Over the last few years, there has been an almost exponential growth of TLS popularity and usage, especially among applications that deal with sensitive data. However, even with this widespread use, TLS remains for many system administrators a complex subject. The main reason is that they do not have the time to understand all the cryptographic algorithms and features used in a TLS suite and their relative weaknesses. For these reasons, many different tools have been developed to verify TLS implementations. However, they usually analyze the TLS configuration and provide a list of possible attacks, without specifying their mitigations. In this paper, we present TLSAssistant, a fully-featured tool that combines state-of-the-art TLS analyzers with a report system that suggests appropriate mitigations and shows the full set of viable attacks.

Lost in TLS? no more! assisted deployment of secure TLS configurations / Manfredi, S.; Ranise, S.; Sciarretta, G.. - 11559:(2019), pp. 201-220. (Intervento presentato al convegno 33rd Annual IFIP WG 11.3 Conference on Data and Applications Security and Privacy, DBSec 2019 tenutosi a usa nel 2019) [10.1007/978-3-030-22479-0_11].

Lost in TLS? no more! assisted deployment of secure TLS configurations

Ranise S.;
2019-01-01

Abstract

Over the last few years, there has been an almost exponential growth of TLS popularity and usage, especially among applications that deal with sensitive data. However, even with this widespread use, TLS remains for many system administrators a complex subject. The main reason is that they do not have the time to understand all the cryptographic algorithms and features used in a TLS suite and their relative weaknesses. For these reasons, many different tools have been developed to verify TLS implementations. However, they usually analyze the TLS configuration and provide a list of possible attacks, without specifying their mitigations. In this paper, we present TLSAssistant, a fully-featured tool that combines state-of-the-art TLS analyzers with a report system that suggests appropriate mitigations and shows the full set of viable attacks.
2019
Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
GEWERBESTRASSE 11, CHAM, CH-6330, SWITZERLAND
Springer Verlag
978-3-030-22478-3
978-3-030-22479-0
Manfredi, S.; Ranise, S.; Sciarretta, G.
Lost in TLS? no more! assisted deployment of secure TLS configurations / Manfredi, S.; Ranise, S.; Sciarretta, G.. - 11559:(2019), pp. 201-220. (Intervento presentato al convegno 33rd Annual IFIP WG 11.3 Conference on Data and Applications Security and Privacy, DBSec 2019 tenutosi a usa nel 2019) [10.1007/978-3-030-22479-0_11].
File in questo prodotto:
Non ci sono file associati a questo prodotto.

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/11572/333070
 Attenzione

Attenzione! I dati visualizzati non sono stati sottoposti a validazione da parte dell'ateneo

Citazioni
  • ???jsp.display-item.citation.pmc??? ND
  • Scopus 5
  • ???jsp.display-item.citation.isi??? 2
social impact