Keyjacking: the surprising insecurity of client-side SSL

Keyjacking: the surprising insecurity of client-side SSL

In theory, PKI can provide a flexible and strong way to authenticate users in distributed information systems. In practice, much is being invested in realizing this vision via client-side SSL and various client keystores. However, whether this works depends on whether what the machines do with the p...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Veröffentlicht in:Computers & security 2005-03, Vol.24 (2), p.109-123
Hauptverfasser: Marchesini, John, Smith, S.W., Zhao, Meiyuan
Format: Artikel
Sprache:eng
Schlagworte:
API hijacking
Application security
Authentication
Authentication protocols
Information systems
PKI
Public Key Infrastructure
Secure Sockets Layer protocol
Security management
Spoofing
SSL
Studies
Usability
USB tokens
Online-Zugang:Volltext
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:In theory, PKI can provide a flexible and strong way to authenticate users in distributed information systems. In practice, much is being invested in realizing this vision via client-side SSL and various client keystores. However, whether this works depends on whether what the machines do with the private keys matches what the humans think they do: whether a server operator can conclude from an SSL request authenticated with a user's private key that the user was aware of and approved that request. Exploring this vision, we demonstrate via a series of experiments that this assumption does not hold with standard desktop tools, even if the browser user does all the right things. A fundamental rethinking of the trust, usage, and storage model might result in more effective tools for achieving the PKI vision.
ISSN:0167-4048
1872-6208
DOI:10.1016/j.cose.2004.06.014