Vulnerabilities of the SSL/TLS Protocol

Jelena Ćurguz, Post of Republic of Srpska in Banja Luka, Bosnia and Herzegovina; Jelena Ćurguz, Post of Republic of Srpska in Banja Luka, Bosnia and Herzegovina

Vulnerabilities of the SSL/TLS Protocol

Authors

Jelena Ćurguz, Post of Republic of Srpska in Banja Luka, Bosnia and Herzegovina

Abstract

This paper analyzes vulnerabilities of the SSL/TLS Handshake protocol, which is responsible for authentication of the parties in the communication and negotiation of security parameters that will be used to protect confidentiality and integrity of the data. It will be analyzed the attacks against the implementation of Handshake protocol, as well as the attacks against the other elements necessary to SSL/TLS protocol to discover security flaws that were exploited, modes of attack, the potential consequences, but also studying methods of defense. All versions of the protocol are going to be the subject of the research but emphasis will be placed on the critical attack that the most endanger the safety of data. The goal of the research is to point out the danger of existence of at least vulnerability in the SSL/TLS protocol, which can be exploited and endanger the safety of the data that should be protected.

Keywords

SSL/TLS Protocols, Handshake Protocols, Attacks,

CS&IT Conference Proceedings

Vulnerabilities of the SSL/TLS Protocol