Kevin OBrien, profile picture
Uploaded byKevin OBrien
ODP, PPTX836 views

SSL certificates

SSL certificates use public key encryption to verify secure connections between clients and servers. Issues arise from the hierarchical trust model where root certificate authorities can sign other certificates, and some authorities have had their private keys compromised, allowing fake certificates to be generated. Alternative approaches like Certificate Transparency aim to increase transparency and accountability over the certificate issuance and validation process.

Internet
Related topics:
E-commerce

Embed presentation

Download as ODP, PPTX
SSL Certificates Kevin O'Brien Washtenaw Linux Users Group
Use of Encryption ● SSL Certificates use encryption technology ● Both Asymmetric and Symmetric algorithms are employed ● Works similarly to e-mail encryption and signing
Digital Signatures ● When you sign an e-mail, it is encrypted using your private key ● Anything encrypted with that key can be decrypted by your public key ● But the message is there in clear text already, so it is not encryption for secrecy
What it demonstrates ● The encrypted version is there along with the plain text version ● If your public key decrypts the encrypted message, it proves you were the one who sent it ● The messages can be compared to show nothing changed in transit
Digital Certificates ● Use the same technology ● A public key is distributed for each cert ● A signed version of the cert is created using the private key ● The public key can then validate the cert
SSL ● Stands for Secure Sockets Layer ● Created by Netscape in the 1990s ● Currently up to SSL 3.0 ● No longer secure – See POODLE ● https://securityblog.redhat.com/2014/10/15/poo dle-a-ssl3-vulnerability-cve-2014-3566/
TLS ● Transport Layer Security ● More secure than SSL ● Should be used in all cases ● But can be attacked by inducing a downgrade to SSL 3.0 (POODLE) ● https://securityblog.redhat.com/2014/10/20/can- ssl-3-0-be-fixed-an-analysis-of-the-poodle- attack/
Solution? ● Basically, disable any support for SSL 3.0 ● TLS is the successor to SSL ● If you run a server consult the vendor regarding how to disable SSL on your server ● https://access.redhat.com/articles/1232123 ● But note that certain applications that do not support TLS may default to plain text instead
The Request ● A browser makes a request for a connection using HTTPS, or the server defaults to HTTPS ● https://www.eff.org/https-everywhere ● Google is now boosting sites that default to HTTPS in the search results ● https://www.eff.org/deeplinks/2014/08/google- boosts-secure-sites-search-results
Key Exchange ● A public key is distributed by the server ● The private key is used to encrypt a certificate ● This is sent to the client ● Then a Diffie-Hellman-Merkle Key Exchange or an RSA Key Exchange is done to create an agreed symmetric key ● The symmetric key is then used for all further communication
Man-in-the-middle ● What happens if a man-in-the-middle intercepts your request and gives you a fake cert? ● This is what many companies do legally ● If you are on their network, they have a right to search all of your traffic ● So they set up a proxy that intercepts and responds to all requests
Signing Certificates ● Certificate Authorities will for a fee sign your certificate to attest to its validity ● They do this using their own private key ● Symantec is the largest (it bought Verisign ) ● GoDaddy is big here ● Thawte is how Mark Shuttleworth got so rich
X.509 established ● Standard adopted by International Telegraphic Union in 1988 for managing secure communications ● Established the role of Certificate Authorities ● Sets the standard format for certificates
Hierarchical model ● Different from Web of Trust in e-mail ● Chain starts with Root Authorities ● Certificates, including public keys, for most root authorities are included in your browser as it comes from the vendor ● Root authorities can then sign certificates for intermediate authorities ● And then they can sign others, down to the site
If no root cert installed? ● You would then need to go through a handshake process to obtain a cert ● Do you trust what you get?
X.509 format ● Includes (among other things) – Version – Serial Number – Algorithm ID – Issuer – Validity – Public Key ● http://en.wikipedia.org/wiki/X.509
Negotiation ● Version, Serial Number, and Algorithm ID important to set up a connection ● Negotiation between site and browser on encryption protocol used
Trust ● Issuer may be important – Is this cert self- signed? ● Validity – Is this cert still valid? Should have a date range, and be rejected outside of that range ● A good browser should warn you if anything is amiss here, but you can still connect if you want
Public key ● Obviously, this is needed to begin the connection securely
Handshake ● You send the server a message asking to create a connection ● https://www.eff.org/Https-everywhere Will make it always a request for a secure connection ● Or manually by typing HTTPS instead of HTTP in the address bar ● Up to server to accept ● Google does so by default for all of its properties
If you don't request security ● The server then has the option of requesting a secure connection ● This should be the case for any e-commerce transaction ● We are moving to a world where it will be the default
Negotiation (again) ● The server and your browser compare notes on what protocols each supports ● Idea is to choose the most secure protocol that is supported by both ● Then a secret key (Symmetric) is generated by the parties ● Can be done in a couple of ways
Secret Key Exchange ● Then the Symmetric Key is exchanged through the Public Key connection ● This is then used to handle the rest of the communication ● Symmetric Keys are much more efficient ● Note: there are interesting security issues around how this Symmetric Key is exchanged, but that is beyond the scope of this presentation
For more detailed info... ● https://engineering.purdue.edu/kak/compsec/NewL
Last step ● A session ID is established that allows an interrupted session to be resumed without going through the entire handshake again
