+ All Categories
Home > Documents > 3.Attacks on SSL

3.Attacks on SSL

Date post: 05-Apr-2018
Category:

Documents
Upload: muktesh-mukul
View: 213 times
Download: 0 times
Download Report this document
Share this document with a friend

of 21

Download
Transcript

  • 8/2/2019 3.Attacks on SSL

    1/21

    Anisha Raghu

  • 8/2/2019 3.Attacks on SSL

    2/21

    What is SSL?

    Digital signatures and SSL certificates

    Introduction to HTTPS

    MD5 chosen-prefix collision attack

    Attack on SSL

    Final Thoughts

  • 8/2/2019 3.Attacks on SSL

    3/21

    SSL (Secure socket Layer) is a cryptographic

    protocol that provide security and data

    integrity for communications over networkssuch as the internet.

  • 8/2/2019 3.Attacks on SSL

    4/21

  • 8/2/2019 3.Attacks on SSL

    5/21

  • 8/2/2019 3.Attacks on SSL

    6/21

    Few of the details contained in a certificate:

    Web servers host name

    Issue and expire time

    Public key for the Web server

    Steps to view the certificates in yourcomputer:

    Internet Explorer: Tools | Internet Options |Contents | Certificates (view)

    Firefox: Tools | Options | Advanced |Encryption | View Certificates (view)

    http://ie.htm/http://firefox.htm/http://firefox.htm/http://ie.htm/

  • 8/2/2019 3.Attacks on SSL

    7/21

  • 8/2/2019 3.Attacks on SSL

    8/21

    Collisions = different messages, same hash

    Chosen prefix method allows two completely

    arbitrary files to have the same MD5 hash, by

    appending a few thousand bytes at the end

    of each file.

    Example of a chosen prefix collision attack

    http://collision%20attack.htm/http://collision%20attack.htm/

  • 8/2/2019 3.Attacks on SSL

    9/21

    Two certificates that have Different Identities

    Different Public keys

    But have the same digital signature

    Collision of these two certificates using MD5chosen-prefix attack.

    Demo of colliding certificates

    http://colliding%20certificates.htm/http://colliding%20certificates.htm/

  • 8/2/2019 3.Attacks on SSL

    10/21

    A Certification

    Authoritydistributes its CA

    root certificate via

    browser vendors to

    browsers.

  • 8/2/2019 3.Attacks on SSL

    11/21

    A company that

    wants its website

    to be secured,

    purchases a

    website certificate

    at the CA

  • 8/2/2019 3.Attacks on SSL

    12/21

    If its signature can

    be verified with

    the certificate of aCA in the trust list,

    the website

    certificate will be

    accepted.

  • 8/2/2019 3.Attacks on SSL

    13/21

    1a. A legitimate

    website

    certificate is

    obtained from

    a commercial

    CA

    1b. A rogue CAcertificate is

    constructed

  • 8/2/2019 3.Attacks on SSL

    14/21

    Hackers created a

    rouge Certificationauthority using a

    cluster of 200 PS3s

  • 8/2/2019 3.Attacks on SSL

    15/21

    2. A copy of thegenuine

    website isbuilt, put onanother webserver, andequipped withthe roguewebsitecertificate.

  • 8/2/2019 3.Attacks on SSL

    16/21

    3. There exist"redirectionattacks", by

    which thecommunicationfrom thebrowser can be

    redirected tothe roguewebsite.

