Overview
Explore a 21-minute IEEE conference talk examining the multiple handshakes security of TLS 1.3 candidates. Delve into the first formal treatment of multiple handshakes protocols for next-generation TLS, presented at the 2016 IEEE Symposium on Security & Privacy. Learn about the multi-level & stage security model introduced to cover compositional interactions between different TLS handshake modes. Discover how the research proves that TLS 1.3 draft handshake candidates meet strong multiple handshakes security notions, confirming the soundness of TLS 1.3 security protection design. Gain insights into the analysis of compositional design with different session modes and their multiple session dependencies. Understand the identification of the triple handshake attack on TLS 1.2 within the presented security model, and examine the effectiveness of proposed fixes in RFC 7627 for protecting against multiple handshakes attacks in TLS 1.2.
Syllabus
Multiple Handshakes Security of TLS 1.3 Candidates
Taught by
IEEE Symposium on Security and Privacy