Revisiting SSL/TLS implementations: New bleichenbacher side channels and attacks

Proceedings of the 23rd USENIX Security Symposium

Volumn , Issue , 2014, Pages 733-748

  Meyer, Christopher ^a   Somorovsky, Juraj ^a   Weiss, Eugen ^a   Schwenk, Jörg ^a   Schinzel, Sebastian ^b   Tews, Erik ^c  

^a RUHR UNIVERSITY BOCHUM   (Germany)

^b MÜNSTER UNIVERSITY OF APPLIED SCIENCES   (Germany)

^c DARMSTADT UNIVERSITY OF TECHNOLOGY   (Germany)

Author keywords

[No Author keywords available]

Indexed keywords

MEASUREMENT SETUP; SECURE SOCKETS; SECURITY APPLIANCES; SIDE-CHANNEL; SSL/TLS;

SIDE CHANNEL ATTACK;

EID: 85061943650     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: None     Document Type: Conference Paper

References (24)

1. ABOBA, B., BLUNK, L., VOLLBRECHT, J., CARLSON, J., and LEVKOWETZ, H. Extensible Authentication Protocol (EAP). RFC 3748 (Proposed Standard), June 2004. Updated by RFC 5247.
2. ALFARDAN, N. J., and PATERSON, K. G. Lucky thirteen: Breaking the tls and dtls record protocols. 2013 IEEE Symposium on Security and Privacy 0 (2013), 526-540. http://www.isg.rhul.ac.uk/tls/TLStiming.pdf.
3. BARD, G. V. The vulnerability of ssl to chosen plaintext attack. IACR Cryptology ePrint Archive 2004 (May 2004), 111.
4. BARDOU, R., FOCARDI, R., KAWAMOTO, Y., STEEL, G., and TSAY, J.-K. Efficient Padding Oracle Attacks on Cryptographic Hardware. In Advances in Cryptology - CRYPTO (2012), Canetti and R. Safavi-Naini, Eds.
5. BLEICHENBACHER, D. Chosen ciphertext attacks against protocols based on the RSA encryption standard PKCS #1. In Advances in Cryptology - CRYPTO '98, Vol. 1462 of Lecture Notes in Computer Science. Springer Berlin / Heidelberg, 1998.
6. BRUMLEY, B., and TUVERI, N. Remote Timing Attacks are Still Practical. In Computer Security - ESORICS 2011, Vol. 6879 of Lecture Notes in Computer Science. Springer Berlin / Heidelberg, Sept. 2011.
7. BRUMLEY, D., and BONEH, D. Remote timing attacks are practical. In Proceedings of the 12th conference on USENIX Security Symposium - Volume 12 (June 2003), SSYM'03, USENIX Association.
8. CROSBY, S. A., and WALLACH., D. S., and RIEDI, R. H. Opportunities and limits of remote timing attacks. ACM Trans. Inf. Syst. Secur. 12, 3 (Jan. 2009), 17:1-17:29.
9. DIERKS, T., and ALLEN, C. The TLS Protocol Version 1.0. RFC 2246 (Proposed Standard), Jan. 1999. Obsoleted by RFC 4346, updated by RFCs 3546, 5746.
10. DIERKS, T., and RESCORLA, E. The Transport Layer Security (TLS) Protocol Version 1.1. RFC 4346 (Proposed Standard), Apr. 2006. Obsoleted by RFC 5246, updated by RFCs 4366, 4680, 4681, 5746.
11. DIERKS, T., and RESCORLA, E. The Transport Layer Security (TLS) Protocol Version 1.2. RFC 5246 (Proposed Standard), Aug. 2008. Updated by RFC 5746.
12. JAGER, T., KOHLAR, F., SCHÄGE, S., and SCHWENK, J. On the security of tls-dhe in the standard model. In Advances in Cryptology - CRYPTO 2012, R. Safavi-Naini and R. Canetti, Eds., Vol. 7417 of Lecture Notes in Computer Science. Springer Berlin Heidelberg, 2012, pp. 273-293.
13. JAGER, T., SCHINZEL, S., and SOMOROVSKY, J. Bleichen-bacher's attack strikes again: Breaking pkcs#1 v1.5 in xml encryption. In ESORICS (2012), S. Foresti, M. Yung, and F. Martinelli, Eds., Vol. 7459 of Lecture Notes in Computer Science, Springer, pp. 752-769.
14. JONSSON, J., and KALISKI, B. Public-Key Cryptography Standards (PKCS) #1: RSA Cryptography Specifications Version 2.1. RFC 3447 (Informational), Feb. 2003.
15. KELSEY, J. Compression and information leakage of plaintext. In Fast Software Encryption, 9th International Workshop, FSE 2002, Leuven, Belgium, February 4-6, 2002, Revised Papers (Nov. 2002), Vol. 2365 of Lecture Notes in Computer Science, Springer.
16. KŁIMA, V., POKORNÝ, O., AND ROSA, T. Attacking RSA-Based Sessions in SSL/TLS. In Cryptographic Hardware and Embedded Systems - CHES 2003, Vol. 2779 of Lecture Notes in Computer Science. Springer Berlin / Heidelberg, Sept. 2003.
17. KRAWCZYK, H., and PATERSON., K. G., and WEE, H. On the Security of the TLS Protocol: A Systematic Analysis. Cryptology ePrint Archive, Report 2013/339, 2013. http://eprint.iacr.org/.
18. M. D. GREEN (@OPENSSLFACT). OpenSSL vs. best practices (RSA decryption edition). 2.10.2012. 16:04, Tweet, https://twitter.com/OpenSSLFact/status/253060773218222081.
19. MANGER, J. A chosen ciphertext attack on rsa optimal asymmetric encryption padding (oaep) as standardized in pkcs #1 v2.0. In Advances in Cryptology - CRYPTO 2001, 21st Annual International Cryptology Conference, Santa Barbara, California, USA, August 19-23, 2001, Proceedings (2001), Vol. 2139 of Lecture Notes in Computer Science, Springer, pp. 230-238.
20. MEYER, C. 20 Years of SSL/TLS Research: An Analysis of the Internet's Security Foundation. PhD thesis, Ruhr-University Bochum, Feb. 2014.
21. MEYER, C., and SCHWENK, J. SoK: Lessons Learned From SSL/TLS Attacks. In Proceedings of the 14th International Workshop on Information Security Applications (Berlin, Heidelberg, Aug. 2013), WISA 2013, Springer-Verlag.
22. PATERSON, K. G., RISTENPART, T., and SHRIMPTON, T. Tag size does matter: attacks and proofs for the TLS record protocol. In Proceedings of the 17th international conference on The Theory and Application of Cryptology and Information Security (Dec. 2011), ASIACRYPT'11, Springer-Verlag.
23. RISTENPART, T., TROMER, E., SHACHAM, H., and SAVAGE, S. Hey, you, get off of my cloud: Exploring information leakage in third-party compute clouds. In Proceedings of the 16th ACM Conference on Computer and Communications Security (New York, NY, USA, 2009), CCS '09, ACM, pp. 199-212.
24. RIZZO, J., and DUONG, T. Here Come The XOR Ninjas, May 2011.