    Demo

    http://demo.htm/http://demo.htm/

  • 8/2/2019 3.Attacks on SSL

    17/21

    1. VeriSign Inc

    2. RSA data Security

    3. Entrust.net

    4. Equifax5. GTE corporation

    6. IPS safeguard CA

    7. NetLock Halozatbiztonsagi kft

    8. StartCom Ltd9. TC trust Center for security in data

    networks

    10. Thawte

  • 8/2/2019 3.Attacks on SSL

    18/21

    Users

    CertificationAuthorities

    Browser and

    Operating Systemvendors

    Website owners

  • 8/2/2019 3.Attacks on SSL

    19/21

    http://www.win.tue.nl/hashclash/rogue-ca/

    http://www.phreedom.org/research/rogue-

    ca/

    http://www.win.tue.nl/hashclash/TargetColl

    idingCertificates/

    http://blogs.techrepublic.com.com/network

    ing/?p=776

    http://www.win.tue.nl/hashclash/rogue-ca/http://www.phreedom.org/research/rogue-ca/http://www.phreedom.org/research/rogue-ca/http://www.win.tue.nl/hashclash/TargetCollidingCertificates/http://www.win.tue.nl/hashclash/TargetCollidingCertificates/http://blogs.techrepublic.com.com/networking/?p=776http://blogs.techrepublic.com.com/networking/?p=776http://blogs.techrepublic.com.com/networking/?p=776http://blogs.techrepublic.com.com/networking/?p=776http://www.win.tue.nl/hashclash/TargetCollidingCertificates/http://www.win.tue.nl/hashclash/TargetCollidingCertificates/http://www.phreedom.org/research/rogue-ca/http://www.phreedom.org/research/rogue-ca/http://www.phreedom.org/research/rogue-ca/http://www.win.tue.nl/hashclash/rogue-ca/http://www.win.tue.nl/hashclash/rogue-ca/http://www.win.tue.nl/hashclash/rogue-ca/

  • 8/2/2019 3.Attacks on SSL

    20/21

    Colliding X.509 Certificates, Arjen Lenstra,Xiaoyun Wang, and Benne de Weger

    Short chosen-prefix collisions for MD5 andthe creation of a rogue CA certificate, MarcStevens, Alex Sotirov, Jake Appelbaum, ArjenLenstra, David Molnar, Dag Arne Osvik andBenne de Weger

    Target Collisions for MD5 and Colliding X.509Certificates for Different Identities, MarcStevens, Arjen Lenstra, and Benne de Weger

  • 8/2/2019 3.Attacks on SSL

    21/21


Recommended
HTTPS--HTTP Server and Client with SSL 3 - Cisco · HTTPS--HTTP Server and Client with SSL 3.0 TheHTTPS--HTTPServerandClientwithSSL3.0featureprovidesSecureSocketLayer(SSL)version3.0

HTTPS--HTTP Server and Client with SSL 3 - Cisco · HTTPS--HTTP Server and Client with SSL 3.0 TheHTTPS--HTTPServerandClientwithSSL3.0featureprovidesSecureSocketLayer(SSL)version3.0

Documents

THE RAPID GROWTH OF SSL ENCRYPTION - Fortinet · 3 SSL GUIDE: THE RAPID GROWTH OF SSL ENCRYPTION THE “DARK SIDE” OF SSL ENCRYPTION Despite the list of benefits associated with

THE RAPID GROWTH OF SSL ENCRYPTION - Fortinet · 3 SSL GUIDE: THE RAPID GROWTH OF SSL ENCRYPTION THE “DARK SIDE” OF SSL ENCRYPTION Despite the list of benefits associated with

Documents

Detecting and defeating government interception attacks against SSL

Detecting and defeating government interception attacks against SSL

Education

SSL/TLS and MITM attacks - Uppsala University · SSL/TLS and MITM attacks A case study in Network Security By Lars Nybom & Alexander Wall

SSL/TLS and MITM attacks - Uppsala University · SSL/TLS and MITM attacks A case study in Network Security By Lars Nybom & Alexander Wall

Documents

How to Steal Passwords: SSLstrip, LNK Attack, Cross-Site Request Forgery & Scary SSL Attacks Sam Bowne.

How to Steal Passwords: SSLstrip, LNK Attack, Cross-Site Request Forgery & Scary SSL Attacks Sam Bowne.

Documents

Transport Layer and Browser Security - GitHub Pages of SSL/TLS • SSL (or TLS) is a protocol to: –Mitigate MitM attacks –secure a data connection between server and client –using

Transport Layer and Browser Security - GitHub Pages of SSL/TLS • SSL (or TLS) is a protocol to: –Mitigate MitM attacks –secure a data connection between server and client –using

Documents

25-1 Last time □ Firewalls □ Attacks and countermeasures □ Security in many layers ♦ PGP ♦ SSL ♦ IPSec.

25-1 Last time □ Firewalls □ Attacks and countermeasures □ Security in many layers ♦ PGP ♦ SSL ♦ IPSec.