Certs aren't just Web ● Certificates using X.509 are used in a number of contexts ● For example, UEFI and Secure Boot uses x.509 Certs issued by Microsoft (as the Certificate Authority)
Problems with SSL Certificates ● Most problems are not about cryptography ● As Bruce Schneier says, you can trust the math ● Processes, though, can have vulnerabilities
Root Authorities ● Root authorities cannot be vouched for by any other authority ● Browsers contain a bunch of root authorities they trust, with their certificates ● For example: https://www.mozilla.org/en- US/about/governance/policies/security- group/certs/included/ is what Firefox trusts
Too many! ● The Firefox list contains a huge number of CAs ● Some of them are governments ● Would you trust a cert signed by the government? ● What about the Hong Kong Post Office?
Are CAs Trustworthy? ● Not necessarily ● Nor do all browsers agree on which ones to trust
DigiNotar ● Dutch CA hacked in 2011 ● Hackers appear to be Iranian Gov't. Though that is not certain ● Issued fraudulent certs for Google to do man-in- the-middle attacks on Gmail users ● Affected 300,000 users ● DigiNotar went bankrupt ● https://en.wikipedia.org/wiki/DigiNotar
Indian Government ● National Informatics Centre issued certs purporting to be from Google and Yahoo ● This CA was never trusted by Google or Mozilla ● Was trusted by Microsoft ● No one knows exactly why this was done, but presumably to execute man-in-the-middle attacks ● http://www.zdnet.com/article/microsoft-warns-of-fake- google-and-yahoo-domains/
French Government ● DG Tresor (French Treasury) issued fake Google Certs in 2013 ● These Treasury certs were in turn vouched for by IGC/A ● Again, this seems like a man-in-the-middle attack ● https://nakedsecurity.sophos.com/2013/12/09/serio us-security-google-finds-fake-but-trusted-ssl- certificates-for-its-domains-made-in-france/
TURKTRUST ● Probably a blunder to begin with ● TURKTRUST issued two Intermediate Certs by mistake when it should have issued Regular Certs ● Intermediate Certs can be used to issue and sign other Certs ● One went to Turkish Government
Now it gets interesting ● Turkish government wanted to scan traffic ● This requires getting in the middle ● This is also what companies do with traffic on their network ● If company adds its cert to your browser, it will be trusted, no warning ● Otherwise, you should get a warning
No warning! ● But with an Intermediate Cert, signed by Root Authority, it is already trusted, no warning ● Unless you try to access Google using Chrome ● Chrome comes with a list of Google certs built- in, and complains if it sees anything different ● Legitimate problem, just handled badly
Man-in-the-middle ● Many of the security issues we deal with are classified as man-in-the-middle attacks ● If I intercept your request for a connection and say “Why yes, I am Google, how may I help you?” and can convince you to connect to me, there it is ● I can pass your requests to Google, get back the response, pass it to you
Monitor the traffic ● But because I am in the middle, I can read all of the traffic ● This is what corporate networks do legally ● They need to monitor traffic to assure the security of their network and data ● And this is perfectly legal ● Your company-issued browser probably contains a self-signed certificate that is trusted
Trust? ● And because it is trusted you get no warning ● Unless you use Chrome to access Google<g> ● But your company could have your bank login credentials ● And what about the government? ● Do we believe NSA and GCHQ are any better than the other governments?
Update your browser! ● You want to install browser updates as soon as they are available ● Remember, your browser has the list of trusted certs ● If one is revoked you want to get that
Check for Certificate Revocation ● If a certificate is bad, it should be revoked ● Firefox handles the revocation check quite well ● Chrome refuses to ● This came out with the Heartbleed vulnerability, which was Certificate-related ● Firefox is simply better for security than Chrome in my view
Add-ons ● There are a few good ones for Firefox as well ● Convergence add-on warns you if the certificate you see is not what others see - https://www.eff.org/deeplinks/2011/09/post-mortem- ● Certificate Patrol alerts you if the cert has been updated - https://addons.mozilla.org/en- US/firefox/addon/certificate-patrol/
Two-Factor Authentication ● Don't rely on certs alone ● Two-factor can prevent someone from logging in to your account ● Available for Gmail, and Duo Security has a free account for individuals
For more info ● Electronic Frontier Foundation is the best ● https://www.eff.org/deeplinks/2011/09/post-mortem- Has a how to protect yourself discussion I used for this section
Certificate Solutions ● Protecting yourself as an individual is great, but how can we improve the system? ● The CA model we inherited from the 1990s is fundamentally broken ● We need to rely less on trust and more on provable security
Certificate Transparency ● Google has refused to implement Certificate Revocations, but has offered Certificate Transparency ● Essentially a public log of all Certificates issued ● Can be examined and monitored by anyone ● Log would give a signed Certificate Timestamp for any cert entered to enforce listing ● Relies on owners looking for false certs
TLS Extensions ● Remember that SSL certificates are only one part of the larger Transport Layer Security protocol ● TLS has added extensions for things like new encryption methods and renegotiation of connections ● Other extensions could be added ● http://en.wikipedia.org/wiki/Transport_Layer_Secur ity
OCSP ● Online Certificate Status Protocol is a way of verifying a certificate ● Relies on the issuing authority testifying that the public key is still valid ● But vulnerable to man-in-the-middle
OCSP Stapling ● Cert owner obtains verification from CA and “staples” this to cert ● During handshake, the cert owner tells your browser to look for this ● If it is not found, browser should query CA directly ● Only risk is if CA is compromised ● So probably not safe against NSA<g>
Summary ● SSL Certs use standard cryptography methods ● Problems are not with the cryptography ● But some serious problems with processes ● Trust is not a good way to go

