2.2.8 Secure Sockets Layer (SSL) and Transport Layer Security (TLS)

Questions and Answers

What primary function do SSL and TLS serve?

• Managing network configurations.
• Load balancing web traffic.
• Providing privacy and data integrity between client and server. (correct)
• Optimizing database queries.

Which of the following best describes the relationship between SSL and TLS?

• TLS is a component of SSL used for encryption.
• SSL and TLS are interchangeable terms for network security.
• SSL is a deprecated version, and TLS is its more secure successor. (correct)
• SSL is a completely different protocol from TLS.

What is the initial type of encryption primarily used in TLS for key exchange?

• Hashing
• Caesar cipher
• Symmetric encryption
• Asymmetric encryption (correct)

Why is it recommended to switch from asymmetric to symmetric encryption in TLS after the initial key exchange?

Symmetric encryption is computationally more efficient. (D)

Besides privacy, what other key assurance does TLS provide?

Data Integrity (A)

What is the purpose of 'identity verification' in TLS?

To ensure the server is who it claims to be. (A)

A 'reliable connection' in TLS primarily ensures what?

The data remains unaltered during transit. (A)

What are the three main phases involved when a client initiates communication with a server using TLS?

Cipher Suites agreement, Authentication, Key Exchange (D)

Which layer of the OSI model is active when the three phases of TLS communication begin?

Layer 4: Transport Layer (D)

What does a Cipher Suite include?

A set of protocols for secure communication (D)

During a TLS handshake, what is contained in the Client Hello message?

A list of Cipher Suites supported by the client. (C)

In the TLS handshake process, what does the server provide to the client in the Server Hello message?

The client's chosen cipher suite and the Server Certificate. (A)

What is the significance of the Server Certificate in a TLS handshake?

It contains the server's Public key. (C)

What is the role of a Certificate Authority (CA) in the TLS process?

To verify the server's identity. (A)

Before providing a signed certificate, what does a server generate and submit to a Certificate Authority (CA)?

A Certificate Signing Request (CSR). (B)

What does a client verify during the authentication phase of a TLS handshake, regarding the server's certificate?

That the certificate has not been revoked and that the DNS name matches the certificate. (C)

After the Server Hello, what is the final step of authentication where the client validates the legitimacy of the server?

The client encrypts and sends random data to the server, verifying the server's private key. (B)

In the Key Exchange phase of TLS, what type of encryption is implemented to transfer keys and begin faster encryption?

Asymmetric encryption is converted to symmetric encryption. (A)

During the Key Exchange phase, the client generates what to encrypt with server's public key?

Pre-Master key (D)

After the pre-master key has been exchanged and verified, what key is generated?

Master Secret (A)

After the Key Exchange phase, what is the primary function of the Master Secret?

Creating session keys for encrypting and decrypting data. (B)

After both sides confirm they followed the same process for key exchange, what occurs?

The connection is encrypted using different session keys. (B)

What is an important consideration for designing infrastructure on AWS or implementing infrastructure with AWS, regarding SSL and TLS?

Ensuring all communications between clients and servers are encrypted. (B)

During a TLS handshake, if the server doesn't support any of the cipher suites proposed by the client, what happens?

The connection fails. (C)

Why do most TLS implementations move from asymmetric to symmetric encryption after the initial handshake?

To comply with regulatory standards. (D)

Your web server's certificate has expired. What is the most immediate consequence for users attempting to access your site via HTTPS?

Browsers will warn users about a potential security risk or untrusted connection. (C)

If a malicious actor intercepts a server's Certificate Signing Request (CSR) before it is sent to the Certificate Authority (CA), what can they do immediately?

Impersonate the Server: The malicious actor can use the intercepted CSR to request a fraudulent certificate, potentially impersonating the original server to clients. (A)

Suppose a client successfully completes a TLS handshake with a server but later discovers that the Certificate Authority (CA) that signed the server's certificate has been compromised. What is the most appropriate immediate action for the client?

Terminate the connection immediately to prevent potential data compromise. (B)

What is the purpose of the 'Session ID' included in the Client Hello during a TLS handshake?

To resume or renegotiate a previous session, avoiding a full handshake. (C)

A network administrator notices a surge in TLS handshake failures on their server. Upon investigation, they discover a large number of Client Hello messages with an unusual extension containing a large list of cipher suites that the server does not support, and the handshake aborts. What is the most plausible explanation for this?

A DDoS attack attempting to exhaust server resources with handshake operations. (C)

In the context of TLS, what does 'forward secrecy' provide?

