Connect with us

Cyber Security

Comodo Joins Joint Effort to Ehance NGINX with SSL Revocation Checking

Avatar

Published

on

Reading Time: 3 minutes

Today GlobalSign, DigiCert, Comodo, and NGINX announced a joint effort and a sponsored development contract, to enhance the NGINX open source Web server to support OCSP-stapling. This collaboration further advances the SSL ecosystem by improving the privacy, reliability and revocation checking for all websites using the NGINX web server — currently run by more than 25 percent of the top 1,000 websites, and by 70,000,000 websites on the Internet overall.

“The team at NGINX is delighted that GlobalSign, DigiCert, and Comodo support the OCSP stapling enhancement to the NGINX webserver,” said Igor Sysoev CTO and principal architect at NGINX, “We have been continuously working on enhancements to NGINX that increase performance, reliability and security. With improved SSL functionality we expect the vast majority of our customers to share our enthusiasm for increased safety on the Internet.”

The Online Certificate Status Protocol (OCSP) is used to present the revocation status, or current validity, of an SSL certificate, and provides an alternative to the Certificate Revocation List (CRL) method. OCSP offers efficiencies when compared to the CRL method, which requires the client, such as a browser, to download potentially large databases of revocation information reflecting the status as of its last publication date In contrast, OCSP can provide more up-to-date status information by allowing the browser to query the revocation status at the very point of encountering the certificate, without relying on cached information.

OCSP-stapling enhances the basic OCSP method by allowing the presenter of a certificate, such as the website hosting the SSL certificate, to deliver the OCSP response to the browser instead of it being delivered by the issuing CA. By keeping the certificate response within the web host and not with the CA, OCSP-stapling ensures the browser receives the same response performance for the certificate status information as it does for the website content. This helps to maintain a high-quality user experience and avoids delays otherwise caused by request volume or network congestion that can slow CA response under the standard OCSP method. Compared with basic OCSP, privacy concerns are also addressed, as the CA is no longer receiving revocation requests directly from the browser.

In a collective statement by GlobalSign, DigiCert and Comodo, Ryan Hurst the Chief Technology Officer of GlobalSign stated “By addressing the issues holding back common usage of OCSP, NGINX is contributing toward a unified goal of widespread OCSP adoption across all webservers on the Internet. This project is another major initiative where certification authorities are working closely to improve the ecosystem for everyone relying on SSL for a safer, private and more secure Internet experience.”

NGINX is the second most popular open source webserver and, according to the W3Techs server survey, is currently used by more than 25 percent of the top 1,000 most visited websites. The new version with full OCSP-stapling support will be available in late August 2012. IIS on Microsoft Server 2008 and Apache 2.3.6 already support OCSP-stapling; thus, the enhancements to NGINX mean that nearly all webservers can now deploy this critical technology.

For current release information on the new version of NGINX, please visit Nginx.com.

About NGINX

Run by the busiest websites on the Internet, NGINX enables businesses worldwide to match rapidly increasing demand for faster web experience without incurring unnecessary costs in capital investments or time. In almost 10 years of its history, NGINX became key software component of most famous web architectures. Today NGINX serves over 25 percent of the top 1,000 websites, and 70 million of websites overall. Successful online services, transforming and shaping the future of the Internet—such as Netflix, Pinterest, CloudFlare, Airbnb, WordPress, GitHub, SoundCloud, Zynga, Eventbrite, Zappos, Media Temple, Heroku, RightScale, Engine Yard, use NGINX as part of their infrastructures.

In July 2011, NGINX founded its commercial arm, Nginx, Inc, to facilitate the development of NGINX. For more information, please visit Nginx.com.

Related Resource :

TEST YOUR EMAIL SECURITY GET YOUR INSTANT SECURITY SCORECARD FOR FREE Source: https://blog.comodo.com/e-commerce/comodo-joins-joint-effort-to-ehance-nginx-with-ssl-revocation-checking/

Cyber Security

Semantic UI CDN

Avatar

Published

on

UI CDN img-et55

Table of Contents

What is Semantic UI CDN?

Semantic UI React supplies React components, while Semantic UI CDN provides themes such as CSS stylesheets.

Semantic empowers designers and developers to create a specific UI vocabulary.

