$30 off During Our Annual Pro Sale. View Details »

Hansel & Gretel do TLS - PHPBenelux 2020

Marcus Bointon
January 23, 2020
Technology
0
170

Hansel & Gretel do TLS - PHPBenelux 2020

Effective encryption is a vital component of a safe and secure internet, especially since the arrival of HTTP/2. Many sites and mobile apps still don't use TLS to encrypt their traffic, often citing some kind of fear over the complexity of it all, or if they do, they make a mess of it, resulting in a literal false sense of security. The basics of TLS encryption are straightforward, but the practical realities run into a bewildering forest of acronyms. This talk gives you a breadcrumb trail through the backwoods of TLS, OCSP, ECDHE, ALPN, HTTP/2, HSTS, CT, and more, including the latest changes in TLS 1.3.

You'll get an overview of what problems TLS solves, how it works, its component pieces, how they fit together, where vulnerabilities and mitigations apply, and what tools and resources can help you get up to speed, and keep the wicked witch away!

This presentation was given at PHPBenelux 2020 in Antwerp, Belgium.

Marcus Bointon

January 23, 2020
Tweet

More Decks by Marcus Bointon

See All by Marcus Bointon
Hands-on Privacy (IPC Munich 2023)
synchro
0
6
Picking the low hanging-fruit – Easy pentest wins (IPC Munich 2023)
synchro
0
11
Hansel & Gretel do TLS - PHPSW 2020
synchro
0
40
It's new, it's shiny, it's... email?
synchro
0
150
Understanding Privacy By Design – ConFoo 2020
synchro
0
190
What's new in TLS 1.3 (ConFoo 2019)
synchro
0
54
Practical privacy - GDPR explained (ConFoo Montreal 2019)
synchro
0
210
Deploying IPv6 (IPC Munich 2018)
synchro
0
130
Crypto for everyone - libsodium in PHP 7.2
synchro
0
300

Other Decks in Technology

See All in Technology
開発生産性大幅アップ!Postman VS Code拡張機能
nagix
0
120
Kaggle Tokyo Meetup2023 CommonLit Solutionの紹介と考え方 - Fulltrain戦略と(Seed/Model)Ensembleの可視化 -
chumajin
2
910
CI/CDプロセスの拡充からはじめる技術的負債の解消/Eliminate technical debt, starting with expanding CI/CD processes
onecareer_tech
0
190
Kotlin製のGraphQLサーバーをNode.jsでモジュラモノリス化している話
hokaccha
1
2.1k
LangChainやるならPythonよりTypeScriptの方がいんじゃね?
optimisuke
0
210
Honoが良さそう🔥
is_ryo
0
170
分散型SNS最新状況
kojira
0
190
走馬灯のIaCは考えておいて
nwiizo
6
3.2k
Cloud Security Day 2023パネルディスカッション資料
coconala_engineer
0
150
負債と言わないことが負債と向き合うこと
kenchan
5
1.8k
コロプラ_SRE_LCE_ゲームバックエンド_性能との戦い
colopl
0
130
VS CodeとPostmanを活用した効率的なAPI開発 / Efficient API development using VS Code and Postman
yokawasa
3
280

Featured

See All Featured
Faster Mobile Websites
deanohume
296
29k
Infographics Made Easy
chrislema
236
17k
A better future with KSS
kneath
230
16k
Fireside Chat
paigeccino
18
2.3k
Code Review Best Practice
trishagee
53
14k
Bash Introduction
62gerente
603
210k
The MySQL Ecosystem @ GitHub 2015
samlambert
241
11k
Producing Creativity
orderedlist
PRO
335
38k
jQuery: Nuts, Bolts and Bling
dougneiner
57
6.9k
Side Projects
sachag
450
39k
Designing the Hi-DPI Web
ddemaree
274
33k
Building Applications with DynamoDB
mza
87
5.3k

Transcript

  1. by
    Marcus Bointon
    Synchromedia Limited,
    Smartmessages.net,
    Radically Open Security

    View Slide

  2. Marcus Bointon - TLS
    PHPBenelux 2020
    What is TLS?
    Transport Layer Security protocol
    The new(ish) name for SSL - Since 1999
    Versions: SSLv2, SSLv3, TLSv1.0, TLSv1.1, TLSv1.2, TLSv1.3
    A set of standards for security & encryption
    Can wrap around any higher-level protocol
    HTTP, SMTP, FTP, IMAP, DNS, etc
    Popular implementations: OpenSSL, LibreSSL, BoringSSL

    View Slide

  3. Marcus Bointon - TLS
    PHPBenelux 2020
    Why use TLS?
    Provides confidentiality, authenticity & integrity
    Better performance with HTTP/2
    Google will rank you higher
    Required for iOS apps
    Chrome 50 disabled HTTP GeoLocation
    Keeps the wicked witch out

    View Slide

  4. Marcus Bointon - TLS
    PHPBenelux 2020
    Toolkit: Hashes, MACs, Ciphers & KX
    Hashes produce a fixed-length digest from data; integrity
    MD5, SHA1, SHA2 (SHA256, SHA384, SHA512)
    Message Authentication Code (MAC): data + a key; authenticity
    HMAC-MD5, HMAC-SHA256, Poly1305
    Ciphers; encryption algorithms; confidentiality
    Integer factoring, elliptic curve ("EC"), symmetric, asymmetric
    RC4, AES, 3DES, RSA, ChaCha20
    Key Exchange
    RSA, Diffie-Hellman ("DH"), x25519, x448, EC, "Ephemeral", ECDHE

