Role access control based on client certificate

AppScaler provides centralized and flexible application access authentication to consolidate identity access management infrastructure and realize enhanced security at a reduced operational cost. The client certificate authentication and authorization are used to prove the identity of the users and also verify “you are permitted to do what you are trying to do”. When user accesses virtual services (with role access […]

TLS 1.2 and TLS 1.0/1.1 Interoperability

In 2020, TLS 1.0 and TLS 1.1 are retired by all major browsers. And some applications like Microsoft office 365 will disable TLS 1.0 And 1.1 on Oct. 15 2020. Why is this Happening? Its all about the vulnerabilities in TLS 1.0/1.1 protocols, which includes Heartbleed, POODLE, BEAST, CRIME. Those vulnerabilities allows attackers to intercept the data (like credit card data, intellectual property, credentials) between […]

Client Certificate Authentication

In typical SSL connection, the client connecting to the server checks the validity of the server by verifying the server’s certificate before the transaction initiated. However, in some situations, the server also needs to authenticate the client (it verifies that you are who you say you are). Client certificate authentication is a mutual certificate-based authentication, where the client provides its […]

What Is HSTS and How Do I Implement It?

HSTS (aka HTTP Strict Transport Security) is a web security policy mechanism that helps to protect websites against man-in-the-middle attacks such as protocol downgrade attacks and cookie hijacking. It allows web servers to declare that web browsers should automatically interact with it using only HTTPS connections, which provide Transport Layer Security, unlike the insecure HTTP used alone. HSTS is an IETF standards […]

Hardware/Software SSL/TLS Performance Testing

The AppScaler appliance with hardware ASIC SSL chip provides a 25x increase in SSL/TLS performance. And there is no performance overhead in CPU utilization, much more SSL connection per second and SSL throughput for both RSA and EC cryptos. AppScaler supports Hardware SSL Acceleration cards from Marvell and Intel: Intel Coleto SSL chip Cavium Nitrox PX, Nitrox III and Nitrox […]

AppScaler v1.1.5 released

Firmware 1.1.5 is a new release for all the AppScaler products including hardware and virtual appliance. At a glance, new features and feature enhancements in this release includes:   Libs upgraded PHP upgraded from 5.6 to 7.3 Openssl upgraded to 1.1.1g Lighttpd upgraded to 1.4.55 Access Policy Module Access Policy Module implemented Certificate AAA Server Type added Now its possible […]

AppScaler v1.1.1 released

Firmware 1.1.1 is a new release for all the AppScaler products including hardware and virtual appliance. With this release, we are proud to introduce Centralized Management Support. At a glance, new features and feature enhancements in this release includes: Centralized Management Support The new product AppScaler CMS support Libs upgraded Openssl upgraded to 1.0.2t TLS 1.3 Hardware Support TLS 1.3 […]

AppScaler v1.1.0 released

Firmware 1.1.0 is a new release for all the AppScaler products including hardware and virtual appliance. With this release, we are proud to introduce WAF extension support and automatic signature online upgrade. At a glance, new features and feature enhancements in this release includes: WAF Enhancement The custom WAF ruleset support Automatic WAF ruleset online upgrade   Libs upgraded Openssl […]