Browser Exploit Against SSL/TLS (BEAST)
The BEAST attack can easily compromise block cipher due to reason that using older versions of Secure Socket Layer protocol or Transport Layer Security protocol. Hackers can target intimate information by using a Man-in-the-middle attack in which the attacker can intercept data. Moreover, they may retrieve private information by making such an attack.
Solution
Enable the latest Transport Layer Security on servers and web browsers but make sure that the servers and web browsers should support TLS. If TLS does not work then all the block cipher should be disabled in the configuration of SSL on the server.
Browser Reconnaissance and Exfiltration via Adaptive Compression of Hypertext (BREACH)
Servers can be attacked effortlessly by using a BREACH attack. The reason behind this attack is when a particular web page is being requested then most of the web pages are compressed before sending to the destination. The web pages are compressed to improve and intensify the bandwidth speed which helps to reply rapidly to the request without any delay. The browser decompresses the web page before displaying on the screen. This attack intervene in the compression process of HTTP to extract the intimate information or data from secured or protected websites. One example is that email addresses in a file using the HTTP-level compression will be detected.
Solution
The web pages should not be compressed from where any specific individual can be identified. The browser should not allow and provoke web page compression service. Use Transport Layer Security (TLS) with Australian Encryption Standard (AES) cryptography which helps to secure the web-based applications.
Heartbleed Bug
The Heartbleed bug shows the vulnerability in the OpenSSL which is a toolkit that contrivances security layer protocols such as Transport Layer Security (TLS) and Secure Socket Layer (SSL). This toolkit contains the cryptographic libraries which engage encrypted methods or functions and delivers the dissimilar efficacy methods. These cryptographic libraries are used to secure the traffic on the internet and are contrivance by the servers. These OpenSSL cryptographic libraries are vulnerable to Heartbleed bug and an attacker can target the intimate information by gaining access to user credentials and encrypted keys.
Solution
There are some solutions to this problem like resetting the passwords but the first thing is to patch software then certificates should be reissued and reinstalled to make that server is not vulnerable to Heartbleed Bug. In other words, we should always make our software up to date.
Unprotected Transport Layer Security (TLS) re-negotiation
The security protocols like SSL and TSL have an attribute of session renegotiation which allows both client and server to refresh their connection by creating or declaring new keys and parameters. The feature of session renegotiation is not correlated with a channel which shows the vulnerability to cyber criminals and an attacker can use the MITM attack to hack the intimate data. This attack will commence the renegotiation between the server and the attacker without knowing the client or user.
Solution
To avoid this attack, SSL and TSL protocols with the latest versions should be used on the servers because it is unfeasible for browsers to observe that server is running outdated protocols and renegotiation can be incapacitated by client or user. Or we could simply disable renegotiations.
Weak cipher suites
There are some algorithms which are used to secure the network and such algorithms are called cipher suite. A cipher suite merges or integrates message authentication code, encryption and authentication to initiate the secure connection of network which is used by security protocols. The different cipher suites impose or specify a set of algorithms which contains the steps of key interchanging, encrypting and Pseudorandom Function.
Solution
Use security protocols of latest versions such as Transport Layer Security v1.1 or v1.2 for both web browsers and servers. Avoid using the older versions of security protocols which can make the system vulnerable. Or we could simply disable cipher suites functions.
Need help with SSL endpoint vulnerabilities?
Written by Julio Del Cid from DelCorp Data. Julio Del Cid can help with SSL endpoint vulnerabilities. If you need assistance you can visit our contact page and request a call-back about SSL endpoint vulnerabilities.
DelCorp Data is a cybersecurity agency which specializes in software-based attacks and overall cyber protection of your organization. Contact us on 1300 del corp / 1300335267. We are an Australian company based in Melbourne.