More Related Content

ODP
Passwords
byKevin OBrien
 
ODP
Forward Secrecy
byKevin OBrien
 
PDF
Thotcon 0x5 - Retroactive Wiretapping VPN over DNS
byJohn Bambenek
 
PPTX
A Technical Dive into Defensive Trickery
byDan Kaminsky
 
PDF
Breaking Smart [Bank] Statements – Hacker Halted 2019 – Manuel Nader
byEC-Council
 
PDF
Developer's Guide to JavaScript and Web Cryptography
byKevin Hakanson
 
PDF
THOTCON 0x6: Going Kinetic on Electronic Crime Networks
byJohn Bambenek
 
PPTX
Black ops 2012
byDan Kaminsky
 
Passwords
byKevin OBrien
 
Forward Secrecy
byKevin OBrien
 
Thotcon 0x5 - Retroactive Wiretapping VPN over DNS
byJohn Bambenek
 
A Technical Dive into Defensive Trickery
byDan Kaminsky
 
Breaking Smart [Bank] Statements – Hacker Halted 2019 – Manuel Nader
byEC-Council
 
Developer's Guide to JavaScript and Web Cryptography
byKevin Hakanson
 
THOTCON 0x6: Going Kinetic on Electronic Crime Networks
byJohn Bambenek
 
Black ops 2012
byDan Kaminsky
 

What's hot

PDF
Cryptography In The Browser Using JavaScript
bybarysteyn
 
PDF
The Game of Bug Bounty Hunting - Money, Drama, Action and Fame
byAbhinav Mishra
 
PDF
Securing TodoMVC Using the Web Cryptography API
byKevin Hakanson
 
PPTX
Crypto failures every developer should avoid
byFilip Šebesta
 
PDF
Java script and web cryptography (cf.objective)
byColdFusionConference
 
PDF
Let's Encrypt! Wait. Why? How?
byNancy Thanki
 
PPT
enkripsi and authentication
byahmad amiruddin
 
ODP
Bugs Aren't Random
byDan Kaminsky
 
PPTX
Hacker Halted 2018: From CTF to CVE – How Application of Concepts and Persist...
byEC-Council
 
PDF
Web Apps vs Blockchain dApps (Smart Contracts): tools, vulns and standards
bySecuRing
 
PDF
Wireless Hotspot: The Hackers Playground
byJim Geovedi
 
PPT
Secure Communication with an Insecure Internet Infrastructure
bywebhostingguy
 
PPTX
Cybercrime and the Developer Java2Days 2016 Sofia
bySteve Poole
 
PPTX
Wo defensive trickery_13mar2017
byDan Kaminsky
 
ODP
BSides Cleveland: Phishing Forensics - Is it just suspicious or is it malicious?
byThreatReel Podcast
 
PDF
Hashgraph vs Blockchain | Hedera Hashgraph Tutorial | Hashgraph Technology | ...
byEdureka!
 
PPTX
Password cracking and brute force tools
byzeus7856
 
PDF
Bitcoin, the Blockchain, and Open Source
byAll Things Open
 
PDF
OSDC 2014: Michael Renner - Secure encryption in a wiretapped future
byNETWAYS
 
PDF
Four years of breaking HTTPS with BGP hijacking
byAPNIC
 
Cryptography In The Browser Using JavaScript
bybarysteyn
 
The Game of Bug Bounty Hunting - Money, Drama, Action and Fame
byAbhinav Mishra
 
Securing TodoMVC Using the Web Cryptography API
byKevin Hakanson
 
Crypto failures every developer should avoid
byFilip Šebesta
 
Java script and web cryptography (cf.objective)
byColdFusionConference
 
Let's Encrypt! Wait. Why? How?
byNancy Thanki
 
enkripsi and authentication
byahmad amiruddin
 
Bugs Aren't Random
byDan Kaminsky
 
Hacker Halted 2018: From CTF to CVE – How Application of Concepts and Persist...
byEC-Council
 
