Netflix has identified several denial of service (DoS) flaws in HTTP/2, a popular network protocol that underpins large parts of the web. Exploiting them could bring servers grinding to a halt.
Tag Archives: HTTP/2
Microsoft fixes web server DDoS bug
Overzealous use of HTTP/2 flow control settings in IIS could have brought servers to their knees.
HTTP/3: Come for the speed, stay for the security
Key personnel at the Internet Engineering Task Force (IETF) have suggested basing the next version of a core web protocol on Google technology.
SSCC 193 – Pick a YouTube security token, any token! [PODCAST]
Join Sophos experts Chester Wisniewski and Paul Ducklin as they dissect the latest computer security stories in their inimitable style. Turn news into advice with the Sophos Security Chet Chat!
Firefox issues brand new update to fix HTTPS security hole in new update
Firefox 37.0 added support for a security-enhancing feature in HTTP/2 known as Alternative Services. Unfortunately, the new feature had a rather bad HTTPS security hole all of its own…