Samarasinghe, Nayanamana and Mannan, Mohammad (2017) Short Paper: TLS Ecosystems in Networked Devices vs. Web Servers. In: Financial Cryptography and Data Security (FC 2017), April 3-7, 2017, Malta. (In Press)
Preview |
Text (Extended version of an FC2017 paper: Version March 17, 2017) (application/pdf)
752kBtech-fc17.pdf - Accepted Version Available under License Spectrum Terms of Access. |
Abstract
Recently, high-speed IPv4 scanners, such as ZMap, have enabled rapid and timely collection of TLS certificates and other security-sensitive parameters. Such large datasets led to the development of the Censys search interface, facilitating comprehensive analysis of TLS deployments in the wild. Several recent studies analyzed TLS certificates as deployed in web servers. Beyond public web servers, TLS is deployed in many other Internet-connected devices, at home and enterprise environments, and at network backbones. In this paper, we report the results of a preliminary analysis using Censys on TLS deployments in such devices (e.g., routers, modems, NAS, printers, SCADA, and IoT devices in general). We compare certificates and TLS connection parameters from a security perspective, as found in common devices with Alexa 1M sites. Our results highlight significant weaknesses, and may serve as a catalyst to improve TLS security for these devices.
| Divisions: | Concordia University > Gina Cody School of Engineering and Computer Science > Concordia Institute for Information Systems Engineering |
|---|---|
| Item Type: | Conference or Workshop Item (Paper) |
| Refereed: | Yes |
| Authors: | Samarasinghe, Nayanamana and Mannan, Mohammad |
| Date: | 3 April 2017 |
| ID Code: | 982186 |
| Deposited By: | Mohammad Mannan |
| Deposited On: | 13 Feb 2017 14:44 |
| Last Modified: | 18 Jan 2018 17:54 |
Repository Staff Only: item control page
Download Statistics
Download Statistics