Publications

Detailed Information

Analyzing Spatial Differences in the TLS Security of Delegated Web Services

Cited 0 time in Web of Science Cited 2 time in Scopus
Authors

Lee, Joonhee; Lee, Hyunwoo; Jeong, Jongheon; Kim, Doowon; Kwon, Taekyoung

Issue Date
2021-05
Publisher
Association for Computing Machinery, Inc
Citation
ASIA CCS 2021 - Proceedings of the 2021 ACM Asia Conference on Computer and Communications Security, pp.475-487
Abstract
© 2021 ACM.To provide secure content delivery, Transport Layer Security (TLS) has become a de facto standard over a couple of decades. However, TLS has a long history of security weaknesses and drawbacks. Thus, the security of TLS has been enhanced by addressing security problems through continuous version upgrades. Meanwhile, to provide fast content delivery globally, websites (or origin web servers) need to deploy and administer many machines in globally distributed environments. They often delegate the management of machines to web hosting services or content delivery networks (CDNs), where the security configurations of distributed servers may vary spatially depending on the managing entities or locations. Based on these spatial differences in TLS security, we find that the security level of TLS connections (and their web services) can be lowered. After collecting the information of (web) domains that exhibit different TLS versions and cryptographic options depending on clients' locations, we show that it is possible to redirect TLS handshake messages to weak TLS servers, which both the origin server and the client may not be aware of. We investigate 7M domains with these spatial differences of security levels in the wild and conduct the analyses to better understand the root causes of this phenomenon. We also measure redirection delays at various locations in the world to see whether there are noticeable delays in redirections.
URI
https://hdl.handle.net/10371/183746
DOI
https://doi.org/10.1145/3433210.3453107
Files in This Item:
There are no files associated with this item.
Appears in Collections:

Altmetrics

Item View & Download Count

  • mendeley

Items in S-Space are protected by copyright, with all rights reserved, unless otherwise indicated.

Share