web security secure socket layer ssl
play

Web Security Secure Socket Layer (SSL) December 7, 2000 SSL 2 - PowerPoint PPT Presentation

May 20, 2023 •387 likes •713 views

SSL 1 Web Security Secure Socket Layer (SSL) December 7, 2000 SSL 2 Web Security authentication: basic, digest often supplemented by cookies access control via network addresses multi-layered: SHTTP (secure HTTP) = just

  1. SSL 1 Web Security Secure Socket Layer (SSL) December 7, 2000

  2. SSL 2 Web Security � authentication: basic, digest � often supplemented by cookies � access control via network addresses � multi-layered: – SHTTP (secure HTTP) = just for HTTP (shttp://) CommerceNet, Mosaic – SSL ( ! TLS) = generic for TCP (https://) implementation: SSLeay – IP security: host-to-host December 7, 2000

  3. SSL 3 Web vulnerabilities http://www.w3.org/Security/Faq/ Risks: 1. revealing private information on server 2. intercept of client information (credit card records) 3. information about host ➠ break in 4. execute programs, denial of service 5. server log privacy December 7, 2000

  4. SSL 4 Web vulnerabilities: information leakage � Altavista search for etc/passwd � directory listings � chroot � soft links � file ownership: local protection $ web access December 7, 2000

  5. SSL 5 Web vulnerabilities: cgi-bin cgi-bin, server-side includes (= macros within HTML) � server must run at root (port 80!), but executes as “nobody”, “www”, . . . � cgi-bin: random arguments � use perl “taint” mode: can’t use variables from environment, standard input, command line for eval(), system(), exec() or piped open() December 7, 2000

  6. SSL 6 HTTP access control - basic � client doesn’t know which method � client attempts access (GET, PUT, . . . ) normally � server returns HTTP/1.0 401 Unauthorized WWW-Authenticate: Basic realm="WallyWorld" � realm: protection space � client tries again with Authorization: Basic base64(user:password) � passwords in the clear ➠ not secure � repeat cycle on each access December 7, 2000

  7. SSL 7 HTTP access control - digest RFC 2069 First attempt for http://www.nowhere.org/dir/index.html : HTTP/1.1 401 Unauthorized WWW-Authenticate: Digest realm="testrealm@host.com", domain="/dir, /foo", nonce="dcd98b7102dd2f0e8b11d0f600bfb0c093", opaque="5ccc069c403ebaf9f0171e9517f40e41", algorithm=MD5 Browser prompts for username (Mufasa) and password (CircleOfLife), retries: Authorization: Digest username="Mufasa", realm="testrealm@host.com", nonce="dcd98b7102dd2f0e8b11d0f600bfb0c093", uri="/dir/index.html", response="e966c932a9242554e42c8ee200cec7f6", opaque="5ccc069c403ebaf9f0171e9517f40e41", digest="5ccd067f313ebaf9f0171e9517f40e41" December 7, 2000

  8. SSL 8 HTTP access control - digest WWW-Authenticate parameters: realm: displayed to user domain: URIs, remembered by client nonce: opaque to client (hex, base64, . . . ); new for each 401 response e.g., H(client-IP : time-stamp : server-secret) can be calculated by server without keeping state opaque: returned unchanged by client algorithm: digest, checksum ➠ MD5 December 7, 2000

  9. SSL 9 HTTP access control - digest Authorization response: � same nonce, opaque data � KD(secret, data) = H(secret j : j data) � A1 = user:realm:password � A2 = method:uri response: H( H(A1) : nonce : H(A2) ) digest: H( H(A1) : nonce : method : data : info : H(body)) where info = H(uri : type : length : coding : modified : expires) � request digest useful for POST and PUT � server only needs H(A1) [protect!], not password � steal H(A1) ➠ only for realm December 7, 2000

  10. SSL 10 HTTP access control - digest returned with successful request: � AuthenticationInfo: nextnonce=...; digest=... � avoids 401 failure next time � also: digest of HTTP body � subject to man-in-the-middle attack by proxy � hash is sufficient to gain access (but only one) � want unique realms � client can’t authenticate server December 7, 2000

