Calendar
  • No events
AEC v1.0.4

Cyber Security Info
@Cybersecurityinfo

The use of forged SSL certificates

May 14, 2014

Share Button

Researchers from Carnegie-Mellon University in cooperation with Facebook have tried to determine the scope of using forged SSL certificates. They have analyzed over 3 million SSL connections to Facebook during four months and discovered use of almost 7 thousand connections with forged SSL certificates meaning 0.2% of all SSL traffic. Most of the forged SSL certificates may be attributed to the content filters of companies or anti virus software that controls also SSL traffic. However, the research also lead to discovery of one certificate used worldwide (with majority of traffic from Mexico, USA, Argentina and Brazil) that may be a sign of malware-driven MitM attack.

Share Button

Comments