Vulnerabilities of the SSL/TLS Protocol

摘要

This paper analyzes vulnerabilities of the SSL/TLS Handshake protocol, which is responsible forauthentication of the parties in the communication and negotiation of security parameters thatwill be used to protect confidentiality and integrity of the data. It will be analyzed the attacksagainst the implementation of Handshake protocol, as well as the attacks against the otherelements necessary to SSL/TLS protocol to discover security flaws that were exploited, modes ofattack, the potential consequences, but also studying methods of defense. All versions of theprotocol are going to be the subject of the research but emphasis will be placed on the criticalattack that the most endanger the safety of data. The goal of the research is to point out thedanger of existence of at least vulnerability in the SSL/TLS protocol, which can be exploited andendanger the safety of the data that should be protected.