security

The BIG-IP Advanced Firewall Manager is an ICSA-certified Firewall that provides critical protection for all of your web applications. It is built on TMOS (the foundational operating system used by all F5 BIG-IP products), and it can run on any of the F5 Application Delivery Platforms.

I've never picked a lock in my life...until today. I had the chance to attend ShowMeCon, and one of the expo booths was a hands-on experience for lock-picking. The experience was really cool, and it reminded me of the great things you can learn when you support local security conferences. ShowMeCon is the premier hacking and security conference in the St Louis area. They had lots of great speakers and tons of great information to learn.

In today’s Internet, the only thing still more important than security is performance. Therefore, any new security control must also be optimized for performance. For CPU-intensive tasks like HTTPS encryption, there are many lesser-known features...

Even before the advent of HTTPS Everywhere, we struggled to ensure that every inspection tool got a peek at the traffic as it left the data center. With over 60% of Internet traffic encrypted and rising, that challenge is only growing. Simultaneously, HTTPS traffic is encrypted by stronger ciphers, designed to defeat most man-in-the-middle solutions. Specifically, Perfect Forward Secrecy (PFS) ciphers are creating blindspots in security and inspection solutions that rely on passive decryption architectures such as span ports.

David Holmes shares the secret to sleeping like a baby every night.

In February 2016, the hacktivist group Anonymous published a hacktivist message in a video posted on YouTube. The video contains detailed examples of uses for various DDoS tools, and the video description contains a link to a zip file...

Als wir kürzlich eine Studie* in Auftrag gegeben haben, die den Datenschutz beziehungsweise das Verhalten der Nutzer in puncto Datennutzung und Schutz betrachtet, hätte ich ja darauf gewettet, dass wir im Vergleich zu anderen...

Kürzlich fand unsere jährliche Konferenz „Agility 2016“ in Wien statt, auf der wir viele Kunden und Partner begrüßen durften. Für all diejenigen, die uns nicht in Wien treffen konnten, möchte ich gerne die Highlights...

Researched and co-authored by the F5 SOC and the F5 Security Research team Webinject crafting is a separate profession now. There are people who write webinjects and sell them to fraudsters, who use them to weaponize Trojans. Based on our...

A post discussing the burdens of federated authentication - specifically authentication vs authorization.