8 New HTTP/2 Implementation Flaws Expose Websites to DoS Attacks


Various implementations of HTTP/2, the latest version of the HTTP network protocol, have been found vulnerable to multiple security vulnerabilities affecting the most popular web server software, including Apache, Microsoft's IIS, and NGINX.Launched in May 2015, HTTP/2 has been designed for better security and improved online experience by speeding up page loads. Today, over hundreds of

view Hacker News
#denial of service
#dos attack
#https encryption
#denial-of-service attacks
#http 20 protocol
#http strict transport security
#http2 protocol
#server vulnerability