English
Related papers

Related papers: TLS hardening

200 papers

Remote Procedure Calls (RPC) are widely used over the Internet as they provide a simple and elegant way of interaction between the client and the server. This paper proposes a solution for securing the remote procedure calls (RPC) by…

Cryptography and Security · Computer Science 2009-09-22 Ajinkya Kale , Ashish Gilda , Sudeep Pradhan

Development of information technology, especially in the field of computer network allows the exchange of information faster and more complex and the data that is exchanged can vary. Security of data on communication in the network is a…

Cryptography and Security · Computer Science 2015-08-25 Heru Pranata , Leon Andretti Abdillah , Usman Ependi

Internet traffic is increasingly encrypted. While this protects the confidentiality and integrity of communication, it prevents network monitoring systems (NMS) and intrusion detection systems (IDSs) from effectively analyzing the now…

Cryptography and Security · Computer Science 2021-04-21 Florian Wilkens , Steffen Haas , Johanna Amann , Mathias Fischer

Securing the communication between a web server and a browser is a fundamental task of securing the World Wide Web. Websites today rely heavily on HTTPS to set up secure connections. In recent years, several incidents undermined this trust…

Cryptography and Security · Computer Science 2021-05-13 Thomas Sutter , Kevin Lapagna , Peter Berlich , Marc Rennhard , Fabio Germann

Security Hardening is the process of configuring IT systems to ensure the security of the systems' components and data they process or store. In many cases, so-called security-configuration guides are used as a basis for security hardening.…

Cryptography and Security · Computer Science 2022-09-20 Patrick Stöckle , Ionut Pruteanu , Bernd Grobauer , Alexander Pretschner

We present new analytic techniques for inferring HTTP semantics from passive observations of HTTPS that can infer the value of important fields including the status-code, Content-Type, and Server, and the presence or absence of several…

Cryptography and Security · Computer Science 2018-05-30 Blake Anderson , Andrew Chi , Scott Dunlop , David McGrew

TLS protocol is an essential part of secure Internet communication. In past, many attacks have been identified on the protocol. Most of these attacks are due to flaws in protocol implementation. The flaws are due to improper design and…

Networking and Internet Architecture · Computer Science 2019-02-21 Tarun Yadav , Koustav Sadhukhan

Experience shows that most researchers and developers tend to treat plain-domains (those that are not prefixed with "www" sub-domains, e.g. "example.com") as synonyms for their equivalent www-domains (those that are prefixed with "www"…

Cryptography and Security · Computer Science 2019-06-19 Eman Salem Alashwali , Pawel Szalachowski , Andrew Martin

Traffic monitoring is essential for network management tasks that ensure security and QoS. However, the continuous increase of HTTPS traffic undermines the effectiveness of current service-level monitoring that can only rely on unreliable…

Cryptography and Security · Computer Science 2020-08-20 Wazen M. Shbair , Thibault Cholez , Jerome Francois , Isabelle Chrisment

Security and Privacy are crucial in modern Internet services. Transport Layer Security (TLS) has largely addressed the issue of security. However, information about the type of service being accessed goes in plain-text in the initial…

Cryptography and Security · Computer Science 2022-07-06 Vinod S. Khandkar , Manjesh K. Hanawal , Sameer G Kulkarni

The robustness principle, written by Jon Postel in an early version of TCP implementation, states that the communicating entities should be liberal while accepting the data. Several entities on the Internet do follow this principle. For…

Cryptography and Security · Computer Science 2022-04-01 Nikhil Tripathi

Following QUIC protocol ratification on May 2021, the third major version of the Hypertext Transfer Protocol, namely HTTP/3, was published around one year later in RFC 9114. In light of these consequential advancements, the current work…

Cryptography and Security · Computer Science 2022-12-13 Efstratios Chatzoglou , Vasileios Kouliaridis , Georgios Kambourakis , Georgios Karopoulos , Stefanos Gritzalis

With the phenomenal growth in the Internet, network security has become an integral part of computer and information security. In order to come up with measures that make networks more secure, it is important to learn about the…

Cryptography and Security · Computer Science 2014-12-19 Natarajan Meghanathan

TLS 1.3 marks a significant departure from previous versions of the Transport Layer Security protocol (TLS). The new version offers a simplified protocol flow, more secure cryptographic primitives, and new features to improve performance,…

Cryptography and Security · Computer Science 2019-08-07 Ralph Holz , Johanna Amann , Abbas Razaghpanah , Narseo Vallina-Rodriguez

Browser fingerprinting is the identification of a browser through the network traffic captured during communication between the browser and server. This can be done using the HTTP protocol, browser extensions, and other methods. This paper…

Cryptography and Security · Computer Science 2024-10-29 Sandhya Aneja , Nagender Aneja

Mutual TLS (mTLS) provides strong, certificate-based authentication for both clients and servers, yet its adoption for user-facing websites remains rare. This paper presents a longitudinal study of mTLS usability, tracking 46 senior and…

Cryptography and Security · Computer Science 2026-05-01 Abubakar Sadiq Shittu , Clay Shubert , John Sadik , Scott Ruoti

This paper tackles the problems of generating concrete test cases for testing whether an application is vulnerable to attacks, and of checking whether security solutions are correctly implemented. The approach proposed in the paper aims at…

Software Engineering · Computer Science 2020-07-08 Sébastien Salva , Loukmen Regainia

Today, Internet offers many critical applications. So, it becomes very crucial for Internet service providers to ensure traceability of operations and to secure data exchange. Since all these communications are based on the use of the…

Cryptography and Security · Computer Science 2012-08-01 Kaouthar Chetioui , Ghizlane Orhanou , Said El Hajji , Abdelmajid Lakbabi

Today, Internet becomes the essential part of our lives. Over 90 percent of the ecommerce is developed on the Internet. A security algorithm became very necessary for producer client transactions assurance and the financial applications…

Cryptography and Security · Computer Science 2009-07-30 R. K. Pateriya , J. L. Rana , S. C. Shrivastava , Jaideep Patel

Spectre v1 attacks pose a substantial threat to security-critical software, particularly cryptographic implementations. Existing software mitigations, however, often introduce excessive overhead by indiscriminately hardening instructions…

Cryptography and Security · Computer Science 2025-06-10 Yiming Zhu , Wenchao Huang , Yan Xiong