Talk about SSL Security Protocol

Fooying (h.u. C)
Blog:Http://hi.baidu.com/fooying
QQ413673800

ForSecurityFor me personally, the most common contact is the SSL security protocol. I think many people like me.
SSL (Secure Socket Layer) is developed by Netscape to ensure the security of data transmission over the Internet.EncryptionEncryption technology ensures that data is not intercepted or eavesdropped during network transmission.
The introduction may not be clear. Here is an example.
I don't know if you have tried it.Http://www.mail.qq.com/cgi-bin/loginpageChangeHttps://www.mail.qq.com/cgi-bin/loginpageAnd then log in? It's changed.


This method has the advantage of increasing security. Some may ask: is it safe to add s? In fact, a person who understands it can understand it at a Glance. After S is added, the SSL security protocol is used, and the data will be encrypted during transmission, in this way, the possibility of information being stolen by the listener is avoided, because even if the information is monitored, encrypted data is obtained, and the original usage is lost.
This is a simple example to introduce the SSL security protocol.
Isn't the SSL Security Protocol safe?Cracking? If it was before, it would be hard to say, but now we can clearly tell you that it can be cracked. The following is an excerpt (fromHttp://butian.org/server/780.htmlReporting time 2009.02.22 ):
Moxie Marlinspike explained how to use middlemen at the Black Hat security conference on WednesdayAttackTo break SSL layer sessions. The researcher explained through a Youtube video that the attack uses the name SSLstripToolsYou can use interfaces between http and https sessions.

Marlinspike explained in the video: "SSLstrip can attack all potential SSL connections in the network, especially interfaces between http and https, in man-in-the-middles mode."

SSL and its successor Transport Layer Security (Transport Layer Security) are encryption protocols used for TCP/IP encrypted communications. SSL and TLS are usually used by banks and other organizations for secure page transmission.

This attack mainly depends on the user'sBrowserThe entered URL does not directly activate the SSL session, and most users activate the (SSL) session by clicking the prompt button. These buttons usually appear on the unencrypted Http page. Once you click them, the user will be taken to the encrypted Https page for login.

"This provides multiple ways to intercept information," he said at the Black Hat conference. He also claimed that he had intercepted 117 email accounts within 24 hours, seven Paypal registration materials and 16 credit card numbers.

SSLstrip works by monitoring Http transmission. It acts as a proxy when a user tries to enter an encrypted https session. When the user thinks that a secure session has started, SSLstrip is also connected to the secure session through https.ServerThe connection from all users to SSLstrip is http, which means that the "devastating warning" prompt on the browser has been blocked and the browser looks to work normally, during this period, all registration information can be easily intercepted.

Marlinspike said that it can also display the https security lock logo in the browser address bar, making users more confident in their access security.

SSL has been widely considered safe enough, but some security researchers once claimed that SSL communication can be intercepted. In last August, researcher Mike Perry said that he and Google were launching an attack that he was about to announce.VulnerabilitiesThis vulnerability will allowHackerIntercept communication between users on a secure website through a Wi-Fi network.
After looking at the related cracking information, I think that the method is hard for most people to understand and implement, and the cool people who can do it will not look at us. This isMicrosoftWe can still use it with confidence when it comes to big companies.
Personally, if you want to make a qualifiedHongkeSecurity protocols are essential. I hope you can pay more attention to them.