Web Apps vs Blockchain dApps (Smart Contracts): tools, vulns and standards
bySecuRing
 
Wireless Hotspot: The Hackers Playground
byJim Geovedi
 
Secure Communication with an Insecure Internet Infrastructure
bywebhostingguy
 
Cybercrime and the Developer Java2Days 2016 Sofia
bySteve Poole
 
Wo defensive trickery_13mar2017
byDan Kaminsky
 
BSides Cleveland: Phishing Forensics - Is it just suspicious or is it malicious?
byThreatReel Podcast
 
Hashgraph vs Blockchain | Hedera Hashgraph Tutorial | Hashgraph Technology | ...
byEdureka!
 
Password cracking and brute force tools
byzeus7856
 
Bitcoin, the Blockchain, and Open Source
byAll Things Open
 
OSDC 2014: Michael Renner - Secure encryption in a wiretapped future
byNETWAYS
 
Four years of breaking HTTPS with BGP hijacking
byAPNIC
 

Viewers also liked

PDF
Information about the SSL Certificate
byCheapSSLUSA
 
PDF
Delivering the news over HTTPS
byPaul Schreiber
 
PDF
WordCamp US: Delivering the news over HTTPS
byPaul Schreiber
 
PDF
Secure Sockets Layer(SSL)Certificate
byCheapSSLUSA
 
PDF
HTTPS, Here and Now
byPhilippe De Ryck
 
PDF
BigWP: Delivering the news over HTTPS
byPaul Schreiber
 
PDF
SSL/TLS
bypavansmiles
 
PDF
HTTPS: What, Why and How (SmashingConf Freiburg, Sep 2015)
byGuy Podjarny
 
PPTX
BrightonSEO Sep 2015 - HTTPS | Mark Thomas
byAnna Morrison
 
PPT
SSL & TLS Architecture short
byAvirot Mitamura
 
PPT
HTTP Basics
bysanjoysanyal
 
PPT
Introduction to Secure Sockets Layer
byNascenia IT
 
PPTX
Http Vs Https .
bysimplyharshad
 
PDF
Nisra16 你的 https 真的安全嗎?
byHuang-I Yang
 
PDF
Do's & Dont's for HTTPs migrations #SearchLDN
byAleyda Solís
 
Information about the SSL Certificate
byCheapSSLUSA
 
Delivering the news over HTTPS
byPaul Schreiber
 
WordCamp US: Delivering the news over HTTPS
byPaul Schreiber
 
Secure Sockets Layer(SSL)Certificate
byCheapSSLUSA
 
HTTPS, Here and Now
byPhilippe De Ryck
 
BigWP: Delivering the news over HTTPS
byPaul Schreiber
 
SSL/TLS
bypavansmiles
 
HTTPS: What, Why and How (SmashingConf Freiburg, Sep 2015)
byGuy Podjarny
 
BrightonSEO Sep 2015 - HTTPS | Mark Thomas
byAnna Morrison
 
SSL & TLS Architecture short
byAvirot Mitamura
 
HTTP Basics
bysanjoysanyal
 
Introduction to Secure Sockets Layer
byNascenia IT
 
Http Vs Https .
bysimplyharshad
 
Nisra16 你的 https 真的安全嗎?
byHuang-I Yang
 
Do's & Dont's for HTTPs migrations #SearchLDN
byAleyda Solís
 

Similar to SSL certificates

PPTX
Certificate pinning in android applications
byArash Ramez
 
PPT
Certificates and Web of Trust
byYousof Alsatom
 
PDF
SSL: Past, Present and Future
byTiago Mendo
 
PDF
SSL: Past, Present and Future
byLuis Grangeia
 
ODP
Lotusphere 2011 SHOW104
byWorkFlowStudios
 
PDF
Understanding Digital Certificates & Secure Sockets Layer
byCheapSSLUSA
 
PDF
Dr. Omar Ali Alibrahim - Ssl talk
bypromediakw
 
PPTX
Public Key Infrastructures
byZefren Edior
 
PPTX
Secure socket layer
byBU
 
PDF
Certificate Management on pfSense 2.4 - pfSense Hangout September 2017
byNetgate
 
PDF
SSL and CA
byX 590
 
PPT
PKI by Gene Itkis
byInformation Security Awareness Group
 
PDF
Trust and Security, presented by Geoff Huston
byAPNIC
 
PPT
Ch12 Cryptographic Protocols and Public Key Infrastructure
byInformation Technology
 
PPTX
Web application security part 02
byPrachi Gulihar
 
PDF
I would appreciate help with these 4 questions. Thank You.1) Expla.pdf
byJUSTSTYLISH3B2MOHALI
 