Documents

SSL/TLS and MITM attacks - Uppsala University · 2009. 12. 14. · SSL/TLS – Background SSL/TLS – Secure Socket Layer/Transport Layer Security (rfc 2246) Originally developed

SSL/TLS and MITM attacks - Uppsala University · 2009. 12. 14. · SSL/TLS – Background SSL/TLS – Secure Socket Layer/Transport Layer Security (rfc 2246) Originally developed

Documents

Rennes, 23/10/2014 Cristina Onete maria-cristina.onete@irisa.fr Key-Exchange Protocols. Diffie-Hellman, Active Attacks, and TLS/SSL.

Rennes, 23/10/2014 Cristina Onete [email protected] Key-Exchange Protocols. Diffie-Hellman, Active Attacks, and TLS/SSL.

Documents

Securing the SSL/TLS channel against man-in-the-middle ...€¦ · • If a single one is broken, all TLS/SSL domains are prone to attacks 9 . ... Securing the SSL/TLS channel against

Securing the SSL/TLS channel against man-in-the-middle ...€¦ · • If a single one is broken, all TLS/SSL domains are prone to attacks 9 . ... Securing the SSL/TLS channel against

Documents

DefensePro: DDoS Protection and Attack Mitigation...usually undetected by traditional DDoS mitigation tools, such as SSL-based lood attacks, attacks on login pages and attacks behind

DefensePro: DDoS Protection and Attack Mitigation...usually undetected by traditional DDoS mitigation tools, such as SSL-based lood attacks, attacks on login pages and attacks behind

Documents

SSL Attacks on the Risev2.itweb.co.za/whitepaper/eBook_Radware_SSL... · SSL ATTACKS ON THE RISE 3 01 SSL as an Attack Vector It’s been over 20 years since the earliest versions

SSL Attacks on the Risev2.itweb.co.za/whitepaper/eBook_Radware_SSL... · SSL ATTACKS ON THE RISE 3 01 SSL as an Attack Vector It’s been over 20 years since the earliest versions

Documents

GlobalSign API for SSL Certificates Implementation Guide ... · GlobalSign API for SSL Certificates v4.4 Page 3 3.4 Extended SSL ExtendedSSL, or Extended Validation (EV) SSL, is the

GlobalSign API for SSL Certificates Implementation Guide ... · GlobalSign API for SSL Certificates v4.4 Page 3 3.4 Extended SSL ExtendedSSL, or Extended Validation (EV) SSL, is the

Documents

Securing Online Businesses Against SSL-based DDoS Attacks · 2017. 3. 7. · Protecting Online Businesses Against SSL-based DDoS Attacks Whitepaper Smart Network.Smart Business. 5

Securing Online Businesses Against SSL-based DDoS Attacks · 2017. 3. 7. · Protecting Online Businesses Against SSL-based DDoS Attacks Whitepaper Smart Network.Smart Business. 5

Documents

SSL Attacks on the Rise - cStor · SSL ATTACKS ON THE RISE 2 01 SSL as an 05 Attack Vector Not Just for Commerce 02 Different Types of SSL/ 06 Encrypted Attacks Complicating Detection

SSL Attacks on the Rise - cStor · SSL ATTACKS ON THE RISE 2 01 SSL as an 05 Attack Vector Not Just for Commerce 02 Different Types of SSL/ 06 Encrypted Attacks Complicating Detection

Documents

Importance of Monitoring SSL CERTIFICATES IN BUSINESS ...€¦ · prevent security attacks and system outages. Given the business criticality of SSL certificates, manual tracking

Importance of Monitoring SSL CERTIFICATES IN BUSINESS ...€¦ · prevent security attacks and system outages. Given the business criticality of SSL certificates, manual tracking

Documents

Real-Time Communication Security: SSL/TLS · Real-Time Communication Security: SSL/TLS ... Secure Socket Layer ... CSU610: Network Security SSL – TLS 14 Attacks fixed in v3

Real-Time Communication Security: SSL/TLS · Real-Time Communication Security: SSL/TLS ... Secure Socket Layer ... CSU610: Network Security SSL – TLS 14 Attacks fixed in v3

Documents

SBC 2012 - SSL/TLS Attacks & Defenses (Lê Quốc Nhật Đông)

SBC 2012 - SSL/TLS Attacks & Defenses (Lê Quốc Nhật Đông)

Technology