web security secure socket layer
play

WEB Security: Secure Socket Layer Cunsheng Ding HKUST, Hong Kong, - PowerPoint PPT Presentation

Jan 19, 2024 •166 likes •604 views

WEB Security: Secure Socket Layer Cunsheng Ding HKUST, Hong Kong, CHINA C. Ding - COMP4631 - L22 1 Outline of this Lecture Brief Information on SSL and TLS Secure Socket Layer (SSL) Transport Layer Security (TLS)

  1. WEB Security: Secure Socket Layer Cunsheng Ding HKUST, Hong Kong, CHINA C. Ding - COMP4631 - L22 1

  2. Outline of this Lecture • Brief Information on SSL and TLS • Secure Socket Layer (SSL) • Transport Layer Security (TLS) • Recommended Reading C. Ding - COMP4631 - L22 2

  3. Security Facilities in the TCP/IP Protocol Stack S/MIME PGP SET HTTP FTP SMTP HTTP SSL or TLS Kerberos HTTP FTP SMTP SMTP HTTP UDP TCP TCP TCP IP/IPSec IP IP (a) Network level (b) Transport level (c) Application level C. Ding - COMP4631 - L22 3

  4. SSL and TLS: Information • SSL was originated by Netscape, Version 2, 3, 3.1 • TLS is an IETF protocol. • First version of TLS can be viewed as an SSLv3.1 • They are the most popular transport layer security protocols C. Ding - COMP4631 - L22 4

  5. SSL: Brief Introduction • Based on connection-oriented and reliable service (e.g., TCP) • Able to provide security services for any TCP-based application protocol, e.g., HTTP, FTP, TELNET, etc. – Application independent C. Ding - COMP4631 - L22 5

  6. SSL Services • Client- server authentication • Data confidentiality • Data origin authentication • Data integrity C. Ding - COMP4631 - L22 6

  7. SSL Architecture C. Ding - COMP4631 - L22 7

  8. SSL Protocol Structure It makes use of TCP to provide reliable end-to-end secure service. [ ������������������������������������������������������������ Auth. & encryption algorithms, keys, random numbers, alert messages SSL Handshake SSL Change Cipher SSL Alert Protocol Spec Protocol Protocol SSL Record Protocol [ ������������������������������������������������������������������� � TCP IP C. Ding - COMP4631 - L22 8

  9. SSL Protocol Components: • SSL Record Protocol – Layered on top of a connection-oriented and reliable transport layer service – Provides message origin authentication, data confidentiality, and data integrity • SSL sub-protocols – Layered on top of the SSL Record Protocol – Provides support for SSL session and connection establishment C. Ding - COMP4631 - L22 9

  10. SSL Connection and Session • Session: • Connection: – an association between – a transport (in the OSI a client and a server. layering model – Defines a set of definition) that cryptographic provides a suitable parameters, which can service. be shared among – For SSL, such multiple connections. connections are peer- – Is is used to avoid the to-peer relationships. expensive negotiation – Every connection is of new security associated with one parameters for each “session”. connection. C. Ding - COMP4631 - L22 10

  11. SSL State Information • SSL session is stateful – SSL protocol must initialize and maintain session state information on either side of the session – SSL state information is used by both sides • SSL session can be used for a number of connections (i.e., it has a lifetime) – connection state information C. Ding - COMP4631 - L22 11

  12. SSL Session State Information Elements • Session ID : An arbitrary byte sequence chosen by the server to identify an active or resumable session state. • Peer certificate : X509.v3 certificate of the peer • Compression method : algorithm to compress data before encryption • Cipher spec : specification of data encryption and Message Authentication Code (MAC) algorithms • Master secret : 48-byte secret shared between client and server • Is resumable : flag that indicates whether the session can be used to initiate new connections C. Ding - COMP4631 - L22 12

  13. More on SSL Session State • A previous session may be resumed (use Session ID and its session cache) • A new session may be negotiated (use Session ID and the Handshake Protocol) C. Ding - COMP4631 - L22 13

  14. SSL Connection State Information Elements • Server and client random: byte sequences that are chosen by server and client for each connection. • Server write MAC secret: secret used for MAC on data written by server • Client write MAC secret: secret used for MAC on data written by client [ different from server write MAC key ] • Server write key: key used for data encryption by server and decryption by client • Client write key: key used for encryption by client and decryption by server [ different from server write key ] • Initialization vectors: for CBC mode ( two are different !) • Sequence number: for both transmitted and received messages, maintained by each party. C. Ding - COMP4631 - L22 14

  15. Session & Connection State: Pictorial Description Session State Established by the SSL Handshake Protocol Session ID Certificates Resumable? Authentication and encryption algorithms (Client + Server).hello.randoms Compression algorithm Master key Connection State MD5,SHA 4 secret keys (2 MAC, 2 encryption), 2 IV’s for Client and Server Server and client random: for each connection by both Sequence number for transmitted and received messages : C. Ding - COMP4631 - L22 15

