Explore the latest developments in TLS 1.3 in this 52-minute conference talk from APPSEC Cali 2018. Delve into notable attacks against previous TLS versions and their relevance to TLS 1.3, highlighting key security-related design decisions that mitigate these threats. Learn about new protocol handshakes, including 0-RTT resumption, and gain insights into potential deployment pitfalls and how to avoid them. Presented by Alex Balducci, a Principal Security Consultant at NCC Group's Cryptography Services, this talk covers topics such as ciphersuite choices, GCM mode, TLS 1.3 nonces, key exchange modes, handshake processes, resumption mechanisms, and forward secrecy. Gain valuable knowledge about the evolution of TLS and its implications for application security.
Overview
Syllabus
Intro
nccgroup
Security Properties We Want
Ciphersuite Choices
GCM Mode
TLS 1.3 Nonces
TLS 1.3 Ciphersuites
Key Exchange Modes?
TLS 1.2 DHE
TLS 1.3 Handshake
TLS 1.3 Resumption
Key Schedule: Resumption
Resumption Takeaways
Key Schedule: ORTT
Forward Secrecy
ORTT Takeaways
Summing It Up
Questions?
Taught by
OWASP Foundation
Related Courses
-
TLS 1.3 Cipher Suites - Key Changes and Improvements
-
TLSv1.3 - Minor Version, Major Changes
-
Automated Analysis and Verification of TLS 1.3 - 0-RTT, Resumption and Delayed Authentication
-
TLS 1.3 Handshake - Major Changes from Prior Versions
-
Everything Related to Transport Layer Security - TLS
-
SSL-TLS and Why It Keeps Your Lake Empty - Andy Shepherd, Symantec
