Conference item
Towards forward secure internet traffic
- Abstract:
- Forward Secrecy (FS) is a security property in key-exchange algorithms which guarantees that a compromise in the secrecy of a long-term private-key does not compromise the secrecy of past session keys. With a growing awareness of long-term mass surveillance programs by governments and others, FS has become widely regarded as a highly desirable property. This is particularly true in the TLS protocol, which is used to secure Internet communication. In this paper, we investigate FS in pre-TLS 1.3 protocols, which do not mandate FS, but are still widely used today. We conduct an empirical analysis of over 10 million TLS servers from three different datasets using a novel heuristic approach. Using a modern TLS client handshake algorithms, our results show 5.37% of top domains, 7.51% of random domains, and 26.16% of random IPs do not select FS key-exchange algorithms. Surprisingly, 39.20% of the top domains, 24.40% of the random domains, and 14.46% of the random IPs that do not select FS, do support FS. In light of this analysis, we discuss possible paths toward forward secure Internet traffic. As an improvement of the current state, we propose a new client-side mechanism that we call “Best Effort Forward Secrecy” (BEFS), and an extension of it that we call “Best Effort Forward Secrecy and Authenticated Encryption” (BESAFE), which aims to guide (force) misconfigured servers to FS using a best effort approach. Finally, within our analysis, we introduce a novel adversarial model that we call “discriminatory” adversary, which is applicable to the TLS protocol.
- Publication status:
- Published
- Peer review status:
- Peer reviewed
Actions
Access Document
- Files:
-
-
(Preview, Accepted manuscript, pdf, 287.7KB, Terms of use)
-
- Publisher copy:
- 10.1007/978-3-030-37228-6_17
Authors
- Publisher:
- Springer
- Host title:
- Security and Privacy in Communication Networks
- Pages:
- 341-364
- Series:
- Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering
- Series number:
- 304
- Publication date:
- 2019-12-13
- Acceptance date:
- 2019-06-07
- Event title:
- 15th EAI International Conference on Security and Privacy in Communication Networks
- Event location:
- Orlando, Florida, USA
- Event website:
- http://securecomm2019.eai-conferences.org/
- Event start date:
- 2019-10-23
- Event end date:
- 2019-10-25
- DOI:
- ISSN:
-
1867-8211
- EISBN:
- 9783030372286
- ISBN:
- 9783030372279
- Language:
-
English
- Keywords:
- Pubs id:
-
pubs:1034365
- UUID:
-
uuid:72bdf149-345a-440b-bf2b-8a7e3238c47b
- Local pid:
-
pubs:1034365
- Source identifiers:
-
1034365
- Deposit date:
-
2019-07-23
- ARK identifier:
Terms of use
- Copyright holder:
- Institute for Computer Sciences, Social Informatics and Telecommunications Engineering
- Copyright date:
- 2019
- Rights statement:
- © ICST Institute for Computer Sciences, Social Informatics and Telecommunications Engineering 2019.
- Notes:
- This paper was presented at the 15th EAI International Conference, SecureComm 2019, Orlando, FL, USA, October 23-25, 2019. This is the accepted manuscript version of the paper. The final version is available online from Springer at: https://doi.org/10.1007/978-3-030-37228-6_17
If you are the owner of this record, you can report an update to it here: Report update to this record