News & Announcements

Are Web service providers encrypting their data?

The Electronic Frontier Foundation has published an infographic list showing the Web service providers that encrypt or don’t encrypt their users data as it traverses the Internet.

The list derives from the foundation’s Who Has Your Back Program, which surveys Web service providers to find out if they are implementing the foundation’s best practices for encryption.

The recommendations call for Web service providers to protect users’ data by: 1) Encrypting their websites with Hypertext Transfer Protocol Secure (HTTPS) by default; 2) Flagging all authentication cookies as secure; 3) Enabling HTTP Strict Transport Security (HSTS); 4) Implementing STARTTLS for email transfer; and 5) Using forward secrecy for their encryption keys.

Of the Web service providers surveyed, only four – Google, Dropbox, SpiderOak and Sonic.net, received a passing mark in all five points. This infographic shows how they all fared. You may read the original posting here.
Encrypted Web services https

Related Posts

Updated Software Uses Combination Testing to Catch Bugs Fast and Easy Researchers at the National Institute of Standards and Technology (NIST) have released an updated version of a computer system testing tool that can c...
Public sector should use open standards The Commissioner-designate Neelie Kroes wants the public sector to increase its use of open standards, she said in her appearance before a European Pa...
OpenOffice will be cheaper to maintain "OpenOffice will be cheaper to maintain and will run better than Microsoft's proprietary alternative", expects Lars Roark, IT manager at the Danish ...
Vagrant 1.8 released. Includes support for linked clones and snapshots Vagrant 1.8 has been released. Comes with support for linked clones and snapshots. Vagrant is a very popular open source application for building a...
Towards a mandatory, always-on and ubiquitous encryption in XMPP networks Now that we know that our online communications are not necessarily private and secure, there is a growing need to have end-to-end encryption built in...
Set up, run a pentest lab on AWS or Google Cloud with Kali Linux, Metasploitable and WebGo... Editor: Kali Linux is a special Linux distribution designed just for penetration testing, or pentesting. It is based on Debian Testing, and is one of ...

We Recommend These Vendors and Free Offers

Launch an SSD VPS in Europe, USA, Asia & Australia on Vultr's KVM-based Cloud platform starting at $5:00/month (15 GB SSD, 768 MB of RAM).

Deploy an SSD Cloud server in 55 seconds on DigitalOcean. Built for developers and starting at $5:00/month (20 GB SSD, 512 MB of RAM).

Want to become an expert ethical hacker and penetration tester? Request your free video training course of Online Penetration Testing and Ethical Hacking

Whether you're new to Linux or are a Linux guru, you can learn a lot more about the Linux kernel by requesting your free ebook of Linux Kernel In A Nutshell.


Leave a Comment

Your email address will not be published. Required fields are marked *

*