  16. Current and Pending State • Current state : There is a current operating state for both read and write (i.e., receive and send). • Pending state : In addition, during the Handshake Protocol, pending read and write states are created. • Updating : Upon successful conclusion of the Handshake protocol, the pending states become the current states. C. Ding - COMP4631 - L22 16

  17. Connection and Session Establishing a session by the Handshake protocol Change cipher Master key, hash algor. Spec protocol Encryption algorithm, session keys, IV’s, etc. Copying pending state into current state Now ready for connections in this session Connection 1 Connection 2 Server Client Connection 3 C. Ding - COMP4631 - L22 17

  18. SSL Record Protocol C. Ding - COMP4631 - L22 18

  19. SSL Record Protocol Operation SSL Record Header SSL Record C. Ding - COMP4631 - L22 19 SSL Record

  20. SSL Record Content • Content type (8 bits) – Defines higher layer protocol that must be used to process the payload data (which may be handshake, alert, or change_cipher_spec messages). • Protocol version number (major & Minor) (8 bits) – Defines SSL version in use. (3, 0) for SSLv3 • Length (16 bits): length in bytes of (compressed) plaint. • Data payload – Optionally compressed and encrypted – Encryption and compression requirements are defined during SSL handshake • MAC (0, 16, or 20 bytes) – Appended for each record for message origin authentication and data integrity verification C. Ding - COMP4631 - L22 20

  21. Change Cipher Spec Protocol C. Ding - COMP4631 - L22 21

  22. Change Cipher Spec Protocol • It is one of the three SSL-specific protocols that use the SSL Record Protocol. • It consists of a single message, which consists of a single byte with value 1. • The sole purpose of this message is to cause the pending state to be copied into the current state, which updates the cipher suite to be used on this connection. 1 change session state 1 byte C. Ding - COMP4631 - L22 22

  23. Alert Protocol C. Ding - COMP4631 - L22 23

  24. Alert Protocol • Used to transmit alerts via SSL Record Protocol to peer entity. – Alert message: (alert level, alert description) – Alert messages are compressed and encrypted , as specified by the current state. – Format of the message in this protocol: <==> errors occurred during handshaking Level Alert <=== errors occurred during processing at the sever 1 byte 1 byte C. Ding - COMP4631 - L22 24

  25. Handshake Protocol C. Ding - COMP4631 - L22 25

  26. Handshake Protocol • The most complex part of SSL. • Allows the server and client to authenticate each other. • Negotiate encryption, MAC algorithm and cryptographic keys. • Used before any application data is transmitted. C. Ding - COMP4631 - L22 26

  27. SSL Handshake 1) SSL version number, cipher suit, client-hello random, session ID 2) SSL version number, selected cipher set, server-hello random, digi. certif., signed data 3) Client uses the info of STEP2 for SERVER AUTHENTICATION if Failed TERMINATE if Successful go to STEP 4 4) PreMaster Secret Generated for the session, encrypts it with the Server’s Public Key SERVER CLIENT 5) If Server Requested for CLIENT AUTHENTICATION:Client Sends Signed Data & Encrypted PreMaster Secret ( This is Optional) 6) Server Authenticates Client, if failure TERMINATE else decrypt PREMASTER SECRET to generate MASTER SECRET 7) Both the Client and Server use the Master Secret to Generate Session keys 8) and 9) Client and Server sends messages to each other that Handshake is finished C. Ding - COMP4631 - L22 27

  28. Pre-master secret, master secret, and symmetric key The three words “A”, “BB” and “CCC” are also given as input values here Pre-master secret Clienthello random Serverhello random Message Digest Algorithms Master secret C. Ding - COMP4631 - L22 28

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Lecture 13 Transport Layer Security/ Secure Socket Layer (TLS/SSL) (Chapter 9 in KPS) SSL:

Lecture 13 Transport Layer Security/ Secure Socket Layer (TLS/SSL) (Chapter 9 in KPS) SSL:

Lecture 13 Transport Layer Security/ Secure Socket Layer (TLS/SSL) (Chapter 9 in KPS) SSL: Secure Sockets Layer v widely deployed security v original goals: protocol Web e-commerce supported by almost all transactions browsers, web

570 views • 21 slides
Lecture 14 Transport Layer Security/ Secure Socket Layer (TLS/SSL) (Chapter 9 in KPS) SSL:

Lecture 14 Transport Layer Security/ Secure Socket Layer (TLS/SSL) (Chapter 9 in KPS) SSL:

Lecture 14 Transport Layer Security/ Secure Socket Layer (TLS/SSL) (Chapter 9 in KPS) SSL: Secure Sockets Layer v widely deployed security v original goals: protocol Web e-commerce transactions supported by almost all browsers,

