Revisiting Challenges in HTTPS and SSL

sok ssl and https revisiting past challenges n.w
1 / 25
Embed
Share

Explore the challenges and advancements in the SSL and HTTPS protocols, focusing on issues in cryptographic protocols, trust models, and security enhancements. Delve into weaknesses in encryption, signature key lengths, protocol implementation flaws, and protocol-level attacks, offering insights into ongoing research and discussions in the field.

  • HTTPS
  • SSL
  • Security
  • Cryptographic Protocols
  • Trust Models
rayaanacharya
clit Follow

Uploaded on | 0 Views

Download Presentation

Please find below an Image/Link to download the presentation.

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author. If you encounter any issues during the download, it is possible that the publisher has removed the file from their server.

You are allowed to download the files provided on this website for personal or commercial use, subject to the condition that they are used lawfully. All files are the property of their respective owners.

Download Presentation

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author.

E N D

Presentation Transcript

  1. SoK: SSL and HTTPS: Revisiting past challenges and evaluating certificate trust model enhancements Presented by: Zhengyang Qu

  2. Roadmap Background Crypto Protocol Issues in HTTPS Trust Model Issues in HTTPS Security Enhancements to CA/B Model Discussion & On-going Research

  3. Background Objectives Confidentiality Server Authentication, Client Authentication (Optional) Protocol Specification and Implementation HTTPS: combination of HTTP with SSL/TLS Client-side (by OS or browser) Firefox: Mozilla s NSS, Chrome: underlying OS Windows, OS X, or NSS on Linux Server-side Apache (OpenSSL), Windows Server (ISS), Solaris (NSS)

  4. Roadmap Background Crypto Protocol Issues in HTTPS Trust Model Issues in HTTPS Security Enhancements to CA/B Model Discussion & On-going Research

  5. Crypto Protocol Issues in HTTPS Weakness in Cryptographic Primitives Weak Encryption & Signature Key Lengths Symmetric key encryption scheme with 40, 56, or 64 bit keys is subject to a brute-force attack. Asymmetric encryption schemes like RSA are subject to factoring attacks when used with a 512 bit modulus. ax=b (mod n) Weak Hash Functions Collision-resistance & Second Preimage Resistance MD5, MD2

  6. Crypto Protocol Issues in HTTPS Implementation Flaws & Related Attacks Pseudorandom Generator (PRG) Seeding Remote Timing Attack Oracle Attacks RSA Encoding Cipher Block Chaining (CBC) Initialization Chosen Plaintext Attacks Compression CBC Padding

  7. Crypto Protocol Issues in HTTPS Protocol-level Attacks Ciphersuite Downgrade Attack Version Downgrade Attack Renegotiation Attack Cross-protocol Attack Diffie-Hellmen or RSA Not state which key agreement algorithm is used Client Traffic Server Client Attacker Handshake Initial Traffic Handshake

  8. Roadmap Background Crypto Protocol Issues in HTTPS Trust Model Issues in HTTPS Security Enhancements to CA/B Model Discussion & On-going Research

  9. Trust Model Issues in HTTPs Certification Domain Validated (DV) & Extended Validated (EV) Security Issues Hostname Validation (CAs) E-mail validations: top-level domain (admin@domain) WhoIS record Hostname Validation (Clients) Parsing Attack (e.g. bank.com evil.com) Mismatch between CA parsing and browser parsing EV Downgrading

  10. Trust Model Issues in HTTPs Anchoring Trust Software Vendors Private Networks (e.g. corporate environment) Security Issues CA Compromise MITM attack (e.g. two compromised CAs Comodo & DigiNotar) Compelled Certificates Nation-states, government (e.g. connection to Facebook via ISPs in Syria)

  11. Trust Model Issues in HTTPs Transitivity of Trust Intermediate CA certificates Path Validation Algorithm Constraints: (1) CA: TRUE (2) pathlen: n Lack of further chain discovery mechanism Intermediate CAs are invisible to client before being encountered

  12. Trust Model Issues in HTTPs Maintenance of Trust Terminate the Validity of a certificate before expiration Get Revocation Status: CRLs & OCSP (updated on- demand) Responsive Revocation Security Issues Blocking Revocation Ownership Transfer Domain: fb.com

  13. Trust Model Issues in HTTPs Indication and Interpretation of Trust Browser Security Cues, Browser Security Warnings, Mixed Content, Mobile Browsers, HTTP Form Submit Security Issues Stripping SSL/TLS Spoofing Browser Chrome Conceding a Warning

  14. Roadmap Background Crypto Protocol Issues in HTTPS Trust Model Issues in HTTPS Security Enhancements to CA/B Model Discussion & On-going Research

  15. Security Enhancements to CA/B Model Security Properties Offered by Primitives Detecting Certificate Substitution Detecting SSL/TLS Stripping PKI Improvements Evaluation Criteria for Impact on HTTPS Security & Privacy Deployability Usability

