TLS Attacks: BEAST, POODLE & Downgrade
Study historical TLS attacks and the mitigations in TLS 1.3.
Attack Taxonomy
TLS attacks fall into: protocol-level (BEAST, POODLE, DROWN), cryptographic (RC4 biases, Lucky13), and implementation (Heartbleed, BERserk). TLS 1.3 eliminates the protocol-level attacks by removing vulnerable algorithms.
BEAST (2011)
Browser Exploit Against SSL/TLS: exploits CBC mode in TLS 1.0 where the IV for each record is the last ciphertext block of the previous record (predictable IV). Attacker injects chosen plaintext blocks to recover session cookies via a chosen-boundary attack.
All lessons in this course
- TLS 1.3 Handshake Step by Step
- TLS Record Layer & Cipher Suites
- Certificate Validation in TLS
- TLS Attacks: BEAST, POODLE & Downgrade