Raccoon Attack on TLS 1.2

This lecture delves into the Raccoon Attack, a timing attack on TLS-DH(E) that exploits most significant bit oracles. The instructor explains the TLS protocol, key exchange, HMAC, and the impact of the attack on TLS 1.2. The lecture covers the background of the attack, the use of shared secrets, key derivation functions, and the implications for TLS security. The instructor details how the attack works, the hidden number problem, and the lattice construction used to retrieve premaster secrets. The lecture also discusses the practicality of the attack, the differences between static and ephemeral keys, and the importance of avoiding key reuse in TLS. The instructor concludes by highlighting the lessons learned from the Raccoon Attack and the implications for TLS security.

About this result

This page is automatically generated and may contain information that is not correct, complete, up-to-date, or relevant to your search query. The same applies to every other page on this website. Please make sure to verify the information with EPFL's official sources.

Related lectures (111)

Related concepts (43)

COM-506: Student seminar: security protocols and applications

This seminar introduces the participants to the current trends, problems, and methods in the area of communication security.

GnuTLS

GnuTLS (ˈɡnuː_ˌtiː_ˌɛl_ˈɛs, the GNU Transport Layer Security Library) is a free software implementation of the TLS, SSL and DTLS protocols. It offers an application programming interface (API) for applications to enable secure communication over the network transport layer, as well as interfaces to access X.509, PKCS #12, OpenPGP and other structures. GnuTLS consists of a library that allows client applications to start secure sessions using the available protocols. It also provides command-line tools, including an X.

Transport Layer Security

Transport Layer Security (TLS) is a cryptographic protocol designed to provide communications security over a computer network. The protocol is widely used in applications such as email, instant messaging, and voice over IP, but its use in securing HTTPS remains the most publicly visible. The TLS protocol aims primarily to provide security, including privacy (confidentiality), integrity, and authenticity through the use of cryptography, such as the use of certificates, between two or more communicating computer applications.

Security

Security is protection from, or resilience against, potential harm (or other unwanted coercion) caused by others, by restraining the freedom of others to act. Beneficiaries (technically referents) of security may be of persons and social groups, objects and institutions, ecosystems or any other entity or phenomenon vulnerable to unwanted change. Security mostly refers to protection from hostile forces, but it has a wide range of other senses: for example, as the absence of harm (e.g.

Key management

Key management refers to management of cryptographic keys in a cryptosystem. This includes dealing with the generation, exchange, storage, use, crypto-shredding (destruction) and replacement of keys. It includes cryptographic protocol design, key servers, user procedures, and other relevant protocols. Key management concerns keys at the user level, either between users or systems. This is in contrast to key scheduling, which typically refers to the internal handling of keys within the operation of a cipher.

Computer security

Computer security, cyber security, digital security or information technology security (IT security) is the protection of computer systems and networks from attacks by malicious actors that may result in unauthorized information disclosure, theft of, or damage to hardware, software, or data, as well as from the disruption or misdirection of the services they provide. The field is significant due to the expanded reliance on computer systems, the Internet, and wireless network standards such as Bluetooth and Wi-Fi.

Cryptography Basics: Symmetric and Asymmetric Encryption COM-402: Information security and privacy

Introduces the fundamentals of cryptography, focusing on symmetric and asymmetric encryption, data integrity, authentication, and non-repudiation.

Conditional Access II EE-552: Media security

Covers conditional access, encryption, decryption, authentication, and advanced encryption standards, exploring identity-based encryption, biometrics, and attribute-based encryption.

Introduction to Cryptography: Fundamentals and Applications COM-401: Cryptography and security

Covers the fundamentals of cryptography, including symmetric encryption, digital signatures, and secure communication standards.

SSL Certificate Deployment for ENAC Web Hosting

Focuses on SSL certificate deployment for ENAC Web Hosting, covering certificate generation, debugging, and Ansible playbook management.

Beam Bending II

Explores the relationship between moment, curvature, and deflection in beam bending scenarios, emphasizing the consideration of shear forces and deformations.