  16. Security Enhancements to CA/B Model Evaluation of Proposed Primitives Certificate Pinning (Client History) Detection of certificate substitution attacks Certificate Pinning (Server) Better level of granularity Certificate Pinning (Browser Platform) Avoid blind TOFU approach Certificate Pinning (DNS) Who conduct the validation? DNSSEC, DANE

  17. Security Enhancements to CA/B Model Multipath Probing Crowdsourcing Objective information (time-based and space-based) Subjective information (Omnibroker, Monkeysphere) Convergence (Firefox), DoubleCheck, Certificate catalogue (Google)

  18. Security Enhancements to CA/B Model Channel-bound Credentials Modify the authentication value in cookies Credential-bound Channels Key Continuity/Manifest Server-side changes TACK, DANE, DVCert

  19. Security Enhancements to CA/B Model HTTPS-only Pinning Many primitives are never invoked unless an HTTPS connection is requested Domain only supports HTTPS and communicates that with client via a pin Request headers or TLS extensions Pre-established in browser DNS record of the site

  20. Security Enhancements to CA/B Model Visual Cues for Secure POST (e.g. SSLight) Browser-stored CRL Certificate Status Stapling Short-lived Certificates List of Active Certificates, Whitelist

  21. Roadmap Background Crypto Protocol Issues in HTTPS Trust Model Issues in HTTPS Security Enhancements to CA/B Model Discussion & On-going Research

  22. Discussion & On-going Research Protocol-level TLS-Analysis & Modification Trust Model Infrastructure Realistic reflection of trust in the digital world? Human Element & the Security User Interface Raising the Bar Combine the primitives into the infrastructure Replace the functionality of CAs (e.g. DANE) Provide recognizable assurance to users

  23. Thank you! Thank you!

  24. Discussion & On-going Research Important Orthogonal Problems Gap between the user s cognitive notion of what organization connected and the domain name in certificate Condition for read/write access to cookies Compromised client-platform

Related


Self-Supervised Learning of Pretext-Invariant Representations

Self-Supervised Learning of Pretext-Invariant Representations

azami
How to Resolve QuickBooks Payroll Error Code 15223_ A Comprehensive Guide

How to Resolve QuickBooks Payroll Error Code 15223_ A Comprehensive Guide

Alex3
TLS v1.3: Enhancing Round-Trip Times and SSL Configuration

TLS v1.3: Enhancing Round-Trip Times and SSL Configuration

mohammed
SSL for Local Development: Tools and Techniques

SSL for Local Development: Tools and Techniques

coral
Enhancing Security with Hardware Attestation in TLS

Enhancing Security with Hardware Attestation in TLS

alissa
A New Approach to TLS Inspection

A New Approach to TLS Inspection

aviend
DANE, DNSSEC, and TLS in Go6Lab

DANE, DNSSEC, and TLS in Go6Lab

kasz640
Automated Detection of SSL Vulnerabilities in Applications

Automated Detection of SSL Vulnerabilities in Applications

alve_ale
TLS/SSL: Security, Attacks, and TLS 1.3

TLS/SSL: Security, Attacks, and TLS 1.3

otts_oel
Transport Layer Security (TLS) and Secure Sockets Layer (SSL)

Transport Layer Security (TLS) and Secure Sockets Layer (SSL)

ambell
TLS Freight Forwarding Pvt Ltd: Your Business Partner for Complete Logistics & Supply Chain Solutions

TLS Freight Forwarding Pvt Ltd: Your Business Partner for Complete Logistics & Supply Chain Solutions

rayl_9
Practical Aspects of Modern Cryptography: November 2016

Practical Aspects of Modern Cryptography: November 2016

stripling_d
Network Security Course Overview - INFSCI 1075 by Amir Masoumzadeh

Network Security Course Overview - INFSCI 1075 by Amir Masoumzadeh

caer131
Evolution of TLS Security Profiles and Best Practices

Evolution of TLS Security Profiles and Best Practices

antwine_m
Troubleshooting WSL Issues on Inria Windows PC

Troubleshooting WSL Issues on Inria Windows PC

neev_29
Benefits of Free SSL with Let's Encrypt for Website Security

Benefits of Free SSL with Let's Encrypt for Website Security

nive_247
Boosting Image Quality Assessment through Semi-Supervised and Positive-Unlabeled Learning

Boosting Image Quality Assessment through Semi-Supervised and Positive-Unlabeled Learning

amen_aya
Deciphering SSL/TLS Negotiation in Preparation for the 2020 Apocalypse

Deciphering SSL/TLS Negotiation in Preparation for the 2020 Apocalypse

zreb
Heartbleed Bug: Serious Vulnerability in OpenSSL

Heartbleed Bug: Serious Vulnerability in OpenSSL

navarrette_n
TLS Protocol Basics: Standard Cryptographic Protocol for Secure Transmissions

TLS Protocol Basics: Standard Cryptographic Protocol for Secure Transmissions

jaly553
TLS, Crypto, & ULP’s

TLS, Crypto, & ULP’s

ker_gri
The Future of SSL & DNS Security: Enhancements and Solutions

The Future of SSL & DNS Security: Enhancements and Solutions

tysi_3

More Related Content