Upload File

tls certificates on the web – the good, the bad and the ugly

  • Home
  • Technology
  • TLS Certificates on the Web – The Good, The Bad and The Ugly
20
SESSION ID: #RSAC Rick Andrews TLS Cer1ficates on the Web – The Good, The Bad and The Ugly PDAC-R04 Senior Technical Director Symantec Trust Services

Upload: cascouncil

Post on 19-Feb-2017

402 views

Category:

Technology


0 download

Report

TRANSCRIPT

Page 1: TLS Certificates on the Web – The Good, The Bad and The Ugly

SESSIONID:

#RSAC

RickAndrews

TLSCer1ficatesontheWeb–TheGood,TheBadandTheUgly

PDAC-R04

SeniorTechnicalDirectorSymantecTrustServices

Page 2: TLS Certificates on the Web – The Good, The Bad and The Ugly

#RSAC

TLSCer1ficates

2

  TLSEcosystemisalmost20yearsold

  Recentlyenduredthreecer>ficate-basedmigra>ons:

  AwayfromMD2andMD5toSHA-1

  AwayfromsmallRSAkeysto2048-bitkeysorlarger

  AwayfromSHA-1toSHA-256

Page 3: TLS Certificates on the Web – The Good, The Bad and The Ugly

#RSAC

What’sDrivingTheseMigra1ons?

3

  RelentlessmarchofaNacks(onlygePngbeNer)

  CA/BrowserForum

  BaselineRequirements

  EVGuidelines

  Cer>fica>onAuthori>es

  Browservendors

Page 4: TLS Certificates on the Web – The Good, The Bad and The Ugly

#RSAC

What’sSlowingTheseMigra1ons?

4

  UseofTLSinnon-browserapplica>ons  Mail,XMPPandothernon-webservers

  POSandotherdevices

  Lackofauto-updatecapabili>es

  Ins>tu>onaliner>a  Companieswaityearstoperformaserverrefresh

Page 5: TLS Certificates on the Web – The Good, The Bad and The Ugly

#RSAC

TLSCer1ficates–theGood

Page 6: TLS Certificates on the Web – The Good, The Bad and The Ugly

#RSAC

Deployment of SHA-2 Certificates

TLSCer1ficates–theGoodTrajectoryofSHA-2deploymentisencouraging(Netcra_)

6

Page 7: TLS Certificates on the Web – The Good, The Bad and The Ugly

#RSAC

TLSCer1ficates–theGood

7

  99.98%ofcer>ficatescontainRSA2048-bit,ECC224-bitorlargerkeys(Netcra_)

  200Kcertswithkeys>=RSA4096bits(Netcra_)

  BRCompliance

  Responsibleforstandardizingcer>ficateprofiles

  10.7%ofsitesuseEV(TIM)

Page 8: TLS Certificates on the Web – The Good, The Bad and The Ugly

#RSAC

TLSCer1ficates–theBad

Page 9: TLS Certificates on the Web – The Good, The Bad and The Ugly

#RSAC

TLSCer1ficates–theBad

9

  RemainingSHA-1certswillnotworkinbrowsersa_er2016:

  13.3%(Netcra_)

  11.6%(TIM)

  USDODs>llissuingSHA-1cer>ficates

  hNp://news.netcra_.com/archives/2016/01/08/us-military-s>ll-shackled-to-outdated-dod-pki-infrastructure.html

  Morethan1,000with<RSA2048-bitorECC224-bit(Netcra_)

  Browserscon>nuetoaddcompliancechecks

Page 10: TLS Certificates on the Web – The Good, The Bad and The Ugly

#RSAC

TLSCer1ficates–theBad

10

  EVviola>ons

  ~6%ofallEVcer>ficates(Netcra_)

  Mostdon’thaveavalidSubjectBusinessCategory(unlikelytocauseusabilityproblems)

  Thousandsdon’tprovideEVtreatmentinChrome(customerdoesn’tbenefitfromtheextracostofEV)

  BRviola>ons

  ~3%ofallcer>ficatesfound(Netcra_)

  Mostarepolicyviola>ons(CNmustappearinSAN,invalidSubjectStateorCountry,etc.)unlikelytocauseusabilityproblems

Page 11: TLS Certificates on the Web – The Good, The Bad and The Ugly

#RSAC

TLSCer1ficates–theBad

11

  Strongkeyssignedbyweakerkeys(adozenorso)don’tprovidethecryptographicprotec>onexpectedbythecer>ficateowner:  ECCP-384signedbyECCP-256  ECCP-384signedbyRSA2048  RSA4096and8192signedbyRSA2048

  Cer>ficateexpira>onisembarrassing  hNp://news.netcra_.com/archives/2015/04/30/instagram-forgets-to-renew-its-ssl-cer>ficate.html

  Almost4%ofsitesserveanincompletecer>ficatechain(TIM)  Mostbrowsersdon’ttrytofetchmissingsubordinateCA

Page 12: TLS Certificates on the Web – The Good, The Bad and The Ugly

#RSAC

TLSCer1ficates–theUgly

Page 13: TLS Certificates on the Web – The Good, The Bad and The Ugly

#RSAC

TLSCer1ficates–theUgly

13

  InvalidCer>ficatesabound  InNetcra_’ssurvey,approximatelytwothirdsofallTLScer>ficatesseenarevalid,issuedbyatrustedCA.Theremainingone-thirdareeitherself-signed,expired,signedbyanunknownissuerorcontainmismatchednames.