PDF
#Morecrypto (with tis) - version 2.2
byOlle E Johansson
 
PPTX
Certificates, PKI, and SSL/TLS for infrastructure builders and operators
byDavid Ochel
 
PDF
#Morecrypto 1.8 - with introduction to TLS
byOlle E Johansson
 
PPTX
Introduction to Public Key Infrastructure
byTheo Gravity
 
Certificate pinning in android applications
byArash Ramez
 
Certificates and Web of Trust
byYousof Alsatom
 
SSL: Past, Present and Future
byTiago Mendo
 
SSL: Past, Present and Future
byLuis Grangeia
 
Lotusphere 2011 SHOW104
byWorkFlowStudios
 
Understanding Digital Certificates & Secure Sockets Layer
byCheapSSLUSA
 
Dr. Omar Ali Alibrahim - Ssl talk
bypromediakw
 
Public Key Infrastructures
byZefren Edior
 
Secure socket layer
byBU
 
Certificate Management on pfSense 2.4 - pfSense Hangout September 2017
byNetgate
 
SSL and CA
byX 590
 
PKI by Gene Itkis
byInformation Security Awareness Group
 
Trust and Security, presented by Geoff Huston
byAPNIC
 
Ch12 Cryptographic Protocols and Public Key Infrastructure
byInformation Technology
 
Web application security part 02
byPrachi Gulihar
 
I would appreciate help with these 4 questions. Thank You.1) Expla.pdf
byJUSTSTYLISH3B2MOHALI
 
#Morecrypto (with tis) - version 2.2
byOlle E Johansson
 
Certificates, PKI, and SSL/TLS for infrastructure builders and operators
byDavid Ochel
 
#Morecrypto 1.8 - with introduction to TLS
byOlle E Johansson
 
Introduction to Public Key Infrastructure
byTheo Gravity
 

More from Kevin OBrien

PPTX
American icon pmi
byKevin OBrien
 
ODP
Tls 1.3
byKevin OBrien
 
ODP
Diffie_Hellman-Merkle Key Exchange
byKevin OBrien
 
ODP
Password best practices and the last pass hack
byKevin OBrien
 
ODP
Encryption basics
byKevin OBrien
 
PDF
Linux Directory Structure
byKevin OBrien
 
PDF
Hardware Discovery Commands
byKevin OBrien
 
PDF
Introduction to linux
byKevin OBrien
 
PDF
Help, my computer is sluggish
byKevin OBrien
 
PDF
The ps Command
byKevin OBrien
 
PDF
Installing Software, Part 3: Command Line
byKevin OBrien
 
PDF
Installing Software, Part 2: Package Managers
byKevin OBrien
 
PDF
Installing Software, Part 1 - Repositories
byKevin OBrien
 
PDF
Installing Linux: Partitioning and File System Considerations
byKevin OBrien
 
PDF
The ifconfig Command
byKevin OBrien
 
PDF
Find and Locate: Two Commands
byKevin OBrien
 
PDF
The Shell Game Part 4: Bash Shortcuts
byKevin OBrien
 
PDF
The Shell Game Part 3: Introduction to Bash
byKevin OBrien
 
PDF
The Shell Game Part 2: What are your shell choices?
byKevin OBrien
 
PDF
The Shell Game Part 1: What is a shell?
byKevin OBrien
 
American icon pmi
byKevin OBrien
 
Tls 1.3
byKevin OBrien
 
Diffie_Hellman-Merkle Key Exchange
byKevin OBrien
 
Password best practices and the last pass hack
byKevin OBrien
 
Encryption basics
byKevin OBrien
 
Linux Directory Structure
byKevin OBrien
 
Hardware Discovery Commands
byKevin OBrien
 
Introduction to linux
byKevin OBrien
 
Help, my computer is sluggish
byKevin OBrien
 
The ps Command
byKevin OBrien
 
Installing Software, Part 3: Command Line
byKevin OBrien
 
Installing Software, Part 2: Package Managers
byKevin OBrien
 
Installing Software, Part 1 - Repositories
byKevin OBrien
 
Installing Linux: Partitioning and File System Considerations
byKevin OBrien
 
The ifconfig Command
byKevin OBrien
 
Find and Locate: Two Commands
byKevin OBrien
 
The Shell Game Part 4: Bash Shortcuts
byKevin OBrien
 
The Shell Game Part 3: Introduction to Bash
byKevin OBrien
 
The Shell Game Part 2: What are your shell choices?
byKevin OBrien
 
The Shell Game Part 1: What is a shell?
byKevin OBrien
 

Recently uploaded

PPT
Memory Organization In Assembly Language
byumairmuhammad0409
 
PPTX
CaseStudy-CloudMigration -For USE CASE -Customer Success Info -6-Aug-25.pptx
bywinlentech
 
PPTX
Ideathon template.pptx it is a ideathon template
bykonav71133
 
PPTX
Computer Networks 01[1 using all terms].pptx
bywaqasahmedbhatti633
 
PDF
How Social Media Management Tools Work – Step-by-Step Guide
byTurrboo
 
PDF
Design For Test - Getting Test Automation value from Design Expressions.
byDavid Harrison
 
