Journal of physics. Conference series, 2018-03, Vol.978 (1), p.12121
2018
Volltextzugriff (PDF)
Details
- Autor(en) / Beteiligte
- Titel
- SSL/TLS Vulnerability Detection Using Black Box Approach
- Ist Teil von
- Journal of physics. Conference series, 2018-03, Vol.978 (1), p.12121
- Ort / Verlag
- Bristol: IOP Publishing
- Erscheinungsjahr
- 2018
- Quelle
- EZB Free E-Journals
- Beschreibungen/Notizen
- Socket Secure Layer (SSL) and Transport Layer Security (TLS) are cryptographic protocols that provide data encryption to secure the communication over a network. However, in some cases, there are vulnerability found in the implementation of SSL/TLS because of weak cipher key, certificate validation error or session handling error. One of the most vulnerable SSL/TLS bugs is heartbleed. As the security is essential in data communication, this research aims to build a scanner that detect the SSL/TLS vulnerability by using black box approach. This research will focus on heartbleed case. In addition, this research also gathers information about existing SSL in the server. The black box approach is used to test the output of a system without knowing the process inside the system itself. For testing purpose, this research scanned websites and found that some of the websites still have SSL/TLS vulnerability. Thus, the black box approach can be used to detect the vulnerability without considering the source code and the process inside the application.
- Sprache
- Englisch
- Identifikatoren
- ISSN: 1742-6588eISSN: 1742-6596DOI: 10.1088/1742-6596/978/1/012121Titel-ID: cdi_proquest_journals_2572081466
- Format
- –
- Schlagworte
- Algorithms, Cryptography, Cybersecurity, Data communication, Data encryption, Encryption, Physics, Source code, Websites