    View Slide

  5. Marcus Bointon - TLS
    PHPBenelux 2020
    New in TLS 1.3
    Removal of all weak and legacy algorithms & extensions
    Moar encryption
    Lower handshake overhead
    PFS-only
    Elliptic curve ciphers as standard
    Downgrade protection

    View Slide

  6. PHPBenelux 2020 Marcus Bointon - TLS
    TLS 1.3 Handshake
    ClientHello
    Cipher Suite List
    Key Share
    ServerHello
    Cipher Suite
    Key Share
    Certificate & Signature
    Server Finished
    Client Finished
    HTTP Request
    HTTP Response
    200ms

    View Slide

  7. PHPBenelux 2020 Marcus Bointon - TLS
    TLS 1.3 Resumption
    ClientHello
    Session ticket
    Key Share
    HTTP GET
    ServerHello
    Key Share
    Server Finished
    HTTP Response
    0-RTT!

    View Slide

  8. PHPBenelux 2020 Marcus Bointon - TLS
    Diffie-Hellman Key Exchange
    Alice
    Bob
    Random
    colour
    Secret
    colour
    +
    +
    +
    +
    =
    =
    =
    =
    Secret
    colour
    Common
    secret
    Exchange
    intermediate colours

    View Slide

  9. Marcus Bointon - TLS
    PHPBenelux 2020
    Creating certificates
    Create a public/private key pair
    At least 2048 bits for RSA
    Create a certificate signing request (CSR)
    Use SHA-2 signature
    Sign the CSR to create a public certificate
    Yourself…
    By a Certificate Authority (CA)

    View Slide

  10. Marcus Bointon - TLS
    PHPBenelux 2020
    Intermediate
    CA certificate
    Certificate chains
    Browser & OS
    certificate store
    Root CA
    certificate
    Site certificate
    Server
    certificate store
    Root CA
    certificate

    View Slide

  11. Marcus Bointon - TLS
    PHPBenelux 2020
    CRLs, OCSP & Stapling
    How to find out if a cert has been revoked?
    Browser asks the CA — OCSP
    Our site becomes dependent on CA's site
    CA's site becomes a privacy leak risk
    Get the server to ask the CA in advance
    Staple the proof of validity to the certificate
    Can't fake it because it's signed by the CA
    Browser Server
    CA
    Browser Server
    CA

    View Slide

  12. Marcus Bointon - TLS
    PHPBenelux 2020
    Use TLS by default, keeps things simple
    Don’t use protocol-relative URLs (//…)
    Avoid mixed mode: https + http
    HSTS & CSP can auto-upgrade
    Create proxies if HTTPS not available
    Cookies: set httponly, secure, samesite flags
    Deploying TLS - App concerns

    View Slide

  13. Marcus Bointon - TLS
    PHPBenelux 2020
    https://mozilla.github.io/server-side-tls/ssl-config-generator/
    Redirect to secure site
    Use SNI + SAN to host multiple domains on one IP
    Create DH params for forward secrecy
    At least TLSv1.2 - disable old & weak ciphers
    Enable TLS session caching
    Staple CA certs for OCSP
    Deploying TLS - Server config

    View Slide

  14. Marcus Bointon - TLS
    PHPBenelux 2020
    Deploying TLS - Improving security
    HTTP Strict Transport Security (HSTS) header
    “We always encrypt”
    Certificate Authority Authorisation in DNS
    “Permit only these CAs to issue certs”
    Content Security Policy (CSP) header
    “Permit only these sources”
    Expect-CT header
    Check that the cert was issued correctly

    View Slide

  15. Marcus Bointon - TLS
    PHPBenelux 2020
    Testing TLS
    Click the padlock!
    openssl s_client
    Qualys SSL Labs: https://www.ssllabs.com/ssltest/
    https://hstspreload.appspot.com/
    observatory.mozilla.org, testssl.sh, crt.sh, report-uri.com,
    securityheaders.com, webbkoll.dataskydd.net

    View Slide

  16. PHPBenelux 2020 Marcus Bointon - TLS
    TLS overhead - old way

    View Slide

  17. PHPBenelux 2020 Marcus Bointon - TLS
    TLS overhead - new way

    View Slide

  18. Marcus Bointon - TLS
    PHPBenelux 2020
    TLS Summary
    It can be free
    It’s fast(er) - use HTTP/2
    Use TLS everywhere by default
    Simple measures maximise security
    Help Hansel & Gretel make it to your site safely

    View Slide

  19. Marcus Bointon - TLS
    PHPBenelux 2020
    ...and they all lived happily ever after

    View Slide

  20. PHPBenelux 2020 Marcus Bointon - TLS
    Thank you
    Feedback: https://joind.in/talk/b7924
    Marcus Bointon
    [email protected]
    @SynchroM & @PrivacySpider
    Synchro on GitHub & Stack Exchange

    View Slide

  21. View Slide