An Approach to Implement Cryptographic Protocol Version Downgrade Within a Secure Internal Network: TLS 1.x to SSL
Dublin Core
Title
An Approach to Implement Cryptographic Protocol Version Downgrade Within a Secure Internal Network: TLS 1.x to SSL
Subject
SSL
TLS
POODLE
Vulnerabilities
protocol versions upgrade
Description
The end to end encryption of connections over the internet have evolved from SSL to TLS 1.3 over the years. Attacks have exposed vulnerabilities on each upgraded version of the cryptographic protocols used to secure connections over the internet. Organisations have to keep updating their web based applications to use the latest cryptographic protocol to ensure users are protected and feel comfortable using their web applications. But, the problem is that, web applications are not always standalone systems, there is usually a maze of systems that are integrated to provide services to the end user. The interactions between these systems happens within the controlled internal private network environment of the organisation. While only the front ending web application is visible to the end user. It is not often feasible to upgrade all internal systems to use the latest cryptographic protocol for internal interfaces/integration due to prohibitive cost of redevelopment and upgrades to infra and systems. Here we define an algorithm to setup internal & external firewalls to downgrade to a lower version of the cryptographic protocol (SSL) within the internal network for the integration/interfacing connections of internal systems while mandating the latest cryptographic protocol (TLS 1.x) for end user connections to the web application.
Creator
S, Ganeshkumar
Govindaraju, Elango
Source
International Journal of Interactive Mobile Technologies (iJIM); Vol. 13 No. 10 (2019); pp. 179-187
1865-7923
Publisher
International Association of Online Engineering (IAOE), Vienna, Austria
Date
2019-09-25
Rights
Copyright (c) 2019 Ganeshkumar S, Elango Govindaraju
Relation
Format
application/pdf
Language
eng
Type
info:eu-repo/semantics/article
info:eu-repo/semantics/publishedVersion
Non-refereed Article
Identifier
Citation
Ganeshkumar S and Elango Govindaraju, An Approach to Implement Cryptographic Protocol Version Downgrade Within a Secure Internal Network: TLS 1.x to SSL, International Association of Online Engineering (IAOE), Vienna, Austria, 2019, accessed November 6, 2024, https://igi.indrastra.com/items/show/1539