Presentation is loading. Please wait.

Presentation is loading. Please wait.

User Attitudes Toward the Inspection of Encrypted Traffic Scott Ruoti, Mark O’Neill, Daniel Zappala, Kent Seamons Brigham Young University.

Published byTheresa Page Modified over 8 years ago

Similar presentations

Presentation on theme: "User Attitudes Toward the Inspection of Encrypted Traffic Scott Ruoti, Mark O’Neill, Daniel Zappala, Kent Seamons Brigham Young University."— Presentation transcript:

1 User Attitudes Toward the Inspection of Encrypted Traffic Scott Ruoti, Mark O’Neill, Daniel Zappala, Kent Seamons Brigham Young University

2 Introduction ›TLS Proxies ›SSL Inspection ›Used by organizations to protect their networks ›Used by governments to spy on citizens

3 Attitudes on Inspection of Encrypted Traffic ›Security experts are actively trying to stop TLS proxies –Certificate transparency –DANE ›Business and governments want them ›What do end-users think? –Might decide which side wins this argument –Should guide research –Unexplored

4 TLS Proxies

5 Basic Questions ›Is the website who it says it is? ›Is the connection to the website secure? ›The lock icon is supposed to indicate a secure connection

6 TLS Authentication ›Websites identify themselves using a X.509 certificate ›Browser validates this certificate to authenticate website

7 Certificate Verification ›X.509 certificates are signed by other X.509 certificates ›Browser checks that this chain ends at a trusted root certificate

8 TLS Proxy ›Man-in-the-middle TLS communication ›Generate substitute certificates –Signed properly by the CA system –Signed by a locally installed trusted root ›No visual indication that the connection isn’t secure

9 Uses MALICIOUS ›Stealing passwords ›Identity theft ›Tracking government dissidents ›Spying (for example the NSA) ›Censorship PROTECTIVE ›Blocking malware and viruses ›Protecting company secrets ›Blocking harmful websites ›Catching malicious individuals

10 Teaching Users About TLS Proxies

11 Dilemma ›Goal: gather ordinary people’s opinions ›If we only survey those with pre-existing knowledge… –Mostly security experts –Not our target demographic ›If we teach individuals about TLS proxies –Can survey are target demographic –Might influence participant responses ›Teaching about TLS proxies is not ideal, but is necessary

12 Creating the Description ›Strived for neutrality ›Surveyed existing descriptions –Security experts –Businesses ›Established consensus ›Pilot studies –Convenience sample (6 participants) –MTurk (80 participants)

13 First Survey

14 Methodology ›Amazon Mechanical Turk (MTurk) –1,049 responses –Skewed male (61%) and 25 – 34 years old (41%) –Participants mostly from the USA (87%) and India (12%) ›Instructed users regarding TLS proxies ›Asked participants about their opinions –Likert scale questions –Free response questions

15 Attitudes Regarding TLS Proxies

16 Acceptable Uses ›Protect organizations (51%) –It is the company’s hardware –Companies need to inspect internal traffic to prevent attacks ›Protect individuals (35%) –E.g., anti-virus ›Censor content (7%) –Some indicated it was never acceptable to censor content (3%)

17 Concerns ›Hackers (76%) ›Government spying (71%) ›Privacy (55%) –Identity theft (10%) ›Performed without notification or consent (13%)

18 Reactions PERCEPTION ›Negative (61%) ›Positive (5%) ›Depends (34%) BEHAVIOR ›Suspicious (26%) ›Discontinue use (17%) ›Change behavior (6%)

19 Personas ›Pragmatic majority (76%) ›Privacy fundamentalist (17%) › Unconcerned (1%) ›Jaded (5%) –Cares about security –Feels there is no hope

20 Second Survey

21 Methodology ›Amazon Mechanical Turk (MTurk) –927 responses –Participants mostly from the USA (94%) and India (5%) ›Instructed users regarding TLS proxies ›Asked participants about specific use cases for TLS proxies

22 Attitudes Regarding TLS Proxies

23 Acceptable Uses

24 Participant Responses

25 Informed Participants ›High level of engagement ›Good understanding of problem ›Recognize tradeoffs “This is one of those doubled-edged swords – it can be used for your good and security and it can be used to harm and spy on you. Because of the distinct possibility of lost privacy, this type of proxy should [not be] used, except by your agreement, not by anyone else.”

26 Notification and Risk ›Nearly all participants want notification ›Most participants want consent to be required “Well for some things it would be understandable, I’d just like to be informed so I know the risk I’m taking.” “If I encrypt something no one has the right to unencrypt it unless I give them the right to - simple as that.”

