Explore the intricacies of building real-world cryptographic systems for secure communication in this comprehensive conference talk from BruCON 0x09. Delve into the theory and practice of secure channels, examining key concepts such as authenticated key establishment protocols, key derivation phases, and data protection using derived keys. Gain insights into essential properties of secure channels, including data confidentiality, integrity, and message authenticity. Analyze famous security bugs in TLS and SSH, understanding their origins through the "cryptographic doom principle" and proposed solutions. Investigate recent efforts in implementing secure channels, focusing on SSH and TLS 1.3 improvements. Learn the fundamental components of cryptographic secure channels and the typical constructions involved in creating robust, secure communication systems.
Overview
Syllabus
BruCON 0x09 - Secure channels: Building real world crypto systems - Sander Demeester
Taught by
BruCON Security Conference