TLS 1.1 Security fixes and TLS extensions RFC4346

Transcription

1

2 F5 Networks, Inc 2

3

4 SSL1 and SSL2 Created by Netscape and contained significant flaws SSL3 Created by Netscape to address SSL2 flaws TLS 1.0 Standardized SSL3 with almost no changes RFC2246 TLS 1.1 Security fixes and TLS extensions RFC4346 TLS 1.2 Added support for authenticated encryption (AES-GCM, CCM modes) and removed hard-coded primitives RFC Crap hits the fan First set of public SSL exploits F5 Networks, Inc 4

5 Hubs Switches Routers Proxies + (Traditional) Load balancers Most firewalls SSL/TLS HTTP Physical Data Link Network Transport Session Presentation Application

6 HTTP HEADERS SSL TCP IP Browsers Request HTTP PAYLOAD Wire

7 August 2009 Insecure renegotiation vulnerability exposes all SSL stacks to DoS attack RFC 5746 TLS extension for secure renegotiation quickly mainstreamed BEAST & CRIME Client-side or MITB attacks leveraging a chosen-plaintext flaw in TLS 1.0 and TLS compression flaws Lucky 13 Another timing attack RC4 Attacks Weakness in CBC cipher making plaintext guessing possible TIME A refinement and variation of CRIME Heartbleed The end of the Internet as we know it! August 2009 February 2010 September 2011 February 2013 March 2013 March 2013 April 2014 POODLE Padding oracle attack on SSLv3 Dire POODLE Padding oracle attack on TLS FREAK Implementation attack on export ciphers LogJam Implementation attack on weak DH

8

9

10

11

12 F5 Networks, Inc 12

13

14

15 Malware uses encrypted channels to evade detection Visibility is reduced due to the growth of SSL usage Performance for decryption is a significant undertaking Enabling SSL on a firewall or an IPS can reduce the overall performance of the appliance, often by more than 80%

16 F5 Solution Encrypt by default Performance and scale Best-in-class cryptography Integrated partner solutions Protect in data center, cloud, and hybrid environments User Eavesdropper WiFi End-to-end encrypted F5 Networks, Inc 16

17

18

19

20 AND If the server s key is ever compromised, all previous messages can be decrypted

21 Client Common color prime p and base g Server a Secret colors b A = g a mod p The server s key is only used for authentication If the shared secret is changed for every session, it s considered ephemeral (DHE). Compromise of the server s private key will not allow decryption of previous messages B = g b mod p Secret colors s = B a mod p s = A b mod p s Shared secret s F5 Networks, Inc 21

22

23 Onboard HSM Always Removed SSLv3 from DEFAULT TLS SHA RFC5726 Secure Renegotiation Network HSM DSA Added DHE to DEFAULT Removed RC4 from DEFAULT Re-added DHE-RSA/DHE-DSS with DTLS Added! vs for SSLv3 in DEFAULT Moved ADH from COMPAT to NATIVE ECDH and ECDHE Perfect Forward Secrecy ECDSA AES-GCM ECC TLS_FALLBACK_SCSV HF HF

24 F5 Networks, Inc 24

25 NATIVE Supported by TMM codec and TLS stack Contains cipher suites optimized for the BIG-IP Faster than the COMPAT stack However not all ciphers are hardware accelerated DEFAULT Subset of NATIVE ciphers restricted by rules!low:!sslv3:!md5:!rc4-sha:!export:dhe+aes- GCM:DHE+AES:DHE+3DES:AES- GCM+RSA:RSA+AES:RSA+3DES:ECDHE+AES- GCM:ECDHE+AES:ECDHE-RSA-DES-CBC3-SHA COMPAT Supported by TMM s codec and OpenSSL stack ALL Effectively the same as NATIVE Supports all of the NATIVE ciphers And supports ciphers from the OpenSSL suite Slower than the NATIVE stack and requires more memory Makes minimal use of hardware acceleration

26 F5 Networks, Inc 26

27 F5 Networks, Inc 27

28

29 F5 Networks, Inc 29

30 F5 Networks, Inc 30

31

32 F5 Networks, Inc 32

33 F5 Networks, Inc 33

34 F5 Networks, Inc 34

35

36 Secure Vault Internal HSM Network HSM Cloud HSM Software based encrypted storage system for securing cryptographic keys with the highest performance Physical hardware designed to generate, store, and protect keys with high performance Integration with leading network based hardware for use with all appliances, chassis, and Virtual Editions Integration for highassurance encryption services fit for the cloud. Enterprise Key and Certificate Management Open APIs to automate management for the digital certificate and encryption key technologies used by today s enterprises

37 LTM and GTM/DNSSEC PARTNERSHIPS HTTPS DNS Servers Network HSM FIPS140-2 VIPRION, Virtual Edition, and all BIG-IP appliances with Thales nshield Connect HSM, and SafeNet Luna HSM Clients FIPS Level 2/3 for All Platforms with Network HSM Server Cert Cert Mgmt Automated Enterprise Key and Certificate Management (EK/ EKCM) Venafi and Symantec automate key and certificate management via icontrol Network HSM Cert Mgmt EKCM Protect keys from eavesdropping or modification Supports traditional, virtualized and cloud deployments Key management minimizes operational costs and risk

38

39 Inbound Outbound www Hosting Internet Datacenter Corporate (servers) (users) Characteristics Deployment Models Characteristics Deployment Model Inbound SSL Offload and Acceleration Provide visibility for traffic management Internet-facing Front-end to control and protect access to a server SSL Offload SSL Transformation Proxy SSL (Split) Outbound Control user activity Sanitize traffic Takes requests from an internal network and forwards them to the Internet or Cloud App SSL Forward Proxy

40

41

42

43 Web Application Firewall NG-IPS DMZ Passive Monitor, IDS, Customer Experience Solutions Remote Users User Internet Network Firewall SSL Termination and Inspection + Cipher Agility + SSL Transformation + Intelligent Traffic Management + SSL Re-Encryption Network Firewall Web/Application Servers BIG-IP Platform Customer Scenarios Data Protection Visibility and Control Key Management HSM SSL Crypto-Offload + SSL Termination and Inspection + SSL Re-Encryption + SSL Transformation BIG-IP Local Traffic Manager Simplified Business Models F5 Networks, Inc BIG-IP Platform 43

44 Maximize investment in security devices Scale SSL across hybrid environments Enforce SSL policy on both in and outbound traffic Protect Keys for regulatory compliance Lowest TCO and quickest ROI ALL BACKED BY WORLD-CLASS SUPPORT AND PROFESSIONAL SERVICES

45