27 Conclusion

28 ›Gathered user attitudes towards TLS proxies ›Participants had nuanced views of trade-offs –TLS proxies are an invasion of privacy –See acceptable uses ›Users want notification and consent ›We need to engage end-users more often

29

Download ppt "User Attitudes Toward the Inspection of Encrypted Traffic Scott Ruoti, Mark O’Neill, Daniel Zappala, Kent Seamons Brigham Young University."

Similar presentations

CSE 461 Section. “Transport Layer Security” protocol Standard protocol for encrypting Internet traffic Previously known as SSL (Secure Sockets Layer),

CSE 461 Section. “Transport Layer Security” protocol Standard protocol for encrypting Internet traffic Previously known as SSL (Secure Sockets Layer),
Session Hijacking Why web security depends on communications security and how TLS everywhere is the only solution. Scott Helme - 6th Aug 2013 - scotthel.me.

Session Hijacking Why web security depends on communications security and how TLS everywhere is the only solution. Scott Helme - 6th Aug scotthel.me.
Networks. User access and levels Most network security involves users having different levels of user access to the network. The network manager will.

Networks. User access and levels Most network security involves users having different levels of user access to the network. The network manager will.
1 MIS 2000 Class 22 System Security Update: Winter 2015.

1 MIS 2000 Class 22 System Security Update: Winter 2015.
ICT & Crime Data theft, phishing & pharming. Data loss/theft Data is often the most valuable commodity any business has. The cost of creating data again.

ICT & Crime Data theft, phishing & pharming. Data loss/theft Data is often the most valuable commodity any business has. The cost of creating data again.
Breaking Trust On The Internet

Breaking Trust On The Internet
Computer Ethics Ms. Scales. Computer Ethics Ethics  the right thing to do Acceptable Use Policy  A set of rules and guidelines that are set up to regulate.

Computer Ethics Ms. Scales. Computer Ethics Ethics  the right thing to do Acceptable Use Policy  A set of rules and guidelines that are set up to regulate.
INTERNET SAFETY FOR STUDENTS

INTERNET SAFETY FOR STUDENTS
Information Security 1 Information Security: Security Tools Jeffy Mwakalinga.

Information Security 1 Information Security: Security Tools Jeffy Mwakalinga.
What are Trojan horses?  A Trojan horse is full of as much trickery as the mythological Trojan horse it was named after. The Trojan horse, at first glance.

What are Trojan horses?  A Trojan horse is full of as much trickery as the mythological Trojan horse it was named after. The Trojan horse, at first glance.
A Third Party Service for Providing Trust on the Internet Work done in 2001 at HP Labs by Michael VanHilst and Ski Ilnicki.

A Third Party Service for Providing Trust on the Internet Work done in 2001 at HP Labs by Michael VanHilst and Ski Ilnicki.
Mar 12, 2002Mårten Trolin1 This lecture Diffie-Hellman key agreement Authentication Certificates Certificate Authorities SSL/TLS.

Mar 12, 2002Mårten Trolin1 This lecture Diffie-Hellman key agreement Authentication Certificates Certificate Authorities SSL/TLS.
It’s always better live. MSDN Events Security Best Practices Part 2 of 2 Reducing Vulnerabilities using Visual Studio 2008.

It’s always better live. MSDN Events Security Best Practices Part 2 of 2 Reducing Vulnerabilities using Visual Studio 2008.
Apr 22, 2003Mårten Trolin1 Agenda Course high-lights – Symmetric and asymmetric cryptography – Digital signatures and MACs – Certificates – Protocols Interactive.

Apr 22, 2003Mårten Trolin1 Agenda Course high-lights – Symmetric and asymmetric cryptography – Digital signatures and MACs – Certificates – Protocols Interactive.
Firewalls As Presented by Brian Dunn. Definition General Protects computer(s) from unauthorized access Types Hardware devices Software programs.

Firewalls As Presented by Brian Dunn. Definition General Protects computer(s) from unauthorized access Types Hardware devices Software programs.
Privacy & Security By Martin Perez. Introduction  Information system - People : meaning use, the people who use computers. - Procedures : Guidelines.

Privacy & Security By Martin Perez. Introduction  Information system - People : meaning use, the people who use computers. - Procedures : Guidelines.
Unit 28- Website Development Assignment 1- THEORY P3

Unit 28- Website Development Assignment 1- THEORY P3
Staying Safe, Having Fun, And Cruising The ‘Net Daniel Owens IT Security Professional.

Staying Safe, Having Fun, And Cruising The ‘Net Daniel Owens IT Security Professional.
 Proxy Servers are software that act as intermediaries between client and servers on the Internet.  They help users on private networks get information.

 Proxy Servers are software that act as intermediaries between client and servers on the Internet.  They help users on private networks get information.
1 Integrating ISA Server and Exchange Server. 2 How email works.

1 Integrating ISA Server and Exchange Server. 2 How works.

Similar presentations

Ads by Google