Feeds

Amazon flicks switch on CloudFront security features

Perfect Forward Secrecy added to SSL suite

Intelligent flash storage arrays

Amazon has beefed up security on its CloudFront services, adding Perfect Forward Secrecy, OCSP stapling and session tickets to its SSL support.

The company describes the new AWS features in full in this blog post.

Session tickets are designed to improve performance, particularly in the case of an interrupted session between server and client. Instead of renegotiating the SSL session from scratch, the original negotiation ends with the server passing a session ticket to the client, which it can use to re-establish communications on the basis of the original handshake.

OCSP stapling is a technique allowing CloudFront to handle certificate status checking, instead of that burden falling on the browser. Users taking advantage of the feature will be able to let CloudFront handle both locating the relevant certificate authority via DNS, and checking certificate status.

The certificate status is then “stapled” to the SSL handshake, yielding benefits to both performance and convenience (and security, since users generally know very little about certificates anyhow).

As well as Perfect Forward Secrecy, the company also says it's added new RSA-AES cyphers to CloudFront. ®

Remote control for virtualized desktops

Whitepapers

Why cloud backup?
Combining the latest advancements in disk-based backup with secure, integrated, cloud technologies offer organizations fast and assured recovery of their critical enterprise data.
Getting started with customer-focused identity management
Learn why identity is a fundamental requirement to digital growth, and how without it there is no way to identify and engage customers in a meaningful way.
Seattle children’s accelerates Citrix login times by 500% with cross-tier insight
Seattle Children’s is a leading research hospital with a large and growing Citrix XenDesktop deployment. See how they used ExtraHop to accelerate launch times.
10 threats to successful enterprise endpoint backup
10 threats to a successful backup including issues with BYOD, slow backups and ineffective security.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?