OCSP Stapling. Let the web server protect the users! SWITCHpki Team Bern, SWITCH 1

Similar documents
Legacy of Heartbleed: MITM and Revoked Certificates. Alexey Busygin NeoBIT

ICS 351: Today's plan. HTTPS: SSL and TLS certificates cookies DNS reminder Simple Network Management Protocol

ICS 351: Today's plan. web scripting languages HTTPS: SSL and TLS certificates cookies DNS reminder

ATS Test Documentation

How can we provide the devices with valid certificates?

Is the Web Ready for OCSP Must-Staple?

ICS 351: Today's plan. web scripting languages HTTPS: SSL and TLS certificates cookies DNS reminder

POA Bridge. Security Assessment. Cris Neckar SECUREWARE.IO

Copyright

Understanding HTTPS CRL and OCSP

Certificate Properties File Realm

But where'd that extra "s" come from, and what does it mean?

Amadeus Selling Platform Connect

RSA Validation Solution

Load Balancing VMware Workspace Portal/Identity Manager

Category: Standards Track January 1999

How to Configure SSL Interception in the Firewall

Check Point Connectra Citrix Troubleshooting (4th Edition) October 10, 2005

April 24, 1998 Expires in six months. SMTP Service Extension for Secure SMTP over TLS. Status of this memo

Uniform Resource Locators (URL)

ICS 351: Today's plan. IPv6 routing protocols (summary) HTML HTTP web scripting languages certificates (review) cookies

Cloud FastPath: Highly Secure Data Transfer

SSL Report: bourdiol.xyz ( )

Cryptography (Overview)

SSL Report: sharplesgroup.com ( )

An Apple Subsidiary. This software addresses an issue where the OpenSSL library used by FileMaker Server 13.0v1 was vulnerable to the Heartbleed bug.

How to Configure SSL Interception in the Firewall

How to Render SSL Useless. Render SSL Useless. By Ivan Ristic 1 / 27

Enterprise Overview. Benefits and features of Cloudflare s Enterprise plan FLARE

DreamFactory Customer Privacy and Security Whitepaper Delivering Secure Applications on Salesforce.com

CNIT 129S: Securing Web Applications. Ch 3: Web Application Technologies

Caching. Caching Overview

PROVING WHO YOU ARE TLS & THE PKI

Web Browser Application Troubleshooting Guide. Table of Contents

Certificate implementation The good, the bad, and the ugly

Practical Issues with TLS Client Certificate Authentication

Denial of Service. Eduardo Cardoso Abreu - Federico Matteo Bencic - Pavel Alexeenko -

Scan Report Executive Summary. Part 2. Component Compliance Summary IP Address :

Storage Systems Storage Systems Copyright 2018 Stone Computers Ltd. All Rights Reserved. 2

Attestation Service for Intel Software Guard Extensions (Intel SGX): API Documentation. Revision: 3.0

SSL/TLS and Why the CA System is Broken

Contents. SSL-Based Services: HTTPS and FTPS 2. Generating A Certificate 2. Creating A Self-Signed Certificate 3. Obtaining A Signed Certificate 4

SONERA OPERATOR SERVICE PLATFORM OPAALI PORTAL SMS. FREQUENTLY ASKED QUESTIONS, version 2.0

Class Climate v6.0 Upgrade Guide The minimum version of Class Climate required before installing 6.0 is version 5.1 (Build 1950) or later.

Scan Report Executive Summary. Part 2. Component Compliance Summary Component (IP Address, domain, etc.):

CNIT 121: Computer Forensics. 9 Network Evidence

Configuring Secure Socket Layer HTTP

Troubleshooting. Participants List Displays Multiple Entries for the Same User

Configuring Secure Socket Layer HTTP

Browser Trust Models: Past, Present and Future

Configuring Secure Socket Layer HTTP

Scan Report Executive Summary. Part 2. Component Compliance Summary Component (IP Address, domain, etc.):ekk.worldtravelink.com

CERN Certification Authority

Exposing The Misuse of The Foundation of Online Security

Chapter 8. User Authentication

October 4, 2000 Expires in six months. SMTP Service Extension for Secure SMTP over TLS. Status of this Memo

* Bug fix 1 only affects AnywhereUSB/14 and AnywhereUSB/5m which support Dynamic Group Assignment.

Secure web proxy resistant to probing attacks

Configuring F5 for SSL Intercept

Breaking SSL Why leave to others what you can do yourself?

Remote Support Appliance Interface (/appliance)

Blue Coat ProxySG First Steps Solution for Controlling HTTPS SGOS 6.7

Internet Engineering Task Force (IETF) Request for Comments: 6961 June 2013 Category: Standards Track ISSN:

Configuring the Cisco APIC-EM Settings

How to Configure Guest Access with the Ticketing System

IERG Term 2 Tutorial 9

Validating Recipients Using an SMTP Server

The Evolving Architecture of the Web. Nick Sullivan

Security+ SY0-501 Study Guide Table of Contents

WHITE PAPER Cloud FastPath: A Highly Secure Data Transfer Solution

Configuring SSL. SSL Overview CHAPTER

User Communication Citrix SecureAuth

Alliance Key Manager A Solution Brief for Technical Implementers

Lessons from the Human Immune System Gavin Hill, Director Threat Intelligence

CONFIGURATION MANUAL. English version

Comodo cwatch Web Security Software Version 1.6

DANE, why we need it. Daniel Stirnimann Bern, 29. March SWITCH 1

Managing SSL/TLS Traffic Flows

HTTPS is Fast and Hassle-free with Cloudflare

Secure Communication in Client-Server Android Apps

Troubleshooting. Participants List Displays Multiple Entries for the Same User

BraindumpsVCE. Best vce braindumps-exam vce pdf free download

Release Notes for Epilog for Windows Release Notes for Epilog for Windows v1.7

Salesforce1 Mobile Security White Paper. Revised: April 2014

Security Fundamentals

Securing Internet Communication: TLS

Validation Policy r tra is g e R ANF AC MALTA, LTD

The Savage Curtain: Mobile SSL Failures

DANE Best Current Practice

SSL Report: printware.co.uk ( )

Blue Coat Security First Steps Solution for Controlling HTTPS

How to Set Up VPN Certificates

Configuring Internet Explorer for CareLogic

TxEIS System Requirements

Managing Certificates

Implementing Secure Socket Layer

Configuring SSL CHAPTER

DFARS Requirements for Defense Contractors Must Be Satisfied by DECEMBER 31, 2017

A Free, Automated, and Open Certificate Authority. Josh Aas Co-Founder, Executive Director

Comodo Certificate Manager

Transcription:

Stapling Let the web server protect the users! SWITCHpki Team pki@switch.ch Bern, 29.03.2017 2017 SWITCH 1

Rejecting Revoked Certificates Web browsers should check whether a web server's SSL certificate has been revoked, e.g. because of a stolen private key. Such an event is rare, actually. But checking the validity of the certificate is still crucial. Web browsers should protect users from accessing sites presenting revoked certificates. https://... TLS 2017 SWITCH 2

(Online Certificate Status Protocol) allows to instantly check a certificate's status. Certification Authorities, like QuoVadis for SWITCHpki, run responders allowing clients to query the status of certificates issued by these CAs. queries are usually run by web browsers or web servers. Web Browser CA Web Server Responders 2017 SWITCH 3

Query by Web Browser While connecting to a secure web site and setting up the TLS connection, the web browser checks the certificate's status by querying the CA's responders. Web Browser https://... 1 TLS 2 3 Web Server Responders 2017 SWITCH 4 CA

Query by Web Browser Security Problems: Most browsers just ignore temporary technical problems and establish the TLS connection without knowing the exact status of the certificate. An attacker might exploit this in a WLAN. (Latest IEs and Edge block access to the web site in this case.) Mobile clients don't do queries at all to save bandwith. Users are not protected at all. 2017 SWITCH 5

Query by Web Browser Data Privacy Problems: Clients connect to the CAs' servers for most TLS connections CAs can see which web sites users visit (but limited to web sites using certificates of the same CA). 2017 SWITCH 6

Stapling The query is done by the web server. Web Browser Web Server https://... 1 2 TLS + Request certificate status Status Cache On request or in advance Responders 2017 SWITCH 7

Stapling The web client can request the certificate's status from the web server by an extension of the TLS protocol. The web server either fetches the (still valid) certificate status from its local cache or queries the responders. The web server returns the certificate status back to the client as part of the setup of the TLS connection. Stapling is usually well supported by desktop web browsers. On newer mobile devices, Stapling should be supported, too. 2017 SWITCH 8

Advantages of Stapling Eliminates existing security and data privacy problems. Makes HTTPS faster. Safes bandwidth at the client side. Good for mobile clients. Is mostly prone to short technical problems (e.g. local or remote network problems, short DNS problems, etc.) The web server's configuration specifies whether to ignore the problem and send nothing to the browser or send a "retry-later" status to the browser. Recommended default is to ignore errors to avoid locked out users (Attackers can't easily exploit such situations at the server side). System administrator of the web server can partially control the behavior of the web browser regarding and error handling. 2017 SWITCH 9

Configuration on Web Server Apache: Available since Apache 2.4 Disabled by default, must be enabled in the configuration. IIS on Windows: Stapling is enabled by default (since Windows Server 2008) Others: See the corresponding documentation of your server software. 2017 SWITCH 10

Enabling in Apache Recommended configuration: Global configuration: SSLStaplingCache shmcb:/run/httpd/ssl_stapling(32768) (Example valid for Red Hat) Global configuration or per virtual host: SSLUseStapling on # Prevent browsers from blocking access if # an query is temporarily not possible. SSLStaplingReturnResponderErrors off SSLStaplingErrorCacheTimeout 60 SSLStaplingFakeTryLater off 2017 SWITCH 11

Enabling in Apache Details are available on our website: https://www.switch.ch/pki/manage/config-apache/#ocsp_stapling Note: SWITCH provides this configuration on best effort. Please carefully check whether this configuration suits your needs. 2017 SWITCH 12

Verifying Stapling The Certificate Chain Test allows you to check whether Stapling is enabled and working on your server: https://www.switch.ch/pki/manage/certificate-chain-test/ The option "Advanced mode" needs to be enabled. 2017 SWITCH 13

Verifying Stapling Stapling is enabled and working: Stapling is not enabled or not configured properly: 2017 SWITCH 14

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback