Paper 2020/1180

MultiTLS: Secure communication channels with cipher suite diversity

Ricardo Moura, David R. Matos, Miguel Pardal, and Miguel Correia

Abstract

TLS ensures confidentiality, integrity, and authenticity of communications. However, design, implementation, and cryptographic vulnerabilities can make TLS communication channels insecure. We need mechanisms that allow the channels to be kept secure even when a new vulnerability is discovered. We present MultiTLS, a middleware based on diversity and tunneling mechanisms that allows keeping communication channels secure even when new vulnerabilities are discovered. MultiTLS creates a secure communication channel through the encapsulation of k TLS channels, where each one uses a different cipher suite. We evaluated the performance of MultiTLS and concluded that it has the advantage of being easy to use and maintain since it does not modify any of its dependencies.

Metadata
Available format(s)
PDF
Category
Implementation
Publication info
Published elsewhere. 35th IFIP TC-11 SEC 2020 International Information Security and Privacy Conference
DOI
10.1007/978-3-030-58201-2_5
Keywords
implementationmessage authentication codessecret-key cryptography
Contact author(s)
miguel p correia @ tecnico ulisboa pt
History
2020-09-30: received
Short URL
https://ia.cr/2020/1180
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2020/1180,
      author = {Ricardo Moura and David R.  Matos and Miguel Pardal and Miguel Correia},
      title = {MultiTLS: Secure communication channels with cipher suite diversity},
      howpublished = {Cryptology ePrint Archive, Paper 2020/1180},
      year = {2020},
      doi = {10.1007/978-3-030-58201-2_5},
      note = {\url{https://eprint.iacr.org/2020/1180}},
      url = {https://eprint.iacr.org/2020/1180}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.