How to Enable LDAPS for Your AWS Microsoft AD Directory

AWS Security Blog How to Enable LDAPS for Your AWS Microsoft AD Directory Starting today, you can encrypt the Lightweight Directory Access Protocol (LDAP) communications between your applications and AWS Directory Service for Microsoft Active Directory, also known as AWS Microsoft AD. Many Windows and Linux applications use Active Directory’s (AD) LDAP service to read … Read more

Security Researchers Lose Faith in HTTP Public Key Pinning

A few years ago, Google security engineers proposed a method for webmasters to protect their users from hackers who might try to impersonate HTTPS websites by using fraudulently obtained SSL certificates. The security mechanism, known as HTTP Public Key Pinning (HPKP) or certificate pinning, is now an internet standard, but some security researchers are having … Read more

Making HTTPS phishing sites easier to spot

For years, we taught users that a website’s URL that includes https at its very beginning is a relatively good indicator of whether they can safely input sensitive information into it. Most users would not be able to explain why that is, exactly, but at least some have that recommendation firmly lodged in mind. Read … Read more