Current version 2.4.2

<head>
<script src=”https://code.jquery.com/jquery-3.1.1.min.js” crossorigin=”anonymous”></script>
<link rel=”stylesheet” href=”https://cdn.jsdelivr.net/npm/semantic-ui@2.4.2/dist/semantic.min.css”>
<script src=”https://cdn.jsdelivr.net/npm/semantic-ui@2.4.2/dist/semantic.min.js”></script>
</head>

The rise of the digital economy changed the way we communicate, search for information, shop for products and services, decide, and many other tasks dramatically. As the digitization of virtually everything continues unabated, an endless supply of content is being generated, and devices and interfaces are becoming increasingly intuitive. Taking advantage of this opportunity, businesses of all sizes have embraced content marketing to sell products and services to consumers around the world. The speed of the websites they visit is essential for digitally empowered customers.

So, if you want to have low bounce rates and high retention rates, your website needs to be fast and highly responsive. The Content Delivery Network ( CDN) can make your website faster by reducing the distance between the user and the server of the site, compressing files, and optimizing connections. If you want a responsive web design, you can use Semantic CSS UI, an open-source framework that uses Cascading Style Sheets (CSS) class names such as words to generate a natural language style library.

The web design is responsive when it automatically adjusts content to look good on all devices, from mobile phones to tablets, laptops, and desktops. Semantic UI makes it possible to use human-friendly HTML. It can be installed either locally or using a hosted CDN.

What Are the Benefits of using Semantic UI CDN?

Semantic UI tasks can be effectively integrated with the Semantic UI CDN in the current website development tools.

Examples of semantic UI

For example, if you want to design a list using semantic UI CDN, you can simply add a few lines of code to your project using the list component CDN.

Research shows that 47% of visitors expect a website to load within 2 seconds, 40% leave a website that is loaded for more than 3 seconds, and 79% that are slower. Imagine the potential revenue of those who leave your site and never return because your web pages won’t load quickly enough.

Companies such as Akamai, MaxCDN (now StackPath), Amazon CloudFront, and Cloudflare CDN distribute edge server texts, documents, graphics, scripts, multimedia files, apps, and web tools worldwide. The CDN would connect the user to the server nearest to the location of the site instead of to the main server thousands of miles away to speed up the delivery of content.

In addition to boosting website load times, CDN reduces bandwidth costs, enhances overall content availability, and improves the security of your site. The amount of data generated by a server is decreased by caching information, distribution of inbound web traffic through several servers, and routing of user requests to the closest edge node. As a result, the CDN can reduce website hosting costs. The advantage of faster loading times is that it improves Google’s page load frequency, increasing the SEO ranking of your site.

When it comes to security, a CDN helps protect your website and ensure it is secure using fresh TLS / Secure Sockets Layer (TLS / SSL) data encryption and authentication certificates. TLS / SSL) certificates also guarantee data integrity by manipulation and falsification detection.

Most organizations have RTL (Right To Left) CSS and JavaScript in Semantic UI for CDN support. React, Meteor, and Ember.js provide construct tools that integrate with Semantic UI. All modern JavaScript bundlers fully support the Semantic UI React. Snapchat is a great organization that uses Semantic UI.

Select Right CDN at Low Cost?

With so many companies offering network content delivery services, it is not easy to select the right one. The following tips can help you find the CDN that fits your needs.

Performance

You are hiring a CDN service provider, and you want your website to load faster so that you know how easily the edge servers will deliver your files. In this respect, you have to analyze and compare main performance metrics such as latency and efficiency during regular and peak traffic times. Ask if the CDN can reduce latency and hops, if its responses and load times are satisfactory and if it can cope with unexpected network traffic spikes so that your site can operate instead of decreasing.

Security

In addition to making the loading of your websites faster, a CDN will improve the protection of your site. In particular, a CDN service provider should be able to mitigate cybersecurity threats such as DDoS attacks, ransomware, and phishing, keeping your website and your business safe.

Technical support

Responsive technical assistance is an essential factor in choosing a CDN. Check the ticket response time for the content delivery network service, whether it has a team that can help 24 hours a day via email and phone, and if they can fix any problems promptly.

Functionality/Features

A secure CDN should include tools and features that optimize the performance of your website, including instant content removal from any edge server, an intuitive user interface that helps you to set up and manage your web resources quickly, a network that delivers content as quickly as possible, or a forum for monitoring traffic statistics in real-time.

