Lessons Learned from Previous SSL/TLS Attacks A Brief Chronology of Attacks and Weaknesses

Provided by: Ruhr-Universitat Bochum
Topic: Security
Format: PDF
Since its introduction in 1994 the Secure Socket Layer (SSL) protocol (later renamed to Transport Layer Security (TLS)) evolved to the de facto standard for securing the transport layer. SSL/TLS can be used for ensuring data confidentiality, integrity and authenticity during transport. A main feature of the protocol is its flexibility. Modes of operation and security aims can easily be configured through different cipher suites. During its evolutionary development process several flaws were found. However, the flexible architecture of SSL/TLS allowed efficient fixes in order to counter the issues.

Find By Topic