  OneMD5,3-yearcertissuedin2013byapublicCA(RSA1024-bitkey)it’sgot6otherBRviola>ons

  One512-bitRSAkeyusedbyGovernmentofKorea(South),althoughit’ssignedusingSHA-2it’sgot4otherBRviola>ons

  Browsersblockaccesstosuchsites

Page 14: TLS Certificates on the Web – The Good, The Bad and The Ugly

#RSAC

TLSCer1ficates–theUgly

14

  InvalidPublicKeyExponent:onecer>ficatewithanRSAexponentof1  TLSdataissentincleartext

  Mul>pleCNsareprohibited,butNetcra_foundcer>ficateswithupto24CNs  2009studydemonstratedaNacksoncertswithmul>pleCNs

  EVcertswithfewerthanthecorrectnumberofSCTs

  Customerdoesn’tbenefitfromtheextracostofEVinChrome

Page 15: TLS Certificates on the Web – The Good, The Bad and The Ugly

#RSAC

TLSCer1ficates–theUgly,con1nued

15

  OnecertwithRSA15,424-bitkey!(includes72SANvalues!)It’sanApacheserver,butnotawebsite  NoharmtotheWeb

  Ten-yearend-en>tycer>ficates,issueda_ertheBRsbecameeffec>ve  MostbrowsersblockpublicTLScertswithexcessivedates

  Cer>ficateswithmorethan50SANs(Netcra_)  Nothingillegal,butmightcauseperformanceproblems

Page 16: TLS Certificates on the Web – The Good, The Bad and The Ugly

#RSAC

ApplyingWhatWe’veLearned

Page 17: TLS Certificates on the Web – The Good, The Bad and The Ugly

#RSAC

Apply

17

  2048-bitRSAwithSHA-256isadequatefornow

  KeepSANstoaminimum(20orfewer),andonlyoneCN

  Replaceallweak,invalid,revokedorsoon-to-expirecer>ficates

  Generateanewkeypairevery>meyoureplaceacer>ficate

  MakesureyourEVcer>ficateshavethecorrectnumberofSCTs

  Testyourcer>ficatewithallmajorbrowsers(don’tforgetmobile)

  ConfirmthatyourCAhascorrectlyissuedthecer>ficate

Page 18: TLS Certificates on the Web – The Good, The Bad and The Ugly

#RSAC

CheckYourWork

18

  CheckTLScer>ficatesandconfigura>ononallservers,notjustwebservers

  hNps://cryptoreport.websecurity.symantec.com/checker/

  hNps://www.ssllabs.com/ssltest/

  ConsideradiscoverytoollikeCer>ficateIntelligenceCenter

  hNps://www.symantec.com/ssl-cer>ficates/cer>ficate-intelligence-center/

  CertlintfromAmazon(opensource)

  hNps://github.com/awslabs/certlint

Page 19: TLS Certificates on the Web – The Good, The Bad and The Ugly

#RSAC

DataSets

19

  Netcra_

  hNp://www.netcra_.com

  ICSI

  hNps://notary.icsi.berkeley.edu/

  TrustworthyInternetMovement(TIM)SSLPulse

  hNps://www.trustworthyinternet.org/ssl-pulse/

  Comodo’scer>ficatesearchtool

  hNps://crt.sh

Page 20: TLS Certificates on the Web – The Good, The Bad and The Ugly

#RSAC

Thankyou!


Scenarios for Setting Up TLS Certificates for Horizon ......Obtaining TLS Certificates from a Certificate Authority 1 VMware strongly recommends that you configure TLS certificates

EAP-TLS Crash Course - Spectralink · 2018. 11. 7. · Applying client certificates to 84‐Series handsets Customers that opt to deploy EAP‐TLS and use their own certificates for

An Introduction to SSL/TLS and Certificates Providing secure communication over the Internet Frederick J. Hirsch [email protected]

SSL/TLS Best Practices · About Mike Byrnes .....15. 3The phrolhlileo 3 ContesIrdIsuececstrcurCiI: atrliuusOesIrDuesogocts Introduction: Identities are ... Hardware tokens, certificates,

Managing Certificates and TLS Endpoints

); Policy requirements for certification authorities ...€¦ · certificates, including Extended Validation Certificates (EVC) and Publicly trusted TLS/SSL certificates (PTC). It

