Upgrade to Pro — share decks privately, control downloads, hide ads and more …

『プロフェッショナルSSL/TLS』読書会 第1章資料

Avatar for sylph01 sylph01
May 12, 2017

『プロフェッショナルSSL/TLS』読書会 第1章資料

Avatar for sylph01

sylph01

May 12, 2017
Tweet

More Decks by sylph01

Other Decks in Technology

Transcript

  1. 1.1 Transport Layer Security (p.1-2) TLSͷ4ͭͷ໨ඪ(্͔Βߴ༏ઌ): • ҉߸ֶతͳηΩϡϦςΟ(Cryptographic security) •

    ૬ޓӡ༻ੑ(Interoperability) • ֦ுੑ(Extensibility) • ޮ཰ੑ(Efficiency)
  2. 1.3 ϓϩτίϧͷྺ࢙ • SSL2: 1994/11 • SSL 3.0: 1995ޙ൒ •

    TLS 1.0(RFC 2246): 1999/1 • ΄ͱΜͲSSL 3.0ͱࠩ͸ͳ͍͕ޓ׵ੑͳ͠ • TLS 1.1: 2006/4 (security fix, TLS֦ு(2003/6)) • TLS 1.2: 2008/4 (AEADରԠ) • TLS 1.3: ongoing
  3. 1.4.1 ཁૉٕज़ (p.9) ϋογϡؔ਺ • ݪ૾ܭࢉࠔ೉ੑ: ͋Δϋογϡ஋ʹର͠ɺಉ͡ϋογϡ஋ʹͳΔ ϝοηʔδΛݟ͚ͭΔ͜ͱ͕ࠔ೉Ͱ͋Δੑ࣭ • ୈ2ݪ૾ܭࢉࠔ೉ੑ(ऑিಥ଱ੑ):

    ͋Δϝοηʔδͱϋογϡ஋͔ Βɺಉ͡ϋογϡ஋ʹͳΔผͷϝοηʔδΛݟ͚ͭΔ͜ͱ͕ࠔ ೉Ͱ͋Δੑ࣭ • িಥ଱ੑ(ڧিಥ଱ੑ): ಉ͡ϋογϡ஋ʹͳΔϝοηʔδͷ૊Έ ߹ΘͤΛݟ͚ͭΔ͜ͱ͕ࠔ೉Ͱ͋Δੑ࣭
  4. 1.4.1 ཁૉٕज़ (p.10-11) ҉߸ར༻Ϟʔυ • ECB: ϒϩοΫ୯ҐͰݸผʹ҉߸Խɻ҉߸จʹฏจͷ৘ใ͕ݱΕ ͯ͠·͏ͨΊ੬ऑɻ࢖͏ཧ༝ͳ͠ɻ • CBC:

    લͷϒϩοΫͷ҉߸Խ݁ՌͷXORΛͱ͔ͬͯΒ҉߸Խɻ • ॳظԽϕΫτϧ(IV)ΛऔΔɻϥϯμϜͳ஋Λ࢖͏͜ͱͱɺ͜ͷ ஋Λ࢖͍·Θ͞ͳ͍͜ͱ͕ॏཁɻ • ଞ: CTRɺGCMɺOCBͳͲɻGCMͱOCB͸ೝূ͖ͭ҉߸Λఏڙɻ
  5. 1.4.4 ҉߸ڧ౓ (p.16-17) NIST SP800-57 Part1 Rev.3 ͷp.64ʹ͋Δ౳Ձ҆શੑͷද1 ڞ௨伴҉߸ RSA/DSA/DH

    ପԁۂઢ҉߸ ϋογϡ஋ 80 1024 160 160 112 2048 224 224 128 3072 256 256 256 15360 512 512 1 ୯Ґ͸ͦΕͧΕbit
  6. 1.4.5 MITM߈ܸ (p.17-21) ΞΫηεͷୣऔ • ARP spoofing: MACΞυϨεͱIPΞυϨεͷؔ࿈෇͚Λ࠮শ͢Δ ͜ͱͰϩʔΧϧωοτϫʔΫʹ͓͚Δܦ࿏৘ใΛ࠮শ͢Δ •

    WPAD(Web Proxy Auto-Discovery) hijacking: ِͷϓϩΩγʹ༠ಋ • DNS hijacking, DNS cache poisoning: ِͷDNS৘ใΛ༩͑Δ͜ͱͰ υϝΠϯʹ޲͔͏τϥϑΟοΫΛ৐ͬऔΔɻ • BGP route hijacking: Πϯλʔωοτ্ͷϧʔλ͕ෆਖ਼ͳܦ࿏Λ ࢦఆ͢Δ͜ͱͰ௨৴͕߈ܸऀͷͱ͜ΖΛ௨Δ
  7. 1.4.5 MITM߈ܸ (p.17-21) डಈత߈ܸ • ҉߸Խ͞Ε͍ͯͳ͍τϥϑΟοΫΛܧଓతʹϞχλϦϯά • ҉߸Խ͞ΕͨτϥϑΟοΫͰ΋௕ظؒอଘͯ͠҉߸͕ഁΒΕΔ ͷΛ଴ͯ͹Α͍ •

    Perfect Forward Secrecy2ͷॏཁੑɻಉ͡伴Λ࢖ͬͯաڈʹ͞ ͔ͷ΅ͬͯ௨৴͕෮ݩͰ͖ΔͱϚζ͍ɻ 2 Perfect Forward SecrecyͱForward Secrecy͸ಉٛɻ
  8. HMACͷఆٛ ϋογϡؔ਺Hͱ伴KΛ࢖ͬͯɺ ipad = Kͷ௕͞෼ͷ0x36 opad = Kͷ௕͞෼ͷ0x5c ʢ ||

    ͸࿈݁Λද͢ɻͳͷͰɺ ͱtextΛ͚ͬͭͨ͘΋ͷͷϋ ογϡ஋Λɺ ͷޙΖʹ͚ͬͭͯ͘ɺͦͷϋογϡΛऔ Δɺͱ͍͏͜ͱʣ