Links For Tonight

Ending October,  a couple of links to articles and writings that may enhance your vision and goals or serve as inspiration in your future and present projects. Choose between REST or SOAP.

Why Google is Hurrying the Web to Kill SHA-1
And it's a funny story about MD5, because, like SHA-1, it was discovered to be breakably weak a very long time ago, and then, like SHA-1, it took a horrifying number of years to rid the internet of it.
Gradually sunsetting SHA-1
SHA-1's use on the Internet has been deprecated since 2011, when the CA/Browser Forum, an industry group of leading web browsers and certificate authorities (CAs) working together to establish basic security requirements for SSL certificates, published their Baseline Requirements for SSL.
SHA1 Deprecation: What You Need to Know
Ensure new certificate and their chains use SHA256; this is critical—if your new certificates are not guaranteed to be SHA256 then all your other efforts will be pointless.
End to End security, or why you shouldn’t drive your motorcycle naked
Today I had to explain to my girlfriend the difference between the expressive power of WS-Security as opposed to HTTPS. She’s a computer scientist, so even if she doesn’t know all the XML mumbo jumbo she understands (maybe better than me) what encryption or signature means.
Secure Web Services: REST over HTTPS vs SOAP + WS-Security.
Which is better? [closed]
Newer Post Older Post Home