Loading...

[AWACS 2016] TLS - Eric Rescorla

300 views

Loading...

Loading...

Transcript

The interactive transcript could not be loaded.

Loading...

Loading...

Rating is available when the video has been rented.
This feature is not available right now. Please try again later.
Published on May 30, 2016

Transport Layer Security (TLS) is used for securing everything from Web transactions (HTTPS) to voice and video calls (DTLS-SRTP). However, the basic design of TLS dates back to the mid 1990s and the protocol is starting to show its age: TLS contains a number of features which no longer seem desirable and recent analytic work has discovered a number of protocol vulnerabilities (Triple Handshake, Logjam, etc.). In addition, as cryptographic algorithms have gotten faster, handshake latency has become a higher priority and TLS's current handshake does not reflect the state of the art.
In order to address these issues, the IETF TLS Working Group is currently developing a major revision of TLS, dubbed "TLS 1.3". TLS 1.3 has four major objectives: - Clean up: Remove unused or unsafe features - Security: Improve security by using modern security analysis techniques - Privacy: Encrypt more of the protocol - Performance: Our target is a 1-RTT handshake for naive clients; 0-RTT handshake for repeat connections - Continuity: Maintain existing important use cases
In this talk, we will cover the TLS 1.3 protocol and its design process, which has involved an unprecedented amount of collaboration between academia and the standards/implementation communities.

Loading...

to add this to Watch Later

Add to

Loading playlists...