HTTP over SSL/TLS (HTTPS): 443

Security Weaknesses:

• Vulnerable to outdated or misconfigured TLS versions.

• Susceptible to attacks like BEAST, POODLE, and Heartbleed.

• Compromised certificate authorities can lead to MITM attacks.

Security Defense and Mitigation Measures:

• Enforce the use of modern TLS versions (TLS 1.2 and 1.3).

• Regularly update and patch servers and TLS libraries.

• Monitor and manage certificates using Certificate Transparency.

Indicators of Compromise or Attack:

• Unexpected or expired TLS certificates.

• Increased rate of TLS handshake failures.

• Traffic anomalies despite encryption.