Please use this identifier to cite or link to this item:
Title: SSL-TLS security flaws : the BREACH and Logjam attacks
Authors: Ng, Christopher Bin Rui
Keywords: Engineering::Computer science and engineering
Issue Date: 2021
Publisher: Nanyang Technological University
Source: Ng, C. B. R. (2021). SSL-TLS security flaws : the BREACH and Logjam attacks. Final Year Project (FYP), Nanyang Technological University, Singapore.
Abstract: SSL, and its successor TLS, are protocols essential to the security of the modern web. They provide assurances that communications made using them are confidential (private), and that data integrity is maintained. Unfortunately, no protocol is without its flaws, and this is equally true for SSL/TLS. This report aims to examine the BREACH attack, which takes advantage of side-channel leakage as a result of HTTP compression, similar to how CRIME exploited TLS compression. In addition, this report also takes a quick look at other kinds of attacks targeting TLS, namely Logjam, a downgrade attack which exploits legacy export-grade Diffie-Hellman key parameters, similar to how FREAK exploited export-grade RSA cipher suites.
Fulltext Permission: restricted
Fulltext Availability: With Fulltext
Appears in Collections:SCSE Student Reports (FYP/IA/PA/PI)

Files in This Item:
File Description SizeFormat 
SCSE20-0162 - Ng Bin Rui Christopher - FYP Report (Final).pdf
  Restricted Access
2.88 MBAdobe PDFView/Open

Page view(s)

Updated on May 20, 2022


Updated on May 20, 2022

Google ScholarTM


Items in DR-NTU are protected by copyright, with all rights reserved, unless otherwise indicated.