Presentation is loading. Please wait.

Presentation is loading. Please wait.

Slides by Kent Seamons and Tim van der Horst Last Updated: Nov 8, 2013.

Published byOmarion Knighton Modified over 9 years ago

Similar presentations

Presentation on theme: "Slides by Kent Seamons and Tim van der Horst Last Updated: Nov 8, 2013."— Presentation transcript:

1 Slides by Kent Seamons and Tim van der Horst Last Updated: Nov 8, 2013

2

3  Understand the TLS handshake  Understand client/server authentication in TLS › RSA key exchange › Explain certificate ownership proofs in detail › What cryptographic primitives are used and why?  Understand session resumption  Understand the limitations of TLS

4 SSLv1 (1994) Netscape unreleased SSLv2 (1994) Netscape First release STLP (1996) Microsoft PCT (1995) Microsoft SSLv3 (1995) Netscape TLS 1.0 (1997-1999) IETF (aka SSLv3.1) WTLS (1998) WAP Forum Source: SSL and TLS, Rescorla TLS 1.1 (2006) TLS 1.2 (2008)

5 SSL Record Protocol Operation Source: Network Security Essentials (Stallings)

6 SSL Record Format Source: Network Security Essentials (Stallings)

7

8  In vanilla RSA, the premaster secret is encrypted with the server’s public key › If the server’s private key is compromised all past and future sessions are also compromised › Majority of TLS uses vanilla RSA  Alternatives › Ephemeral RSA › Authenticated Ephemeral Diffie-Hellman

9  How many shared keys are derived between a client and a server that establish a TLS session? › Each side generates 4-6 keys  How does the server prove ownership of its private key? › Implicitly by decrypting the pre-master secret and finishing handshake  How does the client prove ownership of its private key when client authentication is (rarely) used? › Send digital signature to the server  What is the pre-master secret? › Who creates it? › How is it securely transmitted?  What is session resumption? › How does it differ from a regular SSL handshake?  When do the client and server start encrypting traffic using symmetric encryption? › Finished message

Download ppt "Slides by Kent Seamons and Tim van der Horst Last Updated: Nov 8, 2013."

Similar presentations

Crash course on SSL/TLS Ran Canetti December 2009 ( Based on slided by Jörg Schwenk)

Crash course on SSL/TLS Ran Canetti December 2009 ( Based on slided by Jörg Schwenk)
1 Lecture 17: SSL/TLS history, architecture basic handshake session initiation/resumption key computation negotiating cipher suites application: SET.

1 Lecture 17: SSL/TLS history, architecture basic handshake session initiation/resumption key computation negotiating cipher suites application: SET.
CS470, A.SelcukSSL/TLS & SET1 CS 470 Introduction to Applied Cryptography Instructor: Ali Aydin Selcuk.

CS470, A.SelcukSSL/TLS & SET1 CS 470 Introduction to Applied Cryptography Instructor: Ali Aydin Selcuk.
TLS. 14.1 Introduction 14.2 TLS Record Protocol 14.3 TLS Handshake Protocol 14.4 Summary.

TLS Introduction 14.2 TLS Record Protocol 14.3 TLS Handshake Protocol 14.4 Summary.
SMUCSE 5349/49 SSL/TLS. SMUCSE 5349/7349 Layers of Security.

SMUCSE 5349/49 SSL/TLS. SMUCSE 5349/7349 Layers of Security.
Cryptography and Network Security

Cryptography and Network Security
Presented by Fengmei Zou Date: Feb. 10, 2000 The Secure Sockets Layer (SSL) Protocol.

Presented by Fengmei Zou Date: Feb. 10, 2000 The Secure Sockets Layer (SSL) Protocol.
SSL CS772 Fall 2011. Secure Socket layer Design Goals: SSLv2) SSL should work well with the main web protocols such as HTTP. Confidentiality is the top.

SSL CS772 Fall Secure Socket layer Design Goals: SSLv2) SSL should work well with the main web protocols such as HTTP. Confidentiality is the top.
17.1 Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display. Chapter 17 Security at the Transport Layer: SSL and TLS.

17.1 Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display. Chapter 17 Security at the Transport Layer: SSL and TLS.
Socket Layer Security. In this Presentation: need for web security SSL/TLS transport layer security protocols HTTPS secure shell (SSH)

Socket Layer Security. In this Presentation: need for web security SSL/TLS transport layer security protocols HTTPS secure shell (SSH)
VOYAGER: Yet Another Secure Web Browser to Demonstrate Secure Socket Layer Working and Implementation By : Shrinivas G. Deshpande Advisor: Dr. Chung E.

VOYAGER: Yet Another Secure Web Browser to Demonstrate Secure Socket Layer Working and Implementation By : Shrinivas G. Deshpande Advisor: Dr. Chung E.
Web Security (SSL / TLS)

Web Security (SSL / TLS)
7-1 Chapter 7 – Web Security Use your mentality Wake up to reality —From the song, I've Got You under My Skin“ by Cole Porter.

7-1 Chapter 7 – Web Security Use your mentality Wake up to reality —From the song, "I've Got You under My Skin“ by Cole Porter.
An Introduction to Secure Sockets Layer (SSL). Overview Types of encryption SSL History Design Goals Protocol Problems Competing Technologies.

An Introduction to Secure Sockets Layer (SSL). Overview Types of encryption SSL History Design Goals Protocol Problems Competing Technologies.
Transport Layer Security (TLS) Protocol Introduction to networks and communications(CS555) Prof : Dr Kurt maly Student:Abhinav y.

Transport Layer Security (TLS) Protocol Introduction to networks and communications(CS555) Prof : Dr Kurt maly Student:Abhinav y.
SSL AND E- COMMERCE S ECURITY gz2155 Guangwei Zhang.

SSL AND E- COMMERCE S ECURITY gz2155 Guangwei Zhang.
By: Hassan Waqar.  A PROTOCOL for securely transmitting data via the internet.  NETWORK LAYER application.  Developed by NETSCAPE.

By: Hassan Waqar.  A PROTOCOL for securely transmitting data via the internet.  NETWORK LAYER application.  Developed by NETSCAPE.
CMSC 414 Computer (and Network) Security Lecture 26 Jonathan Katz.

CMSC 414 Computer (and Network) Security Lecture 26 Jonathan Katz.
Apr 2, 2002Mårten Trolin1 Previous lecture On the assignment Certificates and key management –Obtaining a certificate –Verifying a certificate –Certificate.

Apr 2, 2002Mårten Trolin1 Previous lecture On the assignment Certificates and key management –Obtaining a certificate –Verifying a certificate –Certificate.
Cryptography and Network Security Chapter 17

Cryptography and Network Security Chapter 17

Similar presentations

Ads by Google