Certificates - cisco.com · Certificates Digitalcertificatesprovidedigitalidentificationforauthentication.CertificatesareusedforSSL(Secure SocketLayer),TLS(TransportLayerSecurity),andDTLS

fabric mill · fabrics fit for a castle, yet priced for a cottage tm tls-jbt443c tls-jbt443f tls-jbt443b tls-jbt443e tls-jbt443j. tails - jabot tls-jbt443k page 12 fabric mill fabrics

Securing Multiple Domains with SAN/UCC · While SSL/TLS is standardized, there are differences between SSL/TLS providers and the certificates they offer. Here are some important criteria

DigiCert® SSL/TLS Best Practice Workshop Student Guide · TLS (Transport Layer Security) is just an updated, more secure, version of SSL. We still refer to security certificates

Unit #5 - Temple MIS · •TLS/SSL server and client certificates •Email certificates •Code signing certificates •Qualified certificates A PKI is often set up with multiple

SSL/TLS Certificates: Giving Your Use of Server Certificates A Hard Look

Cryptography – SSL/TLS · • Public-key cryptography during initial handshake to authenticate and exchange session keys – PKI (X.509 Certificates) • Symmetric key cryptography

SK-CP-TLS Server Certificates-v7.0 Certificate Policy for ... · Certificate Policy for TLS Server Certificates SK ID Solutions AS / 2 36 European Business Register; added that the

Instructions for the Applicant - IdenTrust · ECA SSL/TLS Certificate as specified in the ECA CPS. With respect to the issuance and revocation of ECA SSL/TLS Certificates, IdenTrust

TLS-450/TLS-450PLUS Consoles

Local and dedicated SSL/TLS Services - Wesentra 3 … · Local and dedicated SSL/TLS Services Customers Service Verification Support Entrust Datacard Wesentra. OV and EV SSL Certificates

Hunting Threat Actors with TLS Certificates · HUNTING THREAT ACTORS WITH TLS CERTIFICATES MARK PARSONS DEVELOPER/THREAT ANALYST KING AND UNION [email protected]. ... to put new

9 Imagerie - canceropole-gso.orgcanceropole-gso.org/download/fichiers/2999/chap9.4.pdf · Mtp Bdx Tls Mtp Lim Mtp Mtp Mtp Tls ls Tls Tls Tls Tls Tls Bdx Lim Tls tp im Tls Bdx Bdx

Scenarios for Setting Up TLS Certificates for Horizon 7 ... · certificates that are used by Horizon 7 servers, or for anyone who uses intermediate servers to off-load TLS connections

SSL/TLS, certificates, ciphersuites How does that work? · 2016. 10. 17. · SSL/TLS, certificates, ciphersuites... How does that work? [email protected] Linuxdays.cz, Prague,

SSL/TLS Certificates and Their Prevalence on the Dark Web

Scenarios for Setting Up TLS Certificates for Horizon 7

TLS/SSL Certificates in ISE · PKI relies on x.509 digital certificates to transfer public keys for encryption and decryption of messages, and to verify the authenticity of other

Using SSL/TLS Client Certificates for User Authentication

SSL/TLS Certificates: Giving Your Use of Server Certificates A Hard Look Joe St Sauver, Ph.D. [email protected] or [email protected] InCommon Certificate

Adventures in TLS - Cornell Universityshmat/courses/cs5438/tls.pdf · root certificate authorities • My Chrome includes certificates of 195 trusted root CAs A Root CA signs certificates

Technical and Operational Security - Veeva Systems · Technical and Operational Security . SITES.VEEVA.COM 2 ... external certificate authority for its TLS digital certificates with

Scenarios for Setting Up TLS Certificates for Horizon 7 ... · 14/03/2019  · a Certificate Authority 1 VMware strongly recommends that you configure TLS certificates that are signed

PowerPoint Presentation€¦ · Three Phases Phase 1 “TLS lock icon” will not appear on “public” SHA-1 signed TLS certificates in IE/Edge Took effect in 2016 Phase 2 IE/Edge

THE CASE FOR PREFETCHING AND PREVALIDATING TLS SERVER CERTIFICATES

people.terry.uga.edupeople.terry.uga.edu/.../Lawrence_Ugliness.pdf · ugliness: meanness and formless and ugly surroundings, ugly ideals, ugly religion, ugly hope, ugly love, ugly

Presentazione standard di PowerPoint€¦ · • SSL/TLS protocol encryption and use of certificates • Automatic «Relay server» selection according to the shortest latency •

A CA Security Council White Paper · websites to quick and easy methods for receiving and managing SSL/TLS certificates. These changes have caused a rapid rise in SSL/TLS certificate

SECURE YOUR INTEGRATIONS · 2018-06-15 · secure your integrations what do you hope to achieve? security in different layers tls tls and java certificates keystores cipher suites