FRINK Linked Data Fragments server

Matches in SemOpenAlex for { <https://semopenalex.org/work/W1439373405> ?p ?o ?g. }

• W1439373405 endingPage "2" @default.
• W1439373405 startingPage "2" @default.
• W1439373405 abstract "Protection of Internet communication is becoming more common in many products, as the demand for privacy in an age of state-level adversaries and crime syndicates is steadily increasing. The industry standard for doing this is TLS. The TLS protocol supports a multitude of key agreement and authentication options which provide various different security guarantees. Recent attacks showed that this plethora of cryptographic options in TLS (including long forgotten government backdoors, which have been cunningly inserted via export restriction laws) is a Pandora's box, waiting to be pried open by heinous computer whizzes. Novel attacks lay hidden in plain sight. Parts of TLS are so old that their foul smell of rot cannot be easily distinguished from the flowery smell of 'strong' cryptography and water-tight security mechanisms. With an arcane (but well-known among some theoretical cryptographers) tool, we put new cracks into Pandora's box, achieving a full break of TLS security. This time, the tool of choice is KCI, or Key Compromise Impersonation.The TLS protocol includes a class of key agreement and authentication methods that are vulnerable to KCI attacks: non-ephemeral Diffie-Hellman key exchange with fixed Diffie-Hellman client authentication - both on elliptic curve groups, as well as on classical integer groups modulo a prime. We show that TLS clients that support these weak handshakes pose serious security concerns in modern systems, opening the supposedly securely encrypted communication to full-blown Man-in-the-Middle (MitM) attacks.This paper discusses and analyzes KCI attacks in regard to the TLS protocol. We present an evaluation of the TLS software landscape regarding this threat, including a successful MitM attack against the Safari Web Browser on Mac OS X. We conclude that the insecure TLS options that enable KCI attacks should be immediately disabled in TLS clients and removed from future versions and implementations of the protocol: their utility is extremely limited, their raison d'etre is practically nil, and the existence of these insecure key agreement options only adds to the arsenal of attack vectors against cryptographically secured communication on the Internet." @default.
• W1439373405 created "2016-06-24" @default.
• W1439373405 creator A5018375019 @default.
• W1439373405 creator A5019660324 @default.
• W1439373405 creator A5021851117 @default.
• W1439373405 creator A5040059779 @default.
• W1439373405 date "2015-08-10" @default.
• W1439373405 modified "2023-09-25" @default.
• W1439373405 title "Prying open Pandora's box: KCI attacks against TLS" @default.
• W1439373405 cites W104980622 @default.
• W1439373405 cites W1439967542 @default.
• W1439373405 cites W1495444061 @default.
• W1439373405 cites W1527077352 @default.
• W1439373405 cites W1531296821 @default.
• W1439373405 cites W1533182289 @default.
• W1439373405 cites W1560720671 @default.
• W1439373405 cites W1662746580 @default.
• W1439373405 cites W1673604584 @default.
• W1439373405 cites W1729100754 @default.
• W1439373405 cites W1733713784 @default.
• W1439373405 cites W1809974132 @default.
• W1439373405 cites W189766157 @default.
• W1439373405 cites W1927099252 @default.
• W1439373405 cites W1975344666 @default.
• W1439373405 cites W1976919795 @default.
• W1439373405 cites W1994386233 @default.
• W1439373405 cites W2042923641 @default.
• W1439373405 cites W2056494114 @default.
• W1439373405 cites W2094250919 @default.
• W1439373405 cites W2107506969 @default.
• W1439373405 cites W2109887607 @default.
• W1439373405 cites W2114398364 @default.
• W1439373405 cites W2117455301 @default.
• W1439373405 cites W2121654697 @default.
• W1439373405 cites W2146923862 @default.
• W1439373405 cites W2153041122 @default.
• W1439373405 cites W2153281696 @default.
• W1439373405 cites W2156186849 @default.
• W1439373405 cites W2159840470 @default.
• W1439373405 cites W2161954933 @default.
• W1439373405 cites W2166093784 @default.
• W1439373405 cites W2186028149 @default.
• W1439373405 cites W2188990575 @default.
• W1439373405 cites W2238866705 @default.
• W1439373405 cites W2248175634 @default.
• W1439373405 cites W2249289274 @default.
• W1439373405 cites W2265847187 @default.
• W1439373405 cites W2266218113 @default.
• W1439373405 cites W2274779708 @default.
• W1439373405 cites W2300554752 @default.
• W1439373405 cites W2407537758 @default.
• W1439373405 cites W2486968376 @default.
• W1439373405 cites W2557281918 @default.
• W1439373405 cites W2915352631 @default.
• W1439373405 cites W2916447643 @default.
• W1439373405 cites W2949914080 @default.
• W1439373405 cites W2952321600 @default.
• W1439373405 cites W3032745429 @default.
• W1439373405 cites W3121587263 @default.
• W1439373405 cites W39167138 @default.
• W1439373405 cites W50107694 @default.
• W1439373405 hasPublicationYear "2015" @default.
• W1439373405 type Work @default.
• W1439373405 sameAs 1439373405 @default.
• W1439373405 citedByCount "3" @default.
• W1439373405 countsByYear W14393734052016 @default.
• W1439373405 countsByYear W14393734052018 @default.
• W1439373405 countsByYear W14393734052019 @default.
• W1439373405 crossrefType "journal-article" @default.
• W1439373405 hasAuthorship W1439373405A5018375019 @default.
• W1439373405 hasAuthorship W1439373405A5019660324 @default.
• W1439373405 hasAuthorship W1439373405A5021851117 @default.
• W1439373405 hasAuthorship W1439373405A5040059779 @default.
• W1439373405 hasConcept C108827166 @default.
• W1439373405 hasConcept C148176105 @default.
• W1439373405 hasConcept C148417208 @default.
• W1439373405 hasConcept C148730421 @default.
• W1439373405 hasConcept C178489894 @default.
• W1439373405 hasConcept C196491621 @default.
• W1439373405 hasConcept C203062551 @default.
• W1439373405 hasConcept C33884865 @default.
• W1439373405 hasConcept C38652104 @default.
• W1439373405 hasConcept C41008148 @default.
• W1439373405 hasConcept C99674996 @default.
• W1439373405 hasConceptScore W1439373405C108827166 @default.
• W1439373405 hasConceptScore W1439373405C148176105 @default.
• W1439373405 hasConceptScore W1439373405C148417208 @default.
• W1439373405 hasConceptScore W1439373405C148730421 @default.
• W1439373405 hasConceptScore W1439373405C178489894 @default.
• W1439373405 hasConceptScore W1439373405C196491621 @default.
• W1439373405 hasConceptScore W1439373405C203062551 @default.
• W1439373405 hasConceptScore W1439373405C33884865 @default.
• W1439373405 hasConceptScore W1439373405C38652104 @default.
• W1439373405 hasConceptScore W1439373405C41008148 @default.
• W1439373405 hasConceptScore W1439373405C99674996 @default.
• W1439373405 hasLocation W14393734051 @default.
• W1439373405 hasOpenAccess W1439373405 @default.
• W1439373405 hasPrimaryLocation W14393734051 @default.

• next