Presentation is loading. Please wait.

Presentation is loading. Please wait.

SSL/TLS after DigiNotar and BEAST

Published byMaximillian Porter Modified over 9 years ago

Similar presentations

Presentation on theme: "SSL/TLS after DigiNotar and BEAST"— Presentation transcript:

1 SSL/TLS after DigiNotar and BEAST
Course: Cyberdefence Seminar Lecturer: Ahto Buldas Author: Mikheil Basilaia a106936

2 The Plan SSL/TLS overview BEAST hack DigiNotar hack
Future of communication security in internet

3 What is SSL? Stands for Secure Socket Layer
Cryptographic protocol securing connections Predecessor of Transport Layer Security (TLS) Foundation for communication security in internet

4 Functions SSL/TLS uses: Certificates for authentication
Digital signatures and message digests for integrity Encryption for privacy/confidentiality

5 Versions SSL 1.0 (never released for wide usage) SSL 2.0 (1995)
TLS 1.0 / SSL 3.1 (1999) TLS 1.1 / SSL 3.2 (2006) TLS 1.2 / SSL 3.3 (2008)

6 Usage By Qualys

7 BEAST Stands for Browser Exploit Against SSL/TLS
Attacks SSL 3.0 and TLS 1.0 Breaches confidentiality (while other attacks aim authentication) Published in September, 2011 by Duong and Rizzo Exampled on PayPal payment

8 BEAST – Technical Details
Attacks active SSL/TLS connections Decrypts cookies Plaintext recovery attack Exploits vulnerability connected to cipher block chaining (CBC)

9 BEAST – Requirements/Limitations
Needs JavaScript code running Needs control over victim’s network Needs to overcome same-origin policy Some ciphers (RC4) does not use CBC (AES and DES use)

10 BEAST – What can we do? Update IE Use Chrome (uses RC4)
Disable JavaScript in Firefox

11 DigiNotar Hack Dutch Certification Authority
Over 500 certificates lost (including certificates for Google, Microsoft, Skype, Dutch government, CIA, Mossad. . .) Hacked in July, went public in August, declared bankruptcy in September, 2011

12 DigiNotar – Other Details
DigiNotar system used to issue fake certificates Farsi-speaking hacker Failed because technical negligence The case posed a question of security in internet

13 Usage Iranian Gmail users eavesdropped
Man-in-the-middle-attack (attack on confidentiality) Needs traffic to be rerouted to other servers – probably government involvement

14 What can we do? Disable DigiNotar certificates (do it manually or update browsers) Mac products/Windows XP/Windows Server 2003 may need manual deletion

15 An Example

16 What if. . . Other CAs also fail? VeriSign – too big to fail?
Swedbank/SEB/Nordea use certificates by VeriSign Security in internet will be undermined

17 Future Implement TLS 1.2/TLS 1.3
Maybe needs bigger failure than DigiNotar DigiNotar example can be attractive for powerful cyber actors

18 Thank You

Download ppt "SSL/TLS after DigiNotar and BEAST"

Similar presentations

The Dog’s Biggest Bite. Overview History Start Communication Protocol Weakness POODLE Issues.

The Dog’s Biggest Bite. Overview History Start Communication Protocol Weakness POODLE Issues.
Internet and Intranet Protocols and Applications Lecture 9a: Secure Sockets Layer (SSL) March, 2004 Arthur Goldberg Computer Science Department New York.

Internet and Intranet Protocols and Applications Lecture 9a: Secure Sockets Layer (SSL) March, 2004 Arthur Goldberg Computer Science Department New York.
Cryptography and Network Security

Cryptography and Network Security
Socket Layer Security. In this Presentation: need for web security SSL/TLS transport layer security protocols HTTPS secure shell (SSH)

Socket Layer Security. In this Presentation: need for web security SSL/TLS transport layer security protocols HTTPS secure shell (SSH)
7-1 Chapter 7 – Web Security Use your mentality Wake up to reality —From the song, I've Got You under My Skin“ by Cole Porter.

