SSL/TLS
I was reading a very interesting research conducted by the students of the Leibniz University of Hannover and the Philipps University of Marburg, Germany, about MITM (man-in-the-middle) attacks on data in transit. The applications studied were using SSL (Secure Socket Layer) or TLS (Transport Layer Security) protocols to protect data over the network. Many of the applications were not using SSL/TLS properly, which resulted in vulnerability. Another interesting observation is that since the Android browser does not show the green padlock usually associated with the sites using SSL/TLS, users were not aware of the fact that they were using an insecure website. Check out the paper at http://www2.dcsec.uni-hannover.de/files/android/p50-fahl.pdf. I'm sure it will make an interesting read.
The preceding research brought to light the importance of implementing protocols correctly in the applications. This section introduces SSL/TLS and some notes to implement it correctly. Developed by Netscape...