Protection of past sessions even if the server's private key is compromised. (A)

What is the purpose of the 'Authentication' phase in TLS?

Verifying the server's identity. (C)

A major version update for TLS is released that includes new cipher suites with stronger encryption algorithms for increased security. As the security architect for a large e-commerce platform, what would be your FIRST strategic recommendation regarding this update?

Plan a phased rollout of the new TLS version, balancing security enhancements with compatibility and user experience. (D)

During automated security testing, the security engine reports concerns about the TLS cipher suites supported by www.company.com. It shows that the server negotiates the TLS_RSA_WITH_AES_128_CBC_SHA cipher suite during TLS handshakes. Why might security engineers be concerned about this negotiated cipher suite?

CBC cipher suites can be vulnerable to specific types of attacks. (B)

What is the most important aspect of TLS for users of public Wi-Fi networks?

It encrypts the data transmitted between their device and the websites they visit, protecting their information from eavesdropping. (A)

How does a Certificate Authority (CA) generate a signed certificate?

The CA applies its private key to sign the certificate. (B)

An analyst runs openssl s_client -connect yourdomain.com:443 and notices the connection negotiates TLS 1.3. What is TLS 1.3?

TLS 1.3 is a cryptographic protocol used to provide secure communication over a computer network. (D)

A server admin responsible for maintaining TLS certificates wishes to automate as much of the process as possible. Other than DNS settings, what technology can the server admin use to automate TLS certificate issuance and renewal?

The server admin should implement the ACME protocol. (D)

You are developing a new IoT device that communicates with a central server. To minimize power consumption, you need a TLS configuration that offers good security but with the lowest possible computational overhead. Which of the following approaches is MOST aligned with this design requirement?

Implement TLS session resumption to minimize full handshakes. (D)

A company's security policy mandates regular audits of TLS configurations to ensure compliance with industry best practices. During an audit of a web server, the auditor finds numerous insecure cipher suites enabled (NULL, MD5, DES, RC4). What should the web server admin immediately remediate?

Disabling weak and insecure cipher suites. (C)

Flashcards

What does SSL stand for?

Stands for Secure Sockets Layer, an older security protocol.

What does TLS stand for?

Stands for Transport Layer Security, a newer and more secure version of SSL.

What does TLS ensure regarding Privacy?

Ensuring communications are encrypted between client and server, so that only they have access to the unencrypted information.

What is Asymmetric Encryption?

An encryption method where the server can make its Public key available so clients can encrypt data that only the server can decrypt.

What is Symmetric Encryption?

An encryption method that is computationally easier to perform than asymmetric encryption and used for ongoing encryption requirements.

What is identity verification?

Verifying that the server you are connecting to is indeed who it claims to be.

What does TLS ensure regarding a reliable connection?

Protecting against the alteration of data in transit so that any changes can be detected.

What is a Cipher Suite?

A set of protocols used by TLS, including a Key Exchange algorithm, a Bulk Encryption algorithm, and a Message Authentication Code algorithm (MAC).

What is a Client HELLO?

The first message from the client to initiate a TLS connection, containing the SSL/TLS version, a list of supported Cipher Suites, a Session ID, and Extensions.

What is a Server HELLO?

A message from the server in response to the Client HELLO, including the chosen Cipher Suite and the Server Certificate.

What is a Server Certificate?

A digital document containing the server's Public key and other information, issued by a trusted Public Certificate Authority (CA).

What is Authentication in TLS?

The process where the client validates the Server Certificate by ensuring it was signed by a trusted CA, hasn't expired, hasn't been revoked, and that the DNS name matches the certificate's name.

What is a Public Certificate Authority (CA)?

An entity trusted by operating systems and browsers to issue and sign digital certificates, verifying the authenticity of websites and servers.

What is Certificate Signing Request (CSR)?

A request sent by the server to a CA to issue a signed certificate, containing the server's Public key and other identifying information.

What is Key Exchange Phase?

Where asymmetric encryption moves to symmetric encryption, to encrypt and decrypt data, starting with a valid Public key on the client and matching Private key on the server.

What is the Pre-Master key?

Generated by the client, encrypted using the server's Public key, and sent to the server to create the Master Secret.

What is a Master Secret?

Generated from the Pre-Master key and used to create session keys for encrypting and decrypting data over the lifetime of the connection.

