1 / 6

Certificates

Certificates. SSL/TLS Overview. Browser. Server. client-hello. server-hello + {server-cert}SK CA. Key exchange (several options). Random key K. client-key-exchange: {K}PK server. K. {HTTP data}K. Most common: only the server is authenticated. SSL Stripping.

renate
Download Presentation

Certificates

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Certificates CS 142 Lecture Notes: Network Security

  2. SSL/TLS Overview Browser Server client-hello server-hello + {server-cert}SKCA Key exchange (several options) Randomkey K client-key-exchange: {K}PKserver K {HTTP data}K Most common: only the server is authenticated CS 142 Lecture Notes: Network Security

  3. SSL Stripping Replace https:// with http:// ActiveAttacker HTTP request HTTP request Modified response HTTP response HTTP request HTTPS request HTTP response HTTPS response Browser Server Attacker opens HTTPS session, forwards requests and responses Attacker observesprivate info CS 142 Lecture Notes: Network Security

  4. HTTPS Indicators HTTP HTTPS Firefox 10 IE 8 Chrome 17 CS 142 Lecture Notes: Network Security

  5. Silly dialogs Mixed Content Indicators Firefox 10: no SSL indicator Chrome 17: caution sign IE 8: warning dialog, no SSL lock CS 142 Lecture Notes: Network Security

  6. CS 142 Lecture Notes: Network Security

More Related