Real time monitoring of SSL certificates with SSL Framework

London, UK ā€“ April 20, 2017 ā€“ SOC Prime, Inc. continues to warn about the constant necessity to monitor information about used SSL certificates, as adversaries continue to discover new protocol vulnerabilities. Therefore, it is necessary to obtain regular updates in order to protect your organization against them. Nowadays, more than half of the Internet traffic is encrypted. A growing number of sites start using SSL, and this makes SSL technology a popular attack vector. Vulnerable versions of protocols and vulnerabilities in the implementation of the protocols for a particular operating system or platform can lead to disruption of business processes, tied to the use of secure data transfer protocols. It is also worth mentioning that PCI DSS, NIST and HIPAA standards require using particular algorithms and their implementation.

In this regard, we remind you of a free specialized content for SIEM in Use Case Library – SSL Framework (https://my.socprime.com/en/ucl/ssl/) that will help you to receive all the necessary data regularly. It includes an open source Python utility that automatically sends commands to SSL Labs API to analyze the list of external web domains specified in the settings. Also it includes an analytical package for SIEM (HPE ArcSight, IBM QRadar or Splunk) that enables interactive dashboards and real-time e-mail or syslog alerts on security status changes.