Study Notes

Secure Sockets Layer (SSL) and Transport Layer Security (TLS)

• SSL stands for Secure Sockets Layer, while TLS is Transport Layer Security
• TLS is a newer and more secure version of SSL
• TLS and, historically, SSL provide privacy and data integrity between client and server, ensuring communications are encrypted between them
• Using TLS starts with an asymmetric encryption architecture
• A server makes its public key available to clients, which they can use to encrypt data that only the server can decrypt
• Asymmetric encryption allows trustless encryption without needing transfer keys over a different secure medium
• The aim should be to move from asymmetric to symmetric encryption for ongoing encryption because symmetric encryption is computationally easier to perform
• Part of the negotiation process which TLS performs involves moving from asymmetric to symmetric encryption
• Identity verification is another function that TLS provides
• Usually, the client verifies the server
• Public key cryptography is used
• TLS ensures a reliable connection, protecting against data alteration in transit, and the protocol can detect alterations

TLS Architecture and Communication Phases

• When a client initiates communications with a server using TLS, there are three main phases to initiate secure communication
• Cipher Suites are agreed upon initially
• Authentication happens next
• Keys are exchanged
• These phases occur after a TCP connection is active between the client and the server, operating at layer four
• An Encryption Communication Channel between a client and a server exists at the end of the three phases

Cipher Suites

• A Cipher Suite is a set of protocols used by TLS
• A Cipher Suite includes:
  • Key Exchange algorithm
  • Bulk Encryption algorithm
  • Message Authentication Code algorithm (MAC)
• There are different algorithms and versions of algorithms for each of the mentioned factors
• Specific versions and types grouped together are known as a Cipher Suite

Client and Server Communication

• To communicate, the client and server must agree on a Cipher Suite to use
• First, the client sends a Client HELLO, containing the SSL or TLS version, a list of Cipher Suites the client supports, a Session ID, and Extensions
• The server responds with a Server HELLO, including a specific Cipher Suite it chooses and the Server Certificate
• The Server Certificate includes the server's Public key

Public and Private Keys

• The Public key within the Server Certificate can be used to encrypt data that the client sends to the server
• Only the server can decrypt this data using its Private key
• This process uses asymmetric encryption
• ID validation is part of TLS
• A client could be exploited if it assumes the server is valid
• A server pretending to be Netflix.com could be created without being Netflix.com
• It's important that TLS verifies the server the client is communicating with is the server it claims to be

Authentication

• The next step of the TLS process involves Authentication
• The client needs to validate that the Server Certificate is valid, ensuring the Public key and the server itself are valid
• The server has a certificate as a document, containing its Public key, DNS name, and other organizational information
• A Public Certificate Authority (CA) is involved
• There are several CAs run by independent companies that operating systems and browsers trust

Certificate Signing

• A server creates a Public and Private key pair and generates a Certificate Signing Request (CSR)
• The CSR is provided to a Public Certificate Authority
• In return, the CA delivers back a signed certificate
• The CA signing it means the OS or browser can verify the CA signed that certificate
• This enables the OS or browser to trust the certificate
• The categram.io server has this certificate, and the certificate is provided to the client as part of the server HELLO in stage one of the TLS negotiation

Server Certificate Validation

• In stage two, Authentication, the client with the Server Certificate validates the Public Certificate Authority that signed the certificate, ensuring that:
  • It was signed by a specific CA
  • Certificate has not expired
  • Certificate hasn't been revoked
  • The DNS name the browser uses matches the name on the certificate
• The server ID is valid due to the third party CA

Encryption Process

• The client attempts to encrypt random data and send it to the server using the Public key within the certificate and ensure the server has the corresponding Private key
• At this point, if everything is valid the client trusts the server, its ID is validated, and the client knows that the server can decrypt the data that is being sent

Key Exchange Phase and Encryption

• It is in this phase which is where the process goes from asymmetric encryption to symmetric encryption
• The client generates a Pre-Master key, encrypts it using the server's Public key, and sends it to the server
• The server decrypts it with its Private key
• Both sides now have the same Pre-Master key

Master Secret and Session Keys

• Based on the Cipher Suite used, both sides follow the same process to convert the Pre-Master key into a Master Secret
• As both sides follow the same process, both sides have the same Master Secret
• The Master Secret is used over the lifetime of the connection to create several session keys
• These session keys are used to encrypt and decrypt data
• Both sides confirm the handshake
• The connection between the client and server is encrypted using different session keys over time

TLS Process Summary

• TLS is the process by verifying the identity of the server being communicated with
• This involves negotiating an encryption method and exchanging asymmetric for symmetric encryption keys
• The process initiates a secure communications channel
• The process happens each time communication happens with a server using HTTPS
• SSL and TLS are architectures that need to be familiar to anyone designing any infrastructure for AWS, or implementing any infrastructure within AWS
• It is important to ensure communications are encrypted between clients and servers and to understand how this process works