Presentation is loading. Please wait.

Presentation is loading. Please wait.

Secure Sockets Layer and the SSLiverse

Published byOphelia Norris Modified over 6 years ago

Similar presentations

Presentation on theme: "Secure Sockets Layer and the SSLiverse"— Presentation transcript:

1 Secure Sockets Layer and the SSLiverse
February 25, 2011 George Macon Communications Systems Center School of Electrical and Computer Engineering

2 SSL/TLS Overview SSL/TLS establishes a secure tunnel for data transfer. Current versions in use are SSL 3.0, TLS 1.0, TLS 1.1, and TLS 1.2. TLS 1.2 is defined in RFC 5246. X.509 certificates are used to authenticate the peers. Certificates are issued by commercial Certificate Authorities (CAs). The root CA certificates are included with browsers when they are published.

3 Certificates for TLS There are many CAs trusted by browsers.
All CAs have traditionally gotten equal treatment. This means that a certificate can be trusted to have been validated to the least stringent requirements of all CAs. Domain Validation (DV) Organization Validation (OV) Individual Validation (IV) Extended Validation (EV)

4 An OV Certificate and Browser Presentation
Certificate: Data: Version: 3 (0x2) Serial Number: 4d:d3:60:cb:cf:2b:f8:07:e3:d1:89:46:04:3e:b0:78 Signature Algorithm: sha1WithRSAEncryption Issuer: C=GB, ST=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO High Assurance Secure Server CA Validity Not Before: Dec 3 00:00: GMT Not After : Jan 13 23:59: GMT Subject: C=US/postalCode=94110, ST=California, L=San Francisco/streetAddress=454 Shotwell St, O=Electronic Frontier Foundation, OU=Comodo PremiumSSL Wildcard, CN=*.eff.org X509v3 extensions: X509v3 Subject Alternative Name: DNS:*.eff.org, DNS:eff.org

5 Extended Validation Certificates
EV certificates are identified by the presence of “EV Policy OIDs” in the certificatePolicy extension. Each CA has its own EV Policy OID. Browsers give special treatment to certificates with recognized EV OIDs.

6 The SSL Observatory Electronic Frontier Foundation project
Scanned entire IPv4 space for hosts that respond on TCP port 443. Saved server responses for each host Talk at Defcon 18: “An Observatory for the SSLiverse” They provided a MySQL database dump of all of the certificates. I wrote a new parser that uses a more normalized schema.

7 Certificate Encoding Certificates are encoded using a flavor of ASN.1 called Distinguished Encoding Rules (DER). Theoretically, any two systems that encode the same certificate should result with byte-identical encodings. The rules are not closely followed. For example, the uTCTime type specifies ‘YYMMDDHHMMSSZ’ as the format, but some certs use ‘YYMMDDHHMMSS+0000’ instead.

8 Example of ASN.1 Encoding
0:d=0 hl=4 l=1453 cons: SEQUENCE 4:d=1 hl=4 l=1173 cons: SEQUENCE 8:d=2 hl=2 l= 3 cons: cont [ 0 ] 10:d=3 hl=2 l= 1 prim: INTEGER :02 13:d=2 hl=2 l= 16 prim: INTEGER :4DD360CBCF :d=2 hl=2 l= 13 cons: SEQUENCE 33:d=3 hl=2 l= 9 prim: OBJECT :sha1WithRSAEncryption 44:d=3 hl=2 l= 0 prim: NULL 46:d=2 hl=3 l= 137 cons: SEQUENCE 49:d=3 hl=2 l= 11 cons: SET 51:d=4 hl=2 l= 9 cons: SEQUENCE 53:d=5 hl=2 l= 3 prim: OBJECT :countryName 58:d=5 hl=2 l= 2 prim: PRINTABLESTRING :GB

9 Public Key Algorithms

10 Cipher Suites

11 RSA Modulus Size

12 Improper Certificates
RFC 1918 IP Addresses: 339 Unqualified Host Names: 28207 Local Host Names: 34683

13 Improper EV Certificates
28 EV Certificates with RFC 1918 IP addresses or local or unqualified host names 178 Certificates with RSA keys shorter than 2048 bits but expire after December 31, 2010

14 Utility Accountability

Download ppt "Secure Sockets Layer and the SSLiverse"

Similar presentations

An Introduction to Secure Sockets Layer (SSL). Overview Types of encryption SSL History Design Goals Protocol Problems Competing Technologies.

An Introduction to Secure Sockets Layer (SSL). Overview Types of encryption SSL History Design Goals Protocol Problems Competing Technologies.
1 ISA 562 Information Systems Theory and Practice 10. Digital Certificates.

1 ISA 562 Information Systems Theory and Practice 10. Digital Certificates.
APNIC Trial of Certification of IP Addresses and ASes RIPE 52 Plenary George Michaelson Geoff Huston.

