Belgian government sites have SSL security is not in order’




Not only Belgian banking sites underperform when it comes to SSL security of their websites, but also many Belgian government sites are vulnerable, says a student who checked the sites poorly implemented SSL security.

Lack ssl In the Netherlands studying Thomas Vanhoutte checked various Belgian government sites with an online scanner tool ssl SSL Labs. This looks at how an SSL implementation is carried out and a score to it. Among others, the eGov-site assessment scores with ‘F’ heavy enough. In addition, the SSL implementations on the site of Digiflow and social security are substandard with scores of respectively F and C. These sites are potentially dangerous because they are sensitive to the Poodle bug , a vulnerability in the SSL 3.0 protocol. Only the eHealth portal scores with an A- well.

Security Researcher Jan Guldentops states on Datanews that governments often do not update from nonchalance SSL implementations. He also suspected that some government sites deliberately be equipped with an outdated SSL implementation to serve visitors with older browser versions anyway.

Not only Belgian government sites perform poorly: a recent study of the Open State Foundation showed that only a pervading use SSL on the five Dutch government sites. The investigation also identified the websites of Belgian banks vulnerable after a scan with the tools of SSL Labs.


Tags: ,

In: Technology & Gadgets Asked By: [15575 Red Star Level]

Answer this Question

You must be Logged In to post an Answer.

Not a member yet? Sign Up Now »