Cost

There are content distribution networks that can be used free of charge, while others cost hundreds to thousands of dollars. They’re doing the same thing, which is to make the website load faster. Compare pricing plans and choose the one you think offers the best value to your money.

The Bottom Line

Your website is a powerful tool to encourage your business for a global audience, but it can be responsible if it goes slowly. Whether unoptimized images, voluminous codes, too many HTTP queries, or JavaScript problems are accountable for your website’s slower performance, a content delivery network can help. Semantic UI CDN CSS is also supported by A CDN to create websites that are responsive to each device.

Source: https://cybersguards.com/semantic-ui-cdn/

Continue Reading

Cyber Security

Cyber Attack on Iran Nuclear Facility by USA or Israel

Avatar

Published

on

Iran has issued a direct warning to two nations- the United States and Israel; that it will launch a retaliation related cyber attack, if any of the two nations is found guilty, in digitally disrupting its Natanz Nuclear Factory mid-last week.

Highly placed sources say that a fire broke out in the facility last week, with Iran suspecting a digital hand of either Israel or US in the cyberattack propelled nuclear facility disruption.

Islamic Republic News Agency (IRNA) acknowledged the news by stating that the fire mishap was a result of a cyber-attack and the Ministry urged the two nations to revise their policies against Tehran.

Note 1-Iran’s Natanz Nuclear Facility is used for Uranium Enrichment and is under the constant vigil of the UN Nuclear Watchdog- International Atomic Energy Agency(IAEA).

Note 2- In the year 2010, the US launched a digital attack on the Natanz nuclear facility which at that time was being used for electricity generation in Iran. And sources add that a newly developed Stuxnet Computer Virus to disrupt the facility by Washington or Tel Aviv.

Note 3- Now, Iranian officials claim that the latest fire disruption in the facility was also due to the digital invasion, but failed to pin down the incident on the two nations due to lack of evidence. However, the Defense Intelligence Agency who is probing the incident has warned that if the nation led by Donald Trump is found guilty in the attack, it has to get ready to face serious consequences over the incident.

Naveen Goud is a writer at Cybersecurity Insiders covering topics such as Mergers & Acquisitions, Startups, Cyber Attacks, Cloud Security and Mobile Security

Source: https://www.cybersecurity-insiders.com/cyber-attack-on-iran-nuclear-facility-by-usa-or-israel/

Continue Reading

Cyber Security

The UK to axe Huawei from 5G network build due to security fears

Avatar

Published

on

Britain is all set to reconsider its decision of allowing Chinese company Huawei to build 5G network infrastructure in its nation, as a newly drafted intelligence report has confirmed that the installed infrastructure will only guarantee safety from Chinese espionage just for 7 years.

According to research conducted by Daily Mail, the National Cyber Security Center(NCSC) has concluded that Huawei 5G products are not secure and so the ban imposed by the United States against the Chinese vendor is completely true.

Britain’s Ministry is reported to approve the ban after a cabinet ban to be held at the end or early next week and so the purchase of Huawei’s 5G equipment due to be done in November this year might take a U-Turn.

Oliver Dowden, the Cultural Secretary has acknowledged that the Ministry has received the latest intelligence report from NCSC, a cyber arm of GCHQ, and said that a formal announcement on the matter will be announced shortly.

Mr. Dowden also reiterated the fact that decisions such as these definitely need some time to come to a consensus and admitted that there is a chance of Huawei’s entire technology getting scraped from Britain’s Telecom network by the end of 2029.

Note 1- A source from Huawei on the condition of anonymity reacted to the news and stated that the decision of NCSC to scrap Huawei from the 5G network build project might be a result of a pressure coming from Trump Administration.

Note 2- NCSC has clearly specified in its report that it’s better to replace Huawei with a company headquartered in western countries as reconsidering Asian alternatives like Japan’s NEC might be less trustworthy.

Note 3- Matt Hancock the Health Secretary of UK told Sky’s Sofy Ridge that Britain will take the decision on Huawei keeping the best interests of its populace.

Note 4- As per some trade analysts working for Alibaba, if Britain imposes a ban on the use of 5G products of Huawei in its network build, then it can witness a loss of $13 billion in GDP gains in the next 10 years.

