Role access control based on client certificate

AppScaler provides centralized and flexible application access authentication to consolidate identity access management infrastructure and realize enhanced security at a reduced operational cost. The client certificate authentication and authorization are used to prove the identity of the users and also verify “you are permitted to do what you are trying to do”. When user accesses virtual services (with role access […]

TLS 1.2 and TLS 1.0/1.1 Interoperability

In 2020, TLS 1.0 and TLS 1.1 are retired by all major browsers. And some applications like Microsoft office 365 will disable TLS 1.0 And 1.1 on Oct. 15 2020. Why is this Happening? Its all about the vulnerabilities in TLS 1.0/1.1 protocols, which includes Heartbleed, POODLE, BEAST, CRIME. Those vulnerabilities allows attackers to intercept the data (like credit card data, intellectual property, credentials) between […]

Client Certificate Authentication

In typical SSL connection, the client connecting to the server checks the validity of the server by verifying the server’s certificate before the transaction initiated. However, in some situations, the server also needs to authenticate the client (it verifies that you are who you say you are). Client certificate authentication is a mutual certificate-based authentication, where the client provides its […]

What Is HSTS and How Do I Implement It?

HSTS (aka HTTP Strict Transport Security) is a web security policy mechanism that helps to protect websites against man-in-the-middle attacks such as protocol downgrade attacks and cookie hijacking. It allows web servers to declare that web browsers should automatically interact with it using only HTTPS connections, which provide Transport Layer Security, unlike the insecure HTTP used alone. HSTS is an IETF standards […]

Hardware/Software SSL/TLS Performance Testing

The AppScaler appliance with hardware ASIC SSL chip provides a 25x increase in SSL/TLS performance. And there is no performance overhead in CPU utilization, much more SSL connection per second and SSL throughput for both RSA and EC cryptos. AppScaler supports Hardware SSL Acceleration cards from Marvell and Intel: Intel Coleto SSL chip Cavium Nitrox PX, Nitrox III and Nitrox […]