PPT
Lecture_3 Network Securityeyeyggegeg.ppt
bysawsan202
 
PPTX
Role of VMware and Cloud Computing in CyberSecurity.pptx
byalehanoor1325
 
PPTX
Computer Science Degree for College .pptx
byHanenek1
 
PDF
ARTIFICIAL INTELLIGENCE DEVELOPMENT SERVICE
bydavidjohansen1597
 
PDF
WShell Gameplay and Games of Games of Games
byzramirezmtz9
 
PPTX
COĞRAFYA ödevi 70 sayfa güzeldir hayırlı olsun
bydtilter
 
PDF
ARTIFICIAL INTELLIGENCE DEVELOPMENT SERVICE
bydavidjohansen1597
 
PDF
Micro project .pdf drone technology Report
byRenitaMamgain
 
PDF
WShell Gameplay and Games of Games of Games
byzramirezmtz9
 
PPTX
PRITHVI theater, A true artist. Newzfeaturez.pptx
bysc05digital
 
PPTX
Bibhav Singh.pptx it's very useful for us it's in very good and very nice
byabhishekjaiswal5th33
 
PPTX
ChatGPT on education positively snd negatively
by88rtgpscxx
 
PPTX
BIG DATA it is talking about the big data.pptx
byAbhishekGarg269
 
PDF
tokiohotellistening.pdf for tokiohotelfans
byrafaelgombos1234
 
Memory Organization In Assembly Language
byumairmuhammad0409
 
CaseStudy-CloudMigration -For USE CASE -Customer Success Info -6-Aug-25.pptx
bywinlentech
 
Ideathon template.pptx it is a ideathon template
bykonav71133
 
Computer Networks 01[1 using all terms].pptx
bywaqasahmedbhatti633
 
How Social Media Management Tools Work – Step-by-Step Guide
byTurrboo
 
Design For Test - Getting Test Automation value from Design Expressions.
byDavid Harrison
 
Lecture_3 Network Securityeyeyggegeg.ppt
bysawsan202
 
Role of VMware and Cloud Computing in CyberSecurity.pptx
byalehanoor1325
 
Computer Science Degree for College .pptx
byHanenek1
 
ARTIFICIAL INTELLIGENCE DEVELOPMENT SERVICE
bydavidjohansen1597
 
WShell Gameplay and Games of Games of Games
byzramirezmtz9
 
COĞRAFYA ödevi 70 sayfa güzeldir hayırlı olsun
bydtilter
 
ARTIFICIAL INTELLIGENCE DEVELOPMENT SERVICE
bydavidjohansen1597
 
Micro project .pdf drone technology Report
byRenitaMamgain
 
WShell Gameplay and Games of Games of Games
byzramirezmtz9
 
PRITHVI theater, A true artist. Newzfeaturez.pptx
bysc05digital
 
Bibhav Singh.pptx it's very useful for us it's in very good and very nice
byabhishekjaiswal5th33
 