  11. SSL 11 Web Server Access Configuration http://hoohoo.ncsa.uiuc.edu/docs/tutorials/user.html For NCSA httpd , Apache ➠ .htaccess per directory or global: AuthType Basic AuthUserFile /etc/passwd AuthName "Private information" <Limit GET> order deny,allow require user hgs deny from all allow from .ncsa.uiuc.edu </Limit> Can reuse /etc/passwd – bad idea (why?) December 7, 2000

  12. SSL 12 Web server configuration Global configuration file access.conf : <Directory /full/path/to/protected/directory> AuthName name.of.your.server AuthType Basic AuthUserFile /usr/local/etc/httpd/conf/passwd <Limit GET POST> require user foo </Limit> </Directory> December 7, 2000

  13. SSL 13 Web server access configuration Address-based restrictions: <Limit GET POST PUT> order deny,allow deny from all allow from .cs.columbia.edu </Limit> is different from <Limit GET POST PUT> order allow,deny deny from all allow from .cs.columbia.edu </Limit> ➠ nobody can use it! December 7, 2000

  14. SSL 14 SSL Overview � TLS (RFC 2246) here: SSL 3.0 � secure channel � any TCP-based protocol: HTTP (https://, port 443), NNTP, telnet, telephony signaling, . . . ➠ secure byte stream � optional (but common) public key server authentication � optional client authentication � hash: combined MD5 and SHA � encryption optional (session key), but default: DES, RC2, RC4 � now: TLS (IETF WG) December 7, 2000

  15. SSL 15 SSL Cipher Suites � Diffie-Hellman key exchange � RSA (see “One-Way Public Key Based Authentication”, 9.3.3) � Fortezza � RC2, RC4, 3DES, DES40 December 7, 2000

  16. SSL 16 SSL Basics Layered protocol: 14 bytes � 2 1. fragment data into blocks 2. compress data ( m j s ) for message 3. apply message authentication code (MAC) = H m and secret s 4. encrypt with client (cw) or server (sw) write key 5. transmit over TCP stateful ➠ handshake to set up keys, algorithms December 7, 2000

  17. SSL 17 SSL Messages Alert security breach or failure ApplicationData actual information Certificate sender’s public key CertificateRequest client, please send certificate CertificateVerify know private key ChangeCipherSpec use agreed-upon security service ClientHello want, can do ClientKeyExchange client’s keys Finished negotiations finished HelloRequest client, please start negotiation ServerHello server capabilities ServerHelloDone server done SererKeyExchange server’s keys December 7, 2000

  18. SSL 18 SSL Data Structures enum { change_cipher_spec(20), alert(21), handshake(22), application_data(23), (255) } ContentType; struct { ContentType type; ProtocolVersion version; uint16 length; opaque fragment[SSLPlaintext.length]; } SSLPlaintext; struct { ContentType type; ProtocolVersion version; uint16 length; opaque fragment[SSLCompressed.length]; } SSLCompressed; block-ciphered struct { opaque content[SSLCompressed.length]; December 7, 2000

  19. SSL 19 opaque MAC[CipherSpec.hash_size]; uint8 padding[GenericBlockCipher.padding_length]; uint8 padding_length; } GenericBlockCipher; digitally-signed struct { select(SignatureAlgorithm) { case anonymous: struct { }; case rsa: opaque md5_hash[16]; opaque sha_hash[20]; case dsa: opaque sha_hash[20]; }; } Signature; December 7, 2000

  20. SSL 20 SSL Handshake * = optional plaintext up to Finished ! client server HelloRequest* � ClientHello � ! ServerHello � Certificate ServerKeyExchange* CertificateRequest* ServerHelloDone � ! Certificate* � ! ClientKeyExchange CertificateVerify ℄ [ Finished � ! w ℄ [ Finished � sw [ ApplicationData ℄ ℄ [ ApplicationData ! w sw December 7, 2000

