文章基本信息

标题：Comparative Analysis of Open-SSL Vulnerabilities & Heartbleed Exploit Detection
本地全文：下载
作者：Mr. Eng. Mohanned Hassan Momani ; Mr. Adam Ali.Zare Hudaib
期刊名称：International Journal of Computer Science and Security (IJCSS)
电子版ISSN：1985-1553
出版年度：2014
卷号：8
期号：4
页码：159-176
出版社：Computer Science Journals
摘要：Since its introduction in 1994 the Secure Socket Layer (SSL) protocol (later renamed to Transport Layer Security (TLS)) evolved to the de facto standard for securing the transport layer. SSL/TLS can be used for ensuring data confidentiality, integrity and authenticity during transport. A main feature of the protocol is its flexibility. Modes of operation and security aims can easily be configured through different cipher suites. During its evolutionary development process several flaws were found. However, the flexible architecture of SSL/TLS allowed efficient fixes in order to counter the issues. This paper presents an overview on theoretical and practical attacks of the last 20 years.
关键词：SSL; TLS; BEAST Attack; CRIME Attack; Heartbleed Detection; RC4.