Google releases tool to test apps, devices for SSL/TLS weaknesses
Google released a tool that can be used to test whether the SSL/TLS encrypted connections opened by applications or devices are vulnerable to man-in-the-middle attacks.
A man-in-the-middle (MitM) attack refers to a situation where an attacker is in a position to intercept and manipulate traffic between a client and a server. It is the kind of threat that the SSL (Secure Sockets Layer) and TLS (Transport Layer Security) protocols are meant to protect against.
In practice, however, encrypted SSL/TLS connections can often be vulnerable to MitM attacks due to bad client configurations or unpatched vulnerabilities in libraries that are used by software developers to implement these protocols in their applications.
To read this article in full or to leave a comment, please click here
Read more: Google releases tool to test apps, devices for SSL/TLS weaknesses