  21. SSL 21 SSL Handshake enum { hello_request(0), client_hello(1), server_hello(2), certificate(11), server_key_exchange (12), certificate_request(13), server_hello_done(14), certificate_verify(15), client_key_exchange(16), finished(20), (255) } HandshakeType; struct { HandshakeType msg_type; /* handshake type */ uint24 length; /* bytes in message */ select (HandshakeType) { case hello_request: HelloRequest; case client_hello: ClientHello; case server_hello: ServerHello; case certificate: Certificate; case server_key_exchange: ServerKeyExchange; case certificate_request: CertificateRequest; case server_hello_done: ServerHelloDone; case certificate_verify: CertificateVerify; case client_key_exchange: ClientKeyExchange; case finished: Finished; } body; } Handshake; December 7, 2000

  22. SSL 22 Client Hello ! C S : establish security enhancement capabilities � random challenge, algorithms supported � server chooses encryption, compression algorithms struct { uint32 gmt_unix_time; opaque random_bytes[28]; } Random; struct { ProtocolVersion client_version; Random random; opaque SessionID<0..32> session_id; CipherSuite cipher_suites<2..2ˆ16-1>; CompressionMethod compression_methods<1..2ˆ8-1>; } ClientHello; December 7, 2000

  23. SSL 23 Server Hello ! S C : � acknowledges algorithms � establishes random connection identifier struct { ProtocolVersion server_version; Random random; SessionID session_id; CipherSuite cipher_suite; CompressionMethod compression_method; } ServerHello; December 7, 2000

  24. SSL 24 Server Certificate ! S C : � server returns its certificate chain of X.509v3 opaque ASN.1Cert<1..2ˆ24-1>; struct { ASN.1Cert certificate_list<1..2ˆ24-1>; } Certificate; December 7, 2000

Recommend

Lecture 13 Transport Layer Security/ Secure Socket Layer (TLS/SSL) (Chapter 9 in KPS) SSL:

Lecture 13 Transport Layer Security/ Secure Socket Layer (TLS/SSL) (Chapter 9 in KPS) SSL:

Lecture 13 Transport Layer Security/ Secure Socket Layer (TLS/SSL) (Chapter 9 in KPS) SSL: Secure Sockets Layer v widely deployed security v original goals: protocol Web e-commerce supported by almost all transactions browsers, web

570 views • 21 slides
Lecture 14 Transport Layer Security/ Secure Socket Layer (TLS/SSL) (Chapter 9 in KPS) SSL:

Lecture 14 Transport Layer Security/ Secure Socket Layer (TLS/SSL) (Chapter 9 in KPS) SSL:

Lecture 14 Transport Layer Security/ Secure Socket Layer (TLS/SSL) (Chapter 9 in KPS) SSL: Secure Sockets Layer v widely deployed security v original goals: protocol Web e-commerce transactions supported by almost all browsers,

609 views • 21 slides
SSL and TLS SSL Secure Socket Layer TLS Transport Layer Security The common

SSL and TLS SSL Secure Socket Layer TLS Transport Layer Security The common

SSL and TLS SSL Secure Socket Layer TLS Transport Layer Security The common standards for securing network applications in Internet E.g., web browsing Essentially, standards to negotiate, set up, and apply crypto

2.93k views • 13 slides
WEB Security: Secure Socket Layer Cunsheng Ding HKUST, Hong Kong, CHINA C. Ding - COMP4631 -

WEB Security: Secure Socket Layer Cunsheng Ding HKUST, Hong Kong, CHINA C. Ding - COMP4631 -

WEB Security: Secure Socket Layer Cunsheng Ding HKUST, Hong Kong, CHINA C. Ding - COMP4631 - L22 1 Outline of this Lecture Brief Information on SSL and TLS Secure Socket Layer (SSL) Transport Layer Security (TLS)

604 views • 42 slides
Secure Socket Layer (SSL) and Trnasport Layer Security (TLS) CSE598K/CSE545 - Advanced Network

Secure Socket Layer (SSL) and Trnasport Layer Security (TLS) CSE598K/CSE545 - Advanced Network

547 views • 16 slides
ilab Lab 8 - SSL/TLS and IPSec Outlook: On Layer 4: Goal: Provide security for one

ilab Lab 8 - SSL/TLS and IPSec Outlook: On Layer 4: Goal: Provide security for one