APNIC Trial of Certification of IP Addresses and ASes RIPE 52 Plenary George Michaelson Geoff Huston.
Resource Certificate Profile SIDR WG Meeting IETF 66, July 2006 draft-ietf-sidr-res-certs-01 Geoff Huston Rob Loomans George Michaelson.

Resource Certificate Profile SIDR WG Meeting IETF 66, July 2006 draft-ietf-sidr-res-certs-01 Geoff Huston Rob Loomans George Michaelson.
INF 123 SW ARCH, DIST SYS & INTEROP LECTURE 17 Prof. Crista Lopes.

INF 123 SW ARCH, DIST SYS & INTEROP LECTURE 17 Prof. Crista Lopes.
TLS/SSL Review. Transport Layer Security A 30-second history Secure Sockets Layer was developed by Netscape in 1994 as a protocol which permitted persistent.

TLS/SSL Review. Transport Layer Security A 30-second history Secure Sockets Layer was developed by Netscape in 1994 as a protocol which permitted persistent.
Digital Certificates Made Easy Sam Lutgring Director of Informational Technology Services Calhoun Intermediate School District.

Digital Certificates Made Easy Sam Lutgring Director of Informational Technology Services Calhoun Intermediate School District.
Secure Socket Layer (SSL)

Secure Socket Layer (SSL)
National Institute of Advanced Industrial Science and Technology Self-audit report of AIST GRID CA Yoshio Tanaka Information.

National Institute of Advanced Industrial Science and Technology Self-audit report of AIST GRID CA Yoshio Tanaka Information.
Chapter 23 Internet Authentication Applications Kerberos Overview Initially developed at MIT Software utility available in both the public domain and.

Chapter 23 Internet Authentication Applications Kerberos Overview Initially developed at MIT Software utility available in both the public domain and.
1 DCS 835 – Computer Networking and the Internet Digital Certificate and SSL (rev.06-17-07) Team 1 Rasal Mowla (project leader) Alvaro Restrepo, Carlos.

1 DCS 835 – Computer Networking and the Internet Digital Certificate and SSL (rev ) Team 1 Rasal Mowla (project leader) Alvaro Restrepo, Carlos.
IST-2006-026409 www.eu-eela.org E-infrastructure shared between Europe and Latin America ULAGrid Certification Authority Vanessa Hamar Universidad de Los.

IST E-infrastructure shared between Europe and Latin America ULAGrid Certification Authority Vanessa Hamar Universidad de Los.
Certificate Requests to HIP Jani Pellikka 80 th IETF Mar 27 th – Apr 1 st 2011 Prague, Czech Republic.

Certificate Requests to HIP Jani Pellikka 80 th IETF Mar 27 th – Apr 1 st 2011 Prague, Czech Republic.
X.509 Topics PGP S/MIME Kerberos. Directory Authentication Framework X.509 is part of the ISO X.500 directory standard. used by S/MIME, SSL, IPSec, and.

X.509 Topics PGP S/MIME Kerberos. Directory Authentication Framework X.509 is part of the ISO X.500 directory standard. used by S/MIME, SSL, IPSec, and.
Security CNS 4650 Fall 2004 Rev. 2 SSL, SASL, PKI.

Security CNS 4650 Fall 2004 Rev. 2 SSL, SASL, PKI.
Washington System Center © 2005 IBM Corporation August 25, 2005 RDS Training Secure Socket Layer (SSL) Overview z/Series Security (Mary Sweat, Greg Boyd)

Washington System Center © 2005 IBM Corporation August 25, 2005 RDS Training Secure Socket Layer (SSL) Overview z/Series Security (Mary Sweat, Greg Boyd)
Module 2: Introducing Windows 2000 Security. Overview Introducing Security Features in Active Directory Authenticating User Accounts Securing Access to.

Module 2: Introducing Windows 2000 Security. Overview Introducing Security Features in Active Directory Authenticating User Accounts Securing Access to.
Slides accompanying 2WC12 Sebastiaan de Hoogh. MD5 Compression function.

Slides accompanying 2WC12 Sebastiaan de Hoogh. MD5 Compression function.
1 Certification Issue : how do we confidently know the public key of a given user? Authentication : a process for confirming or refuting a claim of identity.

1 Certification Issue : how do we confidently know the public key of a given user? Authentication : a process for confirming or refuting a claim of identity.
IP Security (IPSec) Matt Hermanson. What is IPSec? It is an extension to the Internet Protocol (IP) suite that creates an encrypted and secure conversation.

IP Security (IPSec) Matt Hermanson. What is IPSec? It is an extension to the Internet Protocol (IP) suite that creates an encrypted and secure conversation.

Similar presentations

Ads by Google