CERT: Warning from HTTPS inspection

the US-CERT warns that all systems are potentially unsafe after an interruption in HTTPS, TLS encryption can be weakened. That refers to interruption of HTTPS, as, for example, often the case by antivirus software, to detect malware.

 encryption (image: Shutterstock)

even if HTTPS inspection can be useful, it requires a balancing of the associated risks, such as before a stated blog at Carnegie Mellon University. Not infrequently it happens therefore that security products only provide for new attack vectors through a faulty implementation.

“HTTPS inspection is due to interruption of the HTTPS network traffic and a man-in-the-middle attack on the connection,” explains the CERT. To carry them out, administrators need to install trusted certificates on the client devices. As a result but, a client system can no longer independently validate an HTTPS connection, but only the connection between yourself and the product, interrupts the HTTPS. Clients must leave so on HTTPS inspection through each product that has imposed himself in the connection.

from the recently published study the security impact of HTTPS interception (PDF) but stating that many HTTPS inspection products not properly verify the certificate chain of the server before they again encrypt and transfer the data to clients – what could allow MITM attack still other a . Moreover, passed notes on verification issues in the certificate chain is not always to the client, which then might incorrectly assumes that a proper connection to the correct server.

in general the CERT recommends organisations, the HTTPS inspection into account, to make a careful consideration of the advantages and disadvantages of such products before. To determine whether a pause product properly validated certificates and prevents connections to sites using weak encryption, the website could are Badssl.com . It provides a series of tests for in-depth review. DISPLAY

wireless networking: free ride for vehicles of the next generation of

has become the networking of vehicles over the last 20 years to a medium for general safety messages and traffic management. But nowadays cars are equipped with new sensors to achieve even better networked and safer driving.

Be the first to comment

Leave a Reply