Lehrstuhl fr Netzarchitekturen und Netzdienste Fakultt fr Informatik Technische Universitt Mnchen ilab Lab 8 - SSL/TLS and IPSec Outlook: On Layer 4: Goal: Provide security for one specific port SSL (Secure Socket Layer) /

812 views • 25 slides
Socket Programming CS457, FA 11 What is a socket? Basically, a socket is just a file

Socket Programming CS457, FA 11 What is a socket? Basically, a socket is just a file

Socket Programming CS457, FA 11 What is a socket? Basically, a socket is just a file descriptor that your application can use to read and write data from. Stream and Datagram sockets provide an interface to the transport layer of the

419 views • 14 slides
CS 683 - Security and Privacy Fall 2019 Instructor: Karim Eldefrawy University of San Francisco

CS 683 - Security and Privacy Fall 2019 Instructor: Karim Eldefrawy University of San Francisco

CS 683 - Security and Privacy Fall 2019 Instructor: Karim Eldefrawy University of San Francisco http://www.cs.usfca.edu/~keldefrawy/teaching /fall2019/cs683/cs683_main.htm 1 Lecture 12 Transport Layer Security/ Secure Socket Layer (TLS/SSL)

615 views • 23 slides
What is a socket? Socket Programming Socket: An interface between an application process and

What is a socket? Socket Programming Socket: An interface between an application process and

What is a socket? Socket Programming Socket: An interface between an application process and transport layer The application process can send/receive messages to/from another application process (local or remote)via a socket Kameswari

331 views • 6 slides
Secure Sockets Layer Transport Layer Security BEAST Attack Dan Luedtke &lt;mail@danrl.de&gt;

Secure Sockets Layer Transport Layer Security BEAST Attack Dan Luedtke &lt;mail@danrl.de&gt;

Secure Sockets Layer Transport Layer Security BEAST Attack Dan Luedtke &lt;mail@danrl.de&gt; Wed Apr 18, 2012 University of the German Federal Armed Forces, Munich Slide 1 Outline History Design Goals SSL/TLS Stack

439 views • 15 slides
TLS/SSL TLS (Transport Layer Security) A suite of protocols to provide secure communication

TLS/SSL TLS (Transport Layer Security) A suite of protocols to provide secure communication

TLS/SSL TLS (Transport Layer Security) A suite of protocols to provide secure communication Confidentiality by applying block &amp; stream ciphers - Integrity with MACs - Authenticity with certificates - Predecessor: SSL (secure

557 views • 13 slides
Outline ! Socket basics ! TCP sockets ! Socket details ! Socket options Computer Networks ! Final

Outline ! Socket basics ! TCP sockets ! Socket details ! Socket options Computer Networks ! Final

Outline ! Socket basics ! TCP sockets ! Socket details ! Socket options Computer Networks ! Final notes Sockets Socket Basics Ports ! An end-point for a IP network connection ! Numbers (vary in BSD, Solaris): what the application layer

318 views • 5 slides
Secure Communica-on Protocols Today SSL/TLS Protec-on for web browsing / transac-ons

Secure Communica-on Protocols Today SSL/TLS Protec-on for web browsing / transac-ons

Secure Communica-on Protocols Today SSL/TLS Protec-on for web browsing / transac-ons SSH Secure shell (remote login) IPSec IP Security suite, originally for use with IPv6 SSL/TLS Secure Sockets Layer / Transport Layer

322 views • 18 slides
Secure Socket Layer Health Assessment Mick Pouw, Eric van den Haak February 5, 2014 Introduction

Secure Socket Layer Health Assessment Mick Pouw, Eric van den Haak February 5, 2014 Introduction

Introduction Research Conclusion Demo Questions Secure Socket Layer Health Assessment Mick Pouw, Eric van den Haak February 5, 2014 Introduction Research Conclusion Demo Questions Introduction 1 Background Research Questions

497 views • 18 slides
Web Security: Web Security: Secure Electronic Transaction Secure Electronic Transaction

Web Security: Web Security: Secure Electronic Transaction Secure Electronic Transaction

Web Security: Web Security: Secure Electronic Transaction Secure Electronic Transaction Cunsheng Cunsheng Ding Ding HKUST, Hong Kong, CHI NA HKUST, Hong Kong, CHI NA Secure Elect ronic Transact ions An applicat ion-layer secur it y