7-1 Chapter 7 – Web Security Use your mentality Wake up to reality —From the song, "I've Got You under My Skin“ by Cole Porter.
An Introduction to Secure Sockets Layer (SSL). Overview Types of encryption SSL History Design Goals Protocol Problems Competing Technologies.

An Introduction to Secure Sockets Layer (SSL). Overview Types of encryption SSL History Design Goals Protocol Problems Competing Technologies.
Chapter 7 Web Security MSc. NGUYEN CAO DAT Dr. TRAN VAN HOAI.

Chapter 7 Web Security MSc. NGUYEN CAO DAT Dr. TRAN VAN HOAI.
Transport Layer Security (TLS) Protocol Introduction to networks and communications(CS555) Prof : Dr Kurt maly Student:Abhinav y.

Transport Layer Security (TLS) Protocol Introduction to networks and communications(CS555) Prof : Dr Kurt maly Student:Abhinav y.
CSE 461 Section. “Transport Layer Security” protocol Standard protocol for encrypting Internet traffic Previously known as SSL (Secure Sockets Layer),

CSE 461 Section. “Transport Layer Security” protocol Standard protocol for encrypting Internet traffic Previously known as SSL (Secure Sockets Layer),
ITA, 2.11.2011, 8-TLS.pptx 1 Internet Security 1 (IntSi1) Prof. Dr. Andreas Steffen Institute for Internet Technologies and Applications (ITA) 8 Transport.

ITA, , 8-TLS.pptx 1 Internet Security 1 (IntSi1) Prof. Dr. Andreas Steffen Institute for Internet Technologies and Applications (ITA) 8 Transport.
Mar 12, 2002Mårten Trolin1 This lecture Diffie-Hellman key agreement Authentication Certificates Certificate Authorities SSL/TLS.

Mar 12, 2002Mårten Trolin1 This lecture Diffie-Hellman key agreement Authentication Certificates Certificate Authorities SSL/TLS.
Security Overview Hofstra University University College for Continuing Education - Advanced Java Programming Lecturer: Engin Yalt May 24, 2006.

Security Overview Hofstra University University College for Continuing Education - Advanced Java Programming Lecturer: Engin Yalt May 24, 2006.
January 2011 As a precaution, re-check the exam time in early January. Various rooms are used, your room will be on your personal timetable, available.

January 2011 As a precaution, re-check the exam time in early January. Various rooms are used, your room will be on your personal timetable, available.
Java Security Model Lab#1 I. Omaima Al-Matrafi. Safety features built into the JVM Type-safe reference casting Structured memory access (no pointer arithmetic)

Java Security Model Lab#1 I. Omaima Al-Matrafi. Safety features built into the JVM Type-safe reference casting Structured memory access (no pointer arithmetic)
Cryptography and Network Security Chapter 17

Cryptography and Network Security Chapter 17
CSCE 790: Computer Network Security Chin-Tser Huang University of South Carolina.

CSCE 790: Computer Network Security Chin-Tser Huang University of South Carolina.
How cryptography is used to secure web services Josh Benaloh Cryptographer Microsoft Research.

How cryptography is used to secure web services Josh Benaloh Cryptographer Microsoft Research.
EECC694 - Shaaban #1 lec #16 Spring2000 5-4-2000 Properties of Secure Network Communication Secrecy: Only the sender and intended receiver should be able.

EECC694 - Shaaban #1 lec #16 Spring Properties of Secure Network Communication Secrecy: Only the sender and intended receiver should be able.
Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.

Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.
Topic 11: Key Distribution and Agreement 1 Information Security CS 526 Topic 11: Key Distribution & Agreement, Secure Communication.

Topic 11: Key Distribution and Agreement 1 Information Security CS 526 Topic 11: Key Distribution & Agreement, Secure Communication.

Similar presentations

Ads by Google