609 views • 21 slides
Web Security Secure Socket Layer (SSL) December 7, 2000 SSL 2 Web Security authentication:

Web Security Secure Socket Layer (SSL) December 7, 2000 SSL 2 Web Security authentication:

SSL 1 Web Security Secure Socket Layer (SSL) December 7, 2000 SSL 2 Web Security authentication: basic, digest often supplemented by cookies access control via network addresses multi-layered: SHTTP (secure HTTP) = just

713 views • 32 slides
SSL and TLS SSL Secure Socket Layer TLS Transport Layer Security The common

SSL and TLS SSL Secure Socket Layer TLS Transport Layer Security The common

SSL and TLS SSL Secure Socket Layer TLS Transport Layer Security The common standards for securing network applications in Internet E.g., web browsing Essentially, standards to negotiate, set up, and apply crypto

2.93k views • 13 slides
Secure Socket Layer (SSL) and Trnasport Layer Security (TLS) CSE598K/CSE545 - Advanced Network

Secure Socket Layer (SSL) and Trnasport Layer Security (TLS) CSE598K/CSE545 - Advanced Network

547 views • 16 slides
ilab Lab 8 - SSL/TLS and IPSec Outlook: On Layer 4: Goal: Provide security for one

ilab Lab 8 - SSL/TLS and IPSec Outlook: On Layer 4: Goal: Provide security for one

Lehrstuhl fr Netzarchitekturen und Netzdienste Fakultt fr Informatik Technische Universitt Mnchen ilab Lab 8 - SSL/TLS and IPSec Outlook: On Layer 4: Goal: Provide security for one specific port SSL (Secure Socket Layer) /

812 views • 25 slides
Socket Programming CS457, FA 11 What is a socket? Basically, a socket is just a file

Socket Programming CS457, FA 11 What is a socket? Basically, a socket is just a file

Socket Programming CS457, FA 11 What is a socket? Basically, a socket is just a file descriptor that your application can use to read and write data from. Stream and Datagram sockets provide an interface to the transport layer of the

419 views • 14 slides
CS 683 - Security and Privacy Fall 2019 Instructor: Karim Eldefrawy University of San Francisco

CS 683 - Security and Privacy Fall 2019 Instructor: Karim Eldefrawy University of San Francisco

CS 683 - Security and Privacy Fall 2019 Instructor: Karim Eldefrawy University of San Francisco http://www.cs.usfca.edu/~keldefrawy/teaching /fall2019/cs683/cs683_main.htm 1 Lecture 12 Transport Layer Security/ Secure Socket Layer (TLS/SSL)

615 views • 23 slides
What is a socket? Socket Programming Socket: An interface between an application process and

What is a socket? Socket Programming Socket: An interface between an application process and

What is a socket? Socket Programming Socket: An interface between an application process and transport layer The application process can send/receive messages to/from another application process (local or remote)via a socket Kameswari

331 views • 6 slides
Secure Sockets Layer Transport Layer Security BEAST Attack Dan Luedtke &lt;mail@danrl.de&gt;

Secure Sockets Layer Transport Layer Security BEAST Attack Dan Luedtke &lt;mail@danrl.de&gt;

Secure Sockets Layer Transport Layer Security BEAST Attack Dan Luedtke &lt;mail@danrl.de&gt; Wed Apr 18, 2012 University of the German Federal Armed Forces, Munich Slide 1 Outline History Design Goals SSL/TLS Stack

439 views • 15 slides
TLS/SSL TLS (Transport Layer Security) A suite of protocols to provide secure communication

TLS/SSL TLS (Transport Layer Security) A suite of protocols to provide secure communication

TLS/SSL TLS (Transport Layer Security) A suite of protocols to provide secure communication Confidentiality by applying block &amp; stream ciphers - Integrity with MACs - Authenticity with certificates - Predecessor: SSL (secure

557 views • 13 slides
Outline ! Socket basics ! TCP sockets ! Socket details ! Socket options Computer Networks ! Final

Outline ! Socket basics ! TCP sockets ! Socket details ! Socket options Computer Networks ! Final

Outline ! Socket basics ! TCP sockets ! Socket details ! Socket options Computer Networks ! Final notes Sockets Socket Basics Ports ! An end-point for a IP network connection ! Numbers (vary in BSD, Solaris): what the application layer

318 views • 5 slides
Secure Communica-on Protocols Today SSL/TLS Protec-on for web browsing / transac-ons

Secure Communica-on Protocols Today SSL/TLS Protec-on for web browsing / transac-ons

Secure Communica-on Protocols Today SSL/TLS Protec-on for web browsing / transac-ons SSH Secure shell (remote login) IPSec IP Security suite, originally for use with IPv6 SSL/TLS Secure Sockets Layer / Transport Layer

