| Title | vtTLS: A Vulnerability-Tolerant Communication Protocol (short paper) |
| Publication Type | Conference Paper |
| Year of Publication | 2016 |
| Authors | Joaquim A, Pardal M, Correia M |
| Conference Name | The 15th IEEE International Symposium on Network Computing and Applications (NCA 2016) |
| Date Published | Cambridge, MA US |
| Publisher | IEEE Computer Society |
| Conference Location | Cambridge, MA USA |
| Accession Number | 16540799 |
| Abstract | We present VTTLS, a vulnerability-tolerant communication protocol. There are often concerns about the strength of some of the encryption mechanisms used in SSL/TLS channels, with some regarded as insecure at some point in time. VTTLS is our solution to mitigate the problem of secure communication channels being vulnerable to attacks due to unexpected vulnerabilities in encryption mechanisms. It is based on diversity and redundancy of cryptographic mechanisms and certificates to provide a secure communication channel even when one or more mechanisms are vulnerable. VTTLS relies on a combination of k cipher suites. Even if k-1 cipher suites are insecure or vulnerable, VTTLS relies on the remaining cipher suites to maintain the channel secure. We evaluated the performance of VTTLS by comparing it to an OpenSSL channel. |
| URL | http://www.safecloud-project.eu/sites/safecloud-project.eu/files/uploads/docs/publications/NCA_2016_4.pdf |
| DOI | 10.1109/NCA.2016.7778620 |
vtTLS: A Vulnerability-Tolerant Communication Protocol (short paper)
Apr
13
2017
By Paula Rodrigues