Plaintext-Recovery Attacks Against Datagram TLS

19th Annual Network and Distributed System Security Symposium, NDSS 2012

Volumn , Issue , 2012, Pages

  AlFardan, Nadhem J ^a   Paterson, Kenneth G ^a  

^a UNIVERSITY OF LONDON   (United Kingdom)

Author keywords

attack; CBC mode encryption; DTLS; GnuTLS; OpenSSL; padding oracle; timing; TLS

Indexed keywords

CRYPTOGRAPHY; ELECTRONIC DATA INTERCHANGE; RECOVERY;

ATTACK; CBC-MODE ENCRYPTION; DATAGRAM TRANSPORT LAYER SECURITY; DATAGRAMS; GNUTLS; OPENSSL; PADDING ORACLE; TIMING; TLS; TRANSPORT LAYER SECURITY;

TIMING CIRCUITS;

EID: 84977583145     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: None     Document Type: Conference Paper

References (15)

1. P. Calhoun, M. Montemurro, and D. Stanley. Control And Provisioning of Wireless Access Points (CAPWAP) Protocol Specification. RFC 5415, Internet Engineering Task Force, March 2009.
2. Brice Canvel, Alain P. Hiltgen, Serge Vaudenay, and Martin Vuagnoux. Password Interception in a SSL/TLS Channel. In Dan Boneh, editor, CRYPTO, volume 2729 of Lecture Notes in Computer Science, pages 583-599. Springer, 2003.
3. Scott A. Crosby, Dan S. Wallach, and Rudolf H. Riedi. Opportunities and Limits of Remote Timing Attacks. ACM Trans. Inf. Syst. Secur., 12(3), 2009.
4. Jean Paul Degabriele and Kenneth G. Paterson. Attacking the IPsec standards in encryption-only configurations. In IEEE Symposium on Security and Privacy, pages 335-349, 2007.
5. Jean Paul Degabriele and Kenneth G. Paterson. On the (in)security of IPsec in MAC-then-encrypt configurations. In ACM Conference on Computer and Communications Security, pages 493-504, 2010.
6. T. Dierks and E. Rescorla. The Transport Layer Security (TLS) Protocol Version 1.1. RFC 4346, Internet Engineering Task Force, April 2006.
7. Thai Duong and Juliano Rizzo. Cryptography in the Web: The Case of Cryptographic Design Flaws in ASP.NET. In IEEE Symposium on Security and Privacy. IEEE Computer Society, May 2011.
8. W. Hardaker. Transport Layer Security (TLS) Transport Model for the Simple Network Management Protocol (SNMP). RFC 5953, Internet Engineering Task Force, August 2010.
9. S. Kent and R. Atkinson. IP Authentication Header. RFC 2402, Internet Engineering Task Force, November 1998.
10. Nagendra Modadugu and Eric Rescorla. The Design and Implementation of Datagram TLS. In NDSS. The Internet Society, 2004.
11. E. Rescorla and N. Modadugu. Datagram Transport Layer Security. RFC 4347, Internet Engineering Task Force, April 2006.
12. Juliano Rizzo and Thai Duong. Practical Padding Oracle Attacks. In 4th USENIX Workshop on Offensive Technologies (WOOT'10), August 2010.
13. J. Salowey, T. Petch, R. Gerhards, and H. Feng. Datagram Transport Layer Security (DTLS) Transport Mapping for Syslog. RFC 6012, Internet Engineering Task Force, October 2010.
14. R. Seggelmann and M. Williams. Transport Layer Security (TLS) and Datagram Transport Layer Security (DTLS) Heartbeat Extension. Draft RFC, Internet Engineering Task Force. http://tools.ietf.org/html/draft-ietf-tls-dtls-heartbeat-02.
15. Serge Vaudenay. Security Flaws Induced by CBC Padding - Applications to SSL, IPSEC, WTLS ⋯ In Lars R. Knudsen, editor, EUROCRYPT, volume 2332 of Lecture Notes in Computer Science, pages 534-546. Springer, 2002.