1

WELCOME TO REVIEW PPT -

SSL/TLS ATTACKS,TLS V1.3

Submitted by: Submitted to:

Monisha Deekshith Y S Mrs. Madhushree B

Shwetha R
SSL/TLS ATTACKS,
TLS V1.3
 3

AGENDA
• Introduction to SSL/TLS attacks
• Types of SSL/TLS Attacks
• Mitigations and Best Practices
• Introduction to TLS v1.3
• Key Features of TLS v1.3
• Benefits of TLS v1.3
• Adoption and Implementation considerations
for TLS v1.3
 4

SSL/TLS ATTACKS
SSL/TLS (Secure Sockets Layer / Transport Layer Security) are protocols
designed to provide secure communication over a computer network.
Despite their importance in ensuring data confidentiality and integrity,
several attacks have been developed over the years that exploit
vulnerabilities in these protocols.
SSL (Secure Sockets Layer) and TLS (Transport Layer Security) are
cryptographic protocols designed to provide secure communication over a
computer network. However, despite their robust design, they are not
immune to attacks.
TYPES OF SSL/TLS
ATTACKS

Here are of some common

SSL/TLS attacks in network
security:
 6

1.Man-in-the-Middle (MitM) Attacks

• SSL Stripping
• DNS Spoofing

2.Protocol Downgrade Attacks

• POODLE (Padding Oracle On Downgraded Legacy Encryption)

3.Cipher Suite and Protocol Vulnerabilities

• BEAST (Browser Exploit Against SSL/TLS)
• CRIME (Compression Ratio Info-leak Made Easy)
• Heartbleed
4.Certificate-based Attacks
• Certificate Forgery
• Intermediate Certificate
Compromise
• Certificate Pinning Bypass

5.Side-Channel Attacks
• Timing Attacks
• Cache Attacks
 8

MITIGATIONS AND BEST

PRACTICES
To defend against SSL/TLS attacks, several best practices
and mitigation strategies should be employed:

• Use the Latest Protocols and Ciphers

• Disable Insecure Protocols
• Implement HSTS (HTTP Strict Transport Security)
• Regular Certificate Audits
• Certificate Pinning
• Apply Patches and Updates
 9

TLS V1.3

TLS (Transport Layer Security) 1.3 is the

latest version of the cryptographic protocol
designed to secure communication over
networks. Released in 2018, TLS 1.3
represents a significant advancement in
network security, offering improved
performance, stronger encryption, and
enhanced privacy features compared to its
predecessors.
 10

KEY FEATURES OF TLS V1.3

• Enhanced Security
• Improved Performance and Reduced
Latency
Improved privacy
 11

Benefits of TLS v1.3

• Stronger Encryption and Integrity

• Resilience Against Attacks
• Streamlined Protocol and Easier
Implementation
• Faster, More Efficient Secure
Connections
 ADOPTION AND IMPLEMENTATION 12

CONSIDERATIONS FOR TLS V1.3

Compatibility:
While TLS 1.3 is designed to be backwards compatible, some legacy systems and older
browsers might not support it. It's essential to maintain a fallback to TLS 1.2 for
compatibility purposes.

Configuration:
Proper configuration of TLS 1.3 is crucial to leverage its security benefits. This includes
enabling forward-secret cipher suites and disabling any deprecated features that might
still be supported for backward compatibility.

Ongoing Updates:
Network administrators and security professionals need to stay updated with the latest
patches and updates for TLS implementations to ensure they address any new
vulnerabilities or security concerns that arise.
 13

CONCLUSION

SSL/TLS attacks highlight the ongoing cat-and-mouse game between attackers

and defenders in the realm of network security. While SSL and TLS provide
essential security functions, they must be implemented correctly and updated
regularly to mitigate vulnerabilities. By understanding these common attacks
and employing best practices, organizations can significantly enhance their
defenses against threats to their secure communications.

Overall, TLS v1.3 represents a significant advancement in network security,

providing improved performance, enhanced security features, and resistance
against various attacks. Its widespread adoption is crucial for maintaining the
integrity and confidentiality of online communication.
THANK YOU