Detection And Defense Of Man-in-themiddle Attacks Based On SSL

Posted on:2018-10-05

Degree:Master

Type:Thesis

Country:China

Candidate:R Zhao

Full Text:PDF

GTID:2348330542977857

Subject:Computer Science and Technology

Abstract/Summary:

PDF Full Text Request

With the rapid development of mobile Internet technology,Wi-Fi as the main mobile Internet technology of mobile intelligent terminal is more and more widely used.But,Wi-Fi uses radio waves to transmit data,which are very easy to be eavesdropping and jamming,thus faces a number of security threats.A large number of mobile applications use Secure Socket Layer(SSL)/ Transport Layer Security(TLS)to protect personal data such as property data and authentication information.However,the lack of SSL security visual warnings and the improper use of SSL have resulted in many application validation vulnerabilities that make them more susceptible to SSL Man in the Middle(MITM)attacks in the mobile Internet environment.In order to ensure that users can access security Wi-Fi network anytime and anywhere,this paper explores the characteristics of wireless attacks and SSL authentication vulnerabilities,proposes an SSL MITM attacks detection and defense method in mobile Internet.This method studies the security protection system of vulnerabilities discovery,attacks detection and attacks defense.First of all,through the static detection technology to determine whether applications after decompiling use SSL,using dynamic detection technology to detect whether the application has SSL authentication vulnerabilities;Second,honeypot and SSL Proxy technology are used to determine real-timely Wi-Fi network whether there are SSL MITM attacks;Finally,after the discovery of SSL MITM attacks,this method uses port random hopping technology to against the attackers.In this paper,a method of SSL MITM attacks detection and defense in mobile Internet,which provide a complete protection system from vulnerabilities discovery,attacks detection and attacks defense.This method not only can effectively find the SSL authentication vulnerabilities and improve the reliability of SSL MITM attack detection,but also can guarantee the users' personal privacy and security in the current malicious network.Compared with other work,the method of this paper is more safe and reliable in detection,and it is more unique in the aspect of defense.

Keywords/Search Tags:

SSL authentication vulnerabilities, SSL MITM attacks, Wi-Fi, Honeypot, SSL Proxy, Port hopping

PDF Full Text Request

Related items

1	A TLS Security-Enhanced Mechanism Against MITM Attacks
2	Design And Implementation Of A Multichannel Hopping Communication Scheme For Mitigating DDoS Attacks
3	Countermeasures Of Attacks For IEEE8021x Network Access Authentication Techniques
4	Research And Defense Against SSL Mitm Attacks For Android
5	Analysis techniques for exploring emergent vulnerabilities and attacks on mobile devices
6	Research Of Secure Socket Layer MitM Attacks And Defending
7	Research And Implementation Of The Address And Port Hopping Technology For Network Communication
8	Design And Implementation Of Port-Hopping Technology Based On Nonlinear Shift Register
9	Design And Implementation Of Port Scan Detection Based On Honeypot
10	Research And Design On Two Mechanisms About Honeypot