Title :
SSL-DP: A Rootkit of Network Based SSL and TLS Traffic Decryptor
Author :
Wu Liu ; Ping Ren ; Yong Zhang ; Hai-xin Duan
Author_Institution :
Network Res. Center, Tsinghua Univ., Beijing, China
Abstract :
With more and more security threat events happened aiming at financial web services, there is an increasing amount of transactions performed over the Internet. As a de-facto standard the security protocol SSL (Secure Sockets Layer) or TLS (Transport Layer Security) is used to create a secure connection to web services. This paper analyze the weakness of the SSL and TLS protocols, based on which, we designed and implemented a root-kit for network based SSL and TLS traffic decrypt ion , which is called SSL-DP. With the experiment of SSL-DP we can see that SSL/TLS protocol is not secure enough to protect the important network information such as E-commerce etc.
Keywords :
Web services; financial data processing; protocols; security of data; Internet; financial Web service; secure sockets layer; security protocol; security threat event; traffic decryption; traffic decryptor; transport layer security; Authentication; Local area networks; Protocols; Public key; Servers; Network Management; Network Security; RootKit; Secure Socket Layer; Transport Layer Security;
Conference_Titel :
Cybercrime and Trustworthy Computing Workshop (CTC), 2010 Second
Conference_Location :
Ballarat, VIC
Print_ISBN :
978-1-4244-8054-8
Electronic_ISBN :
978-0-7695-4186-0
DOI :
10.1109/CTC.2010.15
