loading
Documents

Research.Publish.Connect.

Paper

Paper Unlock

Authors: Manuel Koschuch 1 ; Taro Fruhwirth 2 ; Alexander Glaser 2 ; Silvie Schmidt 2 and Matthias Hudler 1

Affiliations: 1 FH Campus Wien - University of Applied Science, Austria ; 2 FH Campus Wien and University of Applied Sciences, Austria

ISBN: 978-989-758-112-0

Keyword(s): OpenSSL, O-Saft, Bettercrypto, Openssl-compare, Applied Crypto Hardening, Cipher Suite, Cipher String.

Related Ontology Subjects/Areas/Topics: Data Communication Networking ; Implementation and Experimental Test-Beds ; Internet Technologies ; Network Protocols ; Performance Evaluation ; Software Engineering ; Software Project Management ; Telecommunications

Abstract: The Transport Layer Security (TLS) protocol is still the de-facto standard for secure network connections over an insecure medium like the internet. But its flexibility concerning the algorithms used for securing a channel between two parties can also be a weakness, due to the possible agreement on insecure ciphers. In this work we examine an existing white paper (Applied Crypto Hardening) giving recommendations on how to securely configure SSL/TLS connections with regard to the practical feasibility of these recommendations. In addition we propose an additional configuration set with the aim of increasing compatibility as well as security. We also developed a small Cipher Negotiation Crawler (CiNeg) to test TLS-handshakes using given cipher configurations with a supplied list of websites and show its practical usability.

PDF ImageFull Text

Download
CC BY-NC-ND 4.0

Sign In Guest: Register as new SciTePress user now for free.

Sign In SciTePress user: please login.

PDF ImageMy Papers

You are not signed in, therefore limits apply to your IP address 18.206.16.123

In the current month:
Recent papers: 100 available of 100 total
2+ years older papers: 200 available of 200 total

Paper citation in several formats:
Koschuch, M.; Fruhwirth, T.; Glaser, A.; Schmidt, S. and Hudler, M. (2015). Speaking in Tongues - Practical Evaluation of TLS Cipher Suites Compatibility.In Proceedings of the 6th International Conference on Data Communication Networking - Volume 1: DCNET, (ICETE 2015) ISBN 978-989-758-112-0, pages 13-23. DOI: 10.5220/0005507900130023

@conference{dcnet15,
author={Manuel Koschuch. and Taro Fruhwirth. and Alexander Glaser. and Silvie Schmidt. and Matthias Hudler.},
title={Speaking in Tongues - Practical Evaluation of TLS Cipher Suites Compatibility},
booktitle={Proceedings of the 6th International Conference on Data Communication Networking - Volume 1: DCNET, (ICETE 2015)},
year={2015},
pages={13-23},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0005507900130023},
isbn={978-989-758-112-0},
}

TY - CONF

JO - Proceedings of the 6th International Conference on Data Communication Networking - Volume 1: DCNET, (ICETE 2015)
TI - Speaking in Tongues - Practical Evaluation of TLS Cipher Suites Compatibility
SN - 978-989-758-112-0
AU - Koschuch, M.
AU - Fruhwirth, T.
AU - Glaser, A.
AU - Schmidt, S.
AU - Hudler, M.
PY - 2015
SP - 13
EP - 23
DO - 10.5220/0005507900130023

Login or register to post comments.

Comments on this Paper: Be the first to review this paper.