ChatGPT on education positively snd negatively
by88rtgpscxx
 
BIG DATA it is talking about the big data.pptx
byAbhishekGarg269
 
tokiohotellistening.pdf for tokiohotelfans
byrafaelgombos1234
 

SSL certificates

  • 1.
  • 2.
    Use of Encryption ●SSL Certificates use encryption technology ● Both Asymmetric and Symmetric algorithms are employed ● Works similarly to e-mail encryption and signing
  • 3.
    Digital Signatures ● Whenyou sign an e-mail, it is encrypted using your private key ● Anything encrypted with that key can be decrypted by your public key ● But the message is there in clear text already, so it is not encryption for secrecy
  • 4.
    What it demonstrates ●The encrypted version is there along with the plain text version ● If your public key decrypts the encrypted message, it proves you were the one who sent it ● The messages can be compared to show nothing changed in transit
  • 5.
    Digital Certificates ● Usethe same technology ● A public key is distributed for each cert ● A signed version of the cert is created using the private key ● The public key can then validate the cert
  • 6.
    SSL ● Stands forSecure Sockets Layer ● Created by Netscape in the 1990s ● Currently up to SSL 3.0 ● No longer secure – See POODLE ● https://securityblog.redhat.com/2014/10/15/poo dle-a-ssl3-vulnerability-cve-2014-3566/
  • 7.
    TLS ● Transport LayerSecurity ● More secure than SSL ● Should be used in all cases ● But can be attacked by inducing a downgrade to SSL 3.0 (POODLE) ● https://securityblog.redhat.com/2014/10/20/can- ssl-3-0-be-fixed-an-analysis-of-the-poodle- attack/
  • 8.
    Solution? ● Basically, disableany support for SSL 3.0 ● TLS is the successor to SSL ● If you run a server consult the vendor regarding how to disable SSL on your server ● https://access.redhat.com/articles/1232123 ● But note that certain applications that do not support TLS may default to plain text instead
  • 9.
    The Request ● Abrowser makes a request for a connection using HTTPS, or the server defaults to HTTPS ● https://www.eff.org/https-everywhere ● Google is now boosting sites that default to HTTPS in the search results ● https://www.eff.org/deeplinks/2014/08/google- boosts-secure-sites-search-results
  • 10.
    Key Exchange ● Apublic key is distributed by the server ● The private key is used to encrypt a certificate ● This is sent to the client ● Then a Diffie-Hellman-Merkle Key Exchange or an RSA Key Exchange is done to create an agreed symmetric key ● The symmetric key is then used for all further communication
  • 11.
    Man-in-the-middle ● What happensif a man-in-the-middle intercepts your request and gives you a fake cert? ● This is what many companies do legally ● If you are on their network, they have a right to search all of your traffic ● So they set up a proxy that intercepts and responds to all requests
  • 12.
    Signing Certificates ● CertificateAuthorities will for a fee sign your certificate to attest to its validity ● They do this using their own private key ● Symantec is the largest (it bought Verisign ) ● GoDaddy is big here ● Thawte is how Mark Shuttleworth got so rich
  • 13.
    X.509 established ● Standardadopted by International Telegraphic Union in 1988 for managing secure communications ● Established the role of Certificate Authorities ● Sets the standard format for certificates
  • 14.
    Hierarchical model ● Differentfrom Web of Trust in e-mail ● Chain starts with Root Authorities ● Certificates, including public keys, for most root authorities are included in your browser as it comes from the vendor ● Root authorities can then sign certificates for intermediate authorities ● And then they can sign others, down to the site
  • 15.
    If no rootcert installed? ● You would then need to go through a handshake process to obtain a cert ● Do you trust what you get?
  • 16.
    X.509 format ● Includes(among other things) – Version – Serial Number – Algorithm ID – Issuer – Validity – Public Key ● http://en.wikipedia.org/wiki/X.509
  • 17.
    Negotiation ● Version, SerialNumber, and Algorithm ID important to set up a connection ● Negotiation between site and browser on encryption protocol used
  • 18.
    Trust ● Issuer maybe important – Is this cert self- signed? ● Validity – Is this cert still valid? Should have a date range, and be rejected outside of that range ● A good browser should warn you if anything is amiss here, but you can still connect if you want
  • 19.
    Public key ● Obviously,this is needed to begin the connection securely
  • 20.
    Handshake ● You sendthe server a message asking to create a connection ● https://www.eff.org/Https-everywhere Will make it always a request for a secure connection ● Or manually by typing HTTPS instead of HTTP in the address bar ● Up to server to accept ● Google does so by default for all of its properties
  • 21.
    If you don'trequest security ● The server then has the option of requesting a secure connection ● This should be the case for any e-commerce transaction ● We are moving to a world where it will be the default
  • 22.
    Negotiation (again) ● Theserver and your browser compare notes on what protocols each supports ● Idea is to choose the most secure protocol that is supported by both ● Then a secret key (Symmetric) is generated by the parties ● Can be done in a couple of ways
  • 23.
    Secret Key Exchange ●Then the Symmetric Key is exchanged through the Public Key connection ● This is then used to handle the rest of the communication ● Symmetric Keys are much more efficient ● Note: there are interesting security issues around how this Symmetric Key is exchanged, but that is beyond the scope of this presentation
  • 24.
    For more detailedinfo... ● https://engineering.purdue.edu/kak/compsec/NewL
  • 25.
    Last step ● Asession ID is established that allows an interrupted session to be resumed without going through the entire handshake again
  • 26.
    Certs aren't justWeb ● Certificates using X.509 are used in a number of contexts ● For example, UEFI and Secure Boot uses x.509 Certs issued by Microsoft (as the Certificate Authority)
  • 27.
    Problems with SSLCertificates ● Most problems are not about cryptography ● As Bruce Schneier says, you can trust the math ● Processes, though, can have vulnerabilities
