Large Scale Scanning of TLS Session Ticket Confusion / Tim Storm ; Supervisors: Prof. Dr.-Ing. Juraj Somorovsky, Prof. Dr. Eric Bodden, Sven Hebrok M.Sc.

Bibliographic Metadata

Title
Large Scale Scanning of TLS Session Ticket Confusion / Tim Storm ; Supervisors: Prof. Dr.-Ing. Juraj Somorovsky, Prof. Dr. Eric Bodden, Sven Hebrok M.Sc.
Author
Storm, Tim
Participants
Somorovsky, Juraj ; Bodden, Eric
Published
Paderborn, 2023
Description
1 Online-Ressource (viii, 37 Seiten) : Diagramme
Institutional Note
Universität Paderborn, Bachelorarbeit, 2023
Annotation
Tag der Abgabe: 14.05.2023
Date of Submission
14/05/2023
Language
English
Document Types
Bachelor Thesis
URN
urn:nbn:de:hbz:466:2-45325
DOI
10.17619/UNIPB/1-1770

Links

Files

Classification

Zusammenfassung

Session tickets are a resumption mechanism, which can speed up repeated TLS connections. To do so, information is stored client-side, encrypted with an additional symmetric key, which is separate from existing private keys. A server only has to store this key, making session tickets stateless for the server. If the key is shared between servers, a client can be misled into resuming a session with a different, less secure server. In this thesis, we design and implement a scan for detecting prerequisites to such an attack, by requesting and redeeming tickets for pair-wise servers. We find that 17,901 out of 22,127 scanned (virtual) hosts are potentially vulnerable to this attack because they share their keys and accept tickets issued for other domains. We discuss the difficulties of detecting such an attack and show that unfortunately, our approach does not scale to larger sample sizes.

Content

Stats

License/Rightsstatement