semi-Retired Folder

    Joined:
    Nov 22, 2005
    Messages:
    23,253 (5.76/day)
    Thanks Received:
    9,209
    Yeah, the 90% thing is what I'm surprised about, I knew SSL wasn't perfect.
     
    10 Year Member at TPU Crunching for Team TPU
  4. remixedcat

    remixedcat

    Joined:
    May 13, 2010
    Messages:
    4,146 (1.73/day)
    Thanks Received:
    1,319
    Ouch!
     
  5. DannibusX

    DannibusX

    Joined:
    Aug 17, 2009
    Messages:
    2,556 (0.96/day)
    Thanks Received:
    1,011
    Location:
    United States
    Good lord!
     
  6. M.Beier New Member

    Joined:
    Nov 13, 2009
    Messages:
    24 (0.01/day)
    Thanks Received:
    2
    Location:
    Copenhagen, Denmark
    Oh I thought of different kind of 'sites', when it was related to security...
    Using TLS myself :)
     

Currently Active Users Viewing This Thread: 1 (0 members and 1 guest)