Source: https://www.cybersecurity-insiders.com/the-uk-to-axe-huawei-from-5g-network-build-due-to-security-fears/

Continue Reading
Blockchain38 mins ago

Synthetix Full Guide and Review: Making Money Staking SNX

Blockchain44 mins ago

Greenspin Presents Gods Of Gold: InfiniReels

Quantum2 hours ago

New Hub Paper: ‘Towards a Quantum Software Modeling Language’

Semiconductor2 hours ago

Manufacturing Bits: July 6

Semiconductor2 hours ago

Power/Performance Bits: July 6

Blockchain2 hours ago

Altcoin Explorer: Elrond (ERD), the Internet Scale Blockchain

Venture Capital2 hours ago

Selling innovation into telcos

venezuela-raises-petrol-prices-mandates-support-for-petro-at-gas-stations-3.jpg
Semiconductor2 hours ago

ON Semiconductor to Provide Danfoss with High Power Devices for Inverter Traction Modules

Cannabis2 hours ago

Fine Art Shippers to Partner with AGS Cargo in Brazil

Fintech2 hours ago

Yapeal ist Live und lanciert erste Visa Debit-Karte der Schweiz

Fintech2 hours ago

Sunrise and YAPEAL Agree Partnership for Mobile Digital Swiss Financial Services App

Cannabis2 hours ago

Cannabis, Hemp, and CBD Marketing Resources to Make Your Life Easier (and Help Your Business to Stand Out!)

Cyber Security2 hours ago

Semantic UI CDN

Fintech2 hours ago

Major banks take another step towards ‘truly European’ payment system

CNBC2 hours ago

Shanghai soars more than 5%, leading gains in Asia as ‘bull sentiment’ drives markets

venezuela-raises-petrol-prices-mandates-support-for-petro-at-gas-stations-3.jpg
Blockchain3 hours ago

Ethereum On-Chain Metrics Improving After a Massive Month for DeFi

Blockchain3 hours ago

Singapore witnessed over 50% growth in the blockchain sector.

Blockchain3 hours ago

Celsius Network Review

Business Insider3 hours ago

Here’s an exclusive look at the pitch deck robot startup BotsAndUs used to raise $2.5 million

Publications3 hours ago

Uber reportedly agrees to acquire Postmates for $2.65 billion

Blockchain3 hours ago

Tron (TRX) Price Jumps 5% And Showing Early Signs of A Fresh Rally

Cannabis3 hours ago

Growing with the sun: Cannabis companies look to outdoor cultivation

Gaming3 hours ago

‘PUBG Mobile’ 0.19.0 Arrives on iOS and Android Tomorrow with the Nordic Styled Map Livik, Royale Pass S14, and More

Cyber Security3 hours ago

Cyber Attack on Iran Nuclear Facility by USA or Israel

Cyber Security3 hours ago

The UK to axe Huawei from 5G network build due to security fears

Cyber Security3 hours ago

Behave – A New Browser Extension to Find web sites that Perform Browser-Based Port Scans or Attack

Automotive4 hours ago

Chip Reliability Vs. Cost

Fintech4 hours ago

Germany Wants to Give BaFin More Responsibility Amid Wirecard Scandal

Blockchain4 hours ago

Insights: After Reaching 4 Million Users, Luno Enters Kenya and Ghana Next

Payments4 hours ago

Not your keys, not your Bitcoin

Blockchain4 hours ago

Bitcoin News Summary – July 6, 2020

Blockchain4 hours ago

Customer Service Is Key, According to OKEx’s CEO

Business Insider4 hours ago

Uber will acquire food delivery startup Postmates in $2.6 billion all-stock deal, reports say

Cannabis4 hours ago

Halo Announces Closing of Los Angeles Dispensary Project Acquisition & Passage of Los Angeles Ordinance to Accelerate Approval of Winning Applicants

Fintech4 hours ago

Open banking’s first loan approved

venezuela-raises-petrol-prices-mandates-support-for-petro-at-gas-stations-3.jpg
Cannabis4 hours ago

Marijuana use in pregnancy may cause sleep problems in kids

CNBC4 hours ago

UK to phase out Huawei gear from 5G networks in a major policy U-turn after U.S. sanctions, reports say

Cyber Security4 hours ago

Data exfiltration: The art of distancing

astronomers-find-the-first-known-exposed-core-of-a-gas-giant.jpg
Blockchain4 hours ago

Astronomers find the first known exposed core of a gas giant

Fintech4 hours ago

SelfWealth (ASX:SWF) welcomes influx of active traders in June quarter

Trending