  • 28.
    Root Authorities ● Rootauthorities cannot be vouched for by any other authority ● Browsers contain a bunch of root authorities they trust, with their certificates ● For example: https://www.mozilla.org/en- US/about/governance/policies/security- group/certs/included/ is what Firefox trusts
  • 29.
    Too many! ● TheFirefox list contains a huge number of CAs ● Some of them are governments ● Would you trust a cert signed by the government? ● What about the Hong Kong Post Office?
  • 30.
    Are CAs Trustworthy? ●Not necessarily ● Nor do all browsers agree on which ones to trust
  • 31.
    DigiNotar ● Dutch CAhacked in 2011 ● Hackers appear to be Iranian Gov't. Though that is not certain ● Issued fraudulent certs for Google to do man-in- the-middle attacks on Gmail users ● Affected 300,000 users ● DigiNotar went bankrupt ● https://en.wikipedia.org/wiki/DigiNotar
  • 32.
    Indian Government ● NationalInformatics Centre issued certs purporting to be from Google and Yahoo ● This CA was never trusted by Google or Mozilla ● Was trusted by Microsoft ● No one knows exactly why this was done, but presumably to execute man-in-the-middle attacks ● http://www.zdnet.com/article/microsoft-warns-of-fake- google-and-yahoo-domains/
  • 33.
    French Government ● DGTresor (French Treasury) issued fake Google Certs in 2013 ● These Treasury certs were in turn vouched for by IGC/A ● Again, this seems like a man-in-the-middle attack ● https://nakedsecurity.sophos.com/2013/12/09/serio us-security-google-finds-fake-but-trusted-ssl- certificates-for-its-domains-made-in-france/
  • 34.
    TURKTRUST ● Probably ablunder to begin with ● TURKTRUST issued two Intermediate Certs by mistake when it should have issued Regular Certs ● Intermediate Certs can be used to issue and sign other Certs ● One went to Turkish Government
  • 35.
    Now it getsinteresting ● Turkish government wanted to scan traffic ● This requires getting in the middle ● This is also what companies do with traffic on their network ● If company adds its cert to your browser, it will be trusted, no warning ● Otherwise, you should get a warning
  • 36.
    No warning! ● Butwith an Intermediate Cert, signed by Root Authority, it is already trusted, no warning ● Unless you try to access Google using Chrome ● Chrome comes with a list of Google certs built- in, and complains if it sees anything different ● Legitimate problem, just handled badly
  • 37.
    Man-in-the-middle ● Many ofthe security issues we deal with are classified as man-in-the-middle attacks ● If I intercept your request for a connection and say “Why yes, I am Google, how may I help you?” and can convince you to connect to me, there it is ● I can pass your requests to Google, get back the response, pass it to you
  • 38.
    Monitor the traffic ●But because I am in the middle, I can read all of the traffic ● This is what corporate networks do legally ● They need to monitor traffic to assure the security of their network and data ● And this is perfectly legal ● Your company-issued browser probably contains a self-signed certificate that is trusted
  • 39.
    Trust? ● And becauseit is trusted you get no warning ● Unless you use Chrome to access Google<g> ● But your company could have your bank login credentials ● And what about the government? ● Do we believe NSA and GCHQ are any better than the other governments?
  • 40.
    Update your browser! ●You want to install browser updates as soon as they are available ● Remember, your browser has the list of trusted certs ● If one is revoked you want to get that
  • 41.
    Check for CertificateRevocation ● If a certificate is bad, it should be revoked ● Firefox handles the revocation check quite well ● Chrome refuses to ● This came out with the Heartbleed vulnerability, which was Certificate-related ● Firefox is simply better for security than Chrome in my view
  • 42.
    Add-ons ● There area few good ones for Firefox as well ● Convergence add-on warns you if the certificate you see is not what others see - https://www.eff.org/deeplinks/2011/09/post-mortem- ● Certificate Patrol alerts you if the cert has been updated - https://addons.mozilla.org/en- US/firefox/addon/certificate-patrol/
  • 43.
    Two-Factor Authentication ● Don'trely on certs alone ● Two-factor can prevent someone from logging in to your account ● Available for Gmail, and Duo Security has a free account for individuals
  • 44.
    For more info ●Electronic Frontier Foundation is the best ● https://www.eff.org/deeplinks/2011/09/post-mortem- Has a how to protect yourself discussion I used for this section
  • 45.
    Certificate Solutions ● Protectingyourself as an individual is great, but how can we improve the system? ● The CA model we inherited from the 1990s is fundamentally broken ● We need to rely less on trust and more on provable security
  • 46.
    Certificate Transparency ● Googlehas refused to implement Certificate Revocations, but has offered Certificate Transparency ● Essentially a public log of all Certificates issued ● Can be examined and monitored by anyone ● Log would give a signed Certificate Timestamp for any cert entered to enforce listing ● Relies on owners looking for false certs
  • 47.
    TLS Extensions ● Rememberthat SSL certificates are only one part of the larger Transport Layer Security protocol ● TLS has added extensions for things like new encryption methods and renegotiation of connections ● Other extensions could be added ● http://en.wikipedia.org/wiki/Transport_Layer_Secur ity
  • 48.
    OCSP ● Online CertificateStatus Protocol is a way of verifying a certificate ● Relies on the issuing authority testifying that the public key is still valid ● But vulnerable to man-in-the-middle
  • 49.
    OCSP Stapling ● Certowner obtains verification from CA and “staples” this to cert ● During handshake, the cert owner tells your browser to look for this ● If it is not found, browser should query CA directly ● Only risk is if CA is compromised ● So probably not safe against NSA<g>
  • 50.
    Summary ● SSL Certsuse standard cryptography methods ● Problems are not with the cryptography ● But some serious problems with processes ● Trust is not a good way to go