322 views • 18 slides
Secure Socket Layer Health Assessment Mick Pouw, Eric van den Haak February 5, 2014 Introduction

Secure Socket Layer Health Assessment Mick Pouw, Eric van den Haak February 5, 2014 Introduction

Introduction Research Conclusion Demo Questions Secure Socket Layer Health Assessment Mick Pouw, Eric van den Haak February 5, 2014 Introduction Research Conclusion Demo Questions Introduction 1 Background Research Questions

497 views • 18 slides
Web Security: Web Security: Secure Electronic Transaction Secure Electronic Transaction

Web Security: Web Security: Secure Electronic Transaction Secure Electronic Transaction

Web Security: Web Security: Secure Electronic Transaction Secure Electronic Transaction Cunsheng Cunsheng Ding Ding HKUST, Hong Kong, CHI NA HKUST, Hong Kong, CHI NA Secure Elect ronic Transact ions An applicat ion-layer secur it y

483 views • 24 slides
Transport Layer Security Chester Rebeiro IIT Madras Some of the slides borrowed from the book

Transport Layer Security Chester Rebeiro IIT Madras Some of the slides borrowed from the book

Transport Layer Security Chester Rebeiro IIT Madras Some of the slides borrowed from the book Computer Security: A Hands on Approach by Wenliang Du TLS: Protocol to achieve secure communication TLS provides secure communication channel

834 views • 66 slides
Chapter 16 Cryptography and Network Transport Level Security Security Chapter 16 Use your

Chapter 16 Cryptography and Network Transport Level Security Security Chapter 16 Use your

Chapter 16 Cryptography and Network Transport Level Security Security Chapter 16 Use your mentality Wake up to reality From the song, &quot;I've Got You under My Skin Fifth Edition by Cole Porter by William Stallings Lecture slides by

300 views • 5 slides
GO BEYOND DATA Real-time Analytics for Application Performance Management Yury Oleynik Data

GO BEYOND DATA Real-time Analytics for Application Performance Management Yury Oleynik Data

GO BEYOND DATA Real-time Analytics for Application Performance Management Yury Oleynik Data Analyst Modern applications Agenda Monitoring challenges INSTANA apploach 2 Instana, Inc. Proprietary and Confidential Business Demand: Write and

351 views • 20 slides
Short introduction to monitoring systems for large Short introduction to monitoring systems for

Short introduction to monitoring systems for large Short introduction to monitoring systems for

Short introduction to monitoring systems for large Short introduction to monitoring systems for large computer farms computer farms Immediate Reaction / Configuration Change Immediate Reaction / Configuration Change Security Auditing Security

509 views • 7 slides
Architecture Needs a Time Series Platform Thom Crowe, Community Manager InfluxData As you

Architecture Needs a Time Series Platform Thom Crowe, Community Manager InfluxData As you

3 Reasons Why Your Cloud Architecture Needs a Time Series Platform Thom Crowe, Community Manager InfluxData As you adopt: Youre going to DevOps need better Docker monitoring Kubernetes What You Will Need To Monitor DevOps

329 views • 22 slides
A Framework for Effective Alert Visualization Uday Banerjee Jon Ramsey SecureWorks The

A Framework for Effective Alert Visualization Uday Banerjee Jon Ramsey SecureWorks The

A Framework for Effective Alert Visualization Uday Banerjee Jon Ramsey SecureWorks The Information Security Experts Visualization Visualization has always been used but mostly from a reporting standpoint We need to start pushing

538 views • 26 slides
Securing Networks Applications Layer Monitoring/Logging/Intrusion Detection Where to put the

Securing Networks Applications Layer Monitoring/Logging/Intrusion Detection Where to put the

Real-Time Communication Security: SSL/TLS Guevara Noubir noubir@ccs.neu.edu Network Security Reading Assignment: chapters 16, 19 Network Security SSL TLS 1 Some Issues with Real-time Communication Session key establishment

312 views • 8 slides
Communication Systems SSL University of Freiburg Computer Science Computer Networks and

Communication Systems SSL University of Freiburg Computer Science Computer Networks and

Communication Systems SSL University of Freiburg Computer Science Computer Networks and Telematics Prof. Christian Schindelhauer Organization I. Data and voice communication in IP networks II. Security issues in networking

557 views • 24 slides
Resources for Controlled Languages for Alert Messages and Protocols in the European Perspective

Resources for Controlled Languages for Alert Messages and Protocols in the European Perspective

Resources for Controlled Languages for Alert Messages and Protocols in the European Perspective Sylviane Cardey 1 , Krzysztof Bogacki 2 , Xavier Blanco 3 , Ruslan Mitkov 4 1 Centre Tesnire, Universit de Franche-Comt (FR) 2 Uniwersytet

491 views • 22 slides

More recommend