• DocumentCode
    2748680
  • Title

    SSL-DP: A Rootkit of Network Based SSL and TLS Traffic Decryptor

  • Author

    Wu Liu ; Ping Ren ; Yong Zhang ; Hai-xin Duan

  • Author_Institution
    Network Res. Center, Tsinghua Univ., Beijing, China
  • fYear
    2010
  • fDate
    19-20 July 2010
  • Firstpage
    29
  • Lastpage
    33
  • Abstract
    With more and more security threat events happened aiming at financial web services, there is an increasing amount of transactions performed over the Internet. As a de-facto standard the security protocol SSL (Secure Sockets Layer) or TLS (Transport Layer Security) is used to create a secure connection to web services. This paper analyze the weakness of the SSL and TLS protocols, based on which, we designed and implemented a root-kit for network based SSL and TLS traffic decrypt ion , which is called SSL-DP. With the experiment of SSL-DP we can see that SSL/TLS protocol is not secure enough to protect the important network information such as E-commerce etc.
  • Keywords
    Web services; financial data processing; protocols; security of data; Internet; financial Web service; secure sockets layer; security protocol; security threat event; traffic decryption; traffic decryptor; transport layer security; Authentication; Local area networks; Protocols; Public key; Servers; Network Management; Network Security; RootKit; Secure Socket Layer; Transport Layer Security;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Cybercrime and Trustworthy Computing Workshop (CTC), 2010 Second
  • Conference_Location
    Ballarat, VIC
  • Print_ISBN
    978-1-4244-8054-8
  • Electronic_ISBN
    978-0-7695-4186-0
  • Type

    conf

  • DOI
    10.1109/CTC.2010.15
  • Filename
    5615131
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=2748680