Open main menu
Home
Random
Recent changes
Special pages
Community portal
Preferences
About Wikipedia
Disclaimers
Incubator escapee wiki
Search
User menu
Talk
Dark mode
Contributions
Create account
Log in
Editing
Transport Layer Security
(section)
Warning:
You are not logged in. Your IP address will be publicly visible if you make any edits. If you
log in
or
create an account
, your edits will be attributed to your username, along with other benefits.
Anti-spam check. Do
not
fill this in!
====Survey of websites vulnerable to attacks==== {{As of|2021|07}}, the Trustworthy Internet Movement estimated the ratio of websites that are vulnerable to TLS attacks.<ref name="trustworthy_ssl_pulse"/> {|class="wikitable"style=text-align:center |+Survey of the TLS vulnerabilities of the most popular websites |- !scope=col rowspan=2|Attacks !scope=col colspan=4|Security |- !scope=col|Insecure !scope=col|Depends !scope=col|Secure !scope=col|Other |- !scope=row|[[#Renegotiation attack|Renegotiation attack]] |{{Bad|< 0.1%<br />support insecure renegotiation}} |{{Partial|< 0.1%<br />support both}} |{{Good|99.7%<br />support secure renegotiation}} |{{CNone|0.3%<br />no support}} |- !scope=row|[[#RC4 attacks|RC4 attacks]] |{{Bad|0.2%<br />support RC4 suites used with modern browsers}} |{{Partial|3.0%<br />support some RC4 suites}} |{{Good|96.9%<br />no support}} |{{N/A}} |- !scope=row|[[#CRIME attack|TLS Compression (CRIME attack)]] |{{Bad|0%<br />vulnerable}} |{{N/A}} |{{N/A}} |{{N/A}} |- !scope=row|[[#Heartbleed|Heartbleed]] |{{Bad|0%<br />vulnerable}} |{{N/A}} |{{N/A}} |{{N/A}} |- !scope=row|[[CVE-2014-0224|ChangeCipherSpec injection attack]] |{{Bad|< 0.1%<br />vulnerable and exploitable}} |{{Partial|< 0.1%<br />vulnerable, not exploitable}} |{{Good|99.5%<br />not vulnerable}} |{{unknown|0.4%<br />unknown}} |- !scope=row|[[#POODLE attack|POODLE attack against TLS]]<br /><small>(Original POODLE against SSL 3.0 is not included)</small> |{{Bad|< 0.1%<br />vulnerable and exploitable}} |{{N/A}} |{{Good|99.9%<br />not vulnerable}} |{{unknown|0.1%<br />unknown}} |- !scope=row|[[#Downgrade attacks|Protocol downgrade]] |{{Bad|4.1%<br />Downgrade defence not supported}} |{{N/A}} |{{Good|80.2%<br />Downgrade defence supported}} |{{unknown|15.7%<br />unknown}} |}
Edit summary
(Briefly describe your changes)
By publishing changes, you agree to the
Terms of Use
, and you irrevocably agree to release your contribution under the
CC BY-SA 4.0 License
and the
GFDL
. You agree that a hyperlink or URL is sufficient attribution under the Creative Commons license.
Cancel
Editing help
(opens in new window)