Login | Register

Short Paper: TLS Ecosystems in Networked Devices vs. Web Servers


Short Paper: TLS Ecosystems in Networked Devices vs. Web Servers

Samarasinghe, Nayanamana and Mannan, Mohammad (2017) Short Paper: TLS Ecosystems in Networked Devices vs. Web Servers. In: Financial Cryptography and Data Security (FC 2017), April 3-7, 2017, Malta. (In Press)

Text (Extended version of an FC2017 paper: Version March 17, 2017) (application/pdf)
tech-fc17.pdf - Accepted Version
Available under License Spectrum Terms of Access.


Recently, high-speed IPv4 scanners, such as ZMap, have enabled rapid and timely collection of TLS certificates and other security-sensitive parameters. Such large datasets led to the development of the Censys search interface, facilitating comprehensive analysis of TLS deployments in the wild. Several recent studies analyzed TLS certificates as deployed in web servers. Beyond public web servers, TLS is deployed in many other Internet-connected devices, at home and enterprise environments, and at network backbones. In this paper, we report the results of a preliminary analysis using Censys on TLS deployments in such devices (e.g., routers, modems, NAS, printers, SCADA, and IoT devices in general). We compare certificates and TLS connection parameters from a security perspective, as found in common devices with Alexa 1M sites. Our results highlight significant weaknesses, and may serve as a catalyst to improve TLS security for these devices.

Divisions:Concordia University > Gina Cody School of Engineering and Computer Science > Concordia Institute for Information Systems Engineering
Item Type:Conference or Workshop Item (Paper)
Authors:Samarasinghe, Nayanamana and Mannan, Mohammad
Date:3 April 2017
ID Code:982186
Deposited On:13 Feb 2017 14:44
Last Modified:18 Jan 2018 17:54
All items in Spectrum are protected by copyright, with all rights reserved. The use of items is governed by Spectrum's terms of access.

Repository Staff Only: item control page

Downloads per month over past year

Back to top Back to top