483 views • 24 slides
Transport Layer Security Chester Rebeiro IIT Madras Some of the slides borrowed from the book

Transport Layer Security Chester Rebeiro IIT Madras Some of the slides borrowed from the book

Transport Layer Security Chester Rebeiro IIT Madras Some of the slides borrowed from the book Computer Security: A Hands on Approach by Wenliang Du TLS: Protocol to achieve secure communication TLS provides secure communication channel

834 views • 66 slides
Java 2 Micro Edition Socket, SMS and Bluetooth F. Ricci 2009/2010 Content Other Connection

Java 2 Micro Edition Socket, SMS and Bluetooth F. Ricci 2009/2010 Content Other Connection

Java 2 Micro Edition Socket, SMS and Bluetooth F. Ricci 2009/2010 Content Other Connection Types Responding to Incoming Connections Socket and Server Socket Security Permissions Security domains Midlet signing

1.04k views • 59 slides
Socket Service Types The following socket types are defined: 1. SOCK_STREAM : stream socket 2.

Socket Service Types The following socket types are defined: 1. SOCK_STREAM : stream socket 2.

Socket Service Types The following socket types are defined: 1. SOCK_STREAM : stream socket 2. SOCK_DGRAM : datagram socket 3. SOCK_RAW : raw-protocol interface 4. SOCK_RDM : reliably-delivered message 5. SOCK_SEQPACKET : sequenced packet stream

307 views • 27 slides
Application layer: Roadmap Principles of network applications Web and HTTP FTP

Application layer: Roadmap Principles of network applications Web and HTTP FTP

Application Layer Application layer: Roadmap Principles of network applications Web and HTTP FTP Electronic Mail SMTP, POP3, IMAP DNS P2P applications Socket programming with UDP Socket programming with TCP 79

463 views • 27 slides
Transport Layer Security The TLS Protocol Transport Layer Security (TLS) Security goals:

Transport Layer Security The TLS Protocol Transport Layer Security (TLS) Security goals:

IN3210 Network Security Transport Layer Security The TLS Protocol Transport Layer Security (TLS) Security goals: Authentication Integrity Confidentiality Transparent security protocol between TCP and application

1k views • 66 slides
Chapter 2: Application layer 2.1 Principles of network 2.6 P2P applications applications

Chapter 2: Application layer 2.1 Principles of network 2.6 P2P applications applications

Chapter 2: Application layer 2.1 Principles of network 2.6 P2P applications applications 2.7 Socket app architectures programming with app requirements TCP 2.2 Web and HTTP 2.8 Socket 2.4 Electronic Mail

464 views • 20 slides
Chapter 2: Application layer Chapter 2 Application Layer 2.1 Principles of 2.6 P2P

Chapter 2: Application layer Chapter 2 Application Layer 2.1 Principles of 2.6 P2P

Chapter 2: Application layer Chapter 2 Application Layer 2.1 Principles of 2.6 P2P applications network applications 2.7 Socket programming 2.2 Web and HTTP with TCP 2.3 FTP 2.8 Socket programming with UDP with UDP

733 views • 29 slides
Datagram Transport Layer Security (DTLS) Extension to Establish Keys for Secure Real-time

Datagram Transport Layer Security (DTLS) Extension to Establish Keys for Secure Real-time

Datagram Transport Layer Security (DTLS) Extension to Establish Keys for Secure Real-time Transport Protocol (SRTP) (Phew!) Eric Rescorla David McGrew Eric Rescorla IETF 67 1 Overview SDP signals Im willing to do DTLS (and

93 views • 8 slides
IPv6/IPv4 Translation for SIP Applications- Socket-Layer Translator and SIPv6 Translator Whai-

IPv6/IPv4 Translation for SIP Applications- Socket-Layer Translator and SIPv6 Translator Whai-

IPv6/IPv4 Translation for SIP Applications- Socket-Layer Translator and SIPv6 Translator Whai- -En Chen En Chen Whai Research Assistant Professor Department of Computer Science and Information Engineering National Chiao Tung University

1.21k views • 72 slides

More recommend