TLS 1.3, Solving new challenges for next generation firewalls
Action | Key |
---|---|
Play / Pause | K or space |
Mute / Unmute | M |
Toggle fullscreen mode | F |
Select next subtitles | C |
Select next audio track | A |
Toggle automatic slides maximization | V |
Seek 5s backward | left arrow |
Seek 5s forward | right arrow |
Seek 10s backward | shift + left arrow or J |
Seek 10s forward | shift + right arrow or L |
Seek 60s backward | control + left arrow |
Seek 60s forward | control + right arrow |
Seek 1 frame backward | alt + left arrow |
Seek 1 frame forward | alt + right arrow |
Decrease volume | shift + down arrow |
Increase volume | shift + up arrow |
Decrease playback rate | < |
Increase playback rate | > |
Seek to end | end |
Seek to beginning | beginning |
Share this media
HLS video stream
You can use an external player to play this stream (like VLC).
HLS video streamWhen subscribed to notifications, an email will be sent to you for all added annotations.
Your user account has no email address.
Information on this media
Transport layer security (TLS) version 1.3 has been standardized in August 2018 by the Internet Engineering Task Force (IETF). This new version of the protocol focuses on enhancing user privacy and security. As a network and security appliance manufacturer, Stormshield’s SNS (Stormshield Network Security) product provides security and application analysis over the previous versions of the TLS protocol (1.0 to 1.2). Service detection in our home-made Intrusion Prevention System for the TLS protocol is based on the server’s certificate availability in the connection handshake. This certificate being now encrypted in TLS 1.3, its analysis requires solving new challenges. In this paper, we explain how we overcame these limitations, without downgrading the security level of the connection.
Speakers
Nicolas Pamart (Stormshield), Damien Deville (Stormshield), Thomas Malherbe (Stormshield)
Bio
Nicolas Pamart is a student at ENSIMAG (École nationale supérieure d’informatique et de mathématiques appliquées de Grenoble). He has been working in apprenticeship at the Stormshield R&D lab for 3 years, in the Intrusion Prevention System (IPS) team.
After obtaining his PhD on smartcard security from the University of Lille 1, Damien Deville has been working at Stormshield for 12 years. First as a Intrusion Prevention System (IPS) Team Manager and then as a Technical Leader, mainly on the IPS subject.
Thomas Malherbe obtained his diploma from ENSTA (École nationale supérieure de techniques avancées) in 2007. He has been working at Stormshield for 2 years as a developper in R&D lab.
Other media in the channel "2019"
989 views, 2 this yearPatrOwl - Orchestrating SecOps with an open-source SOAR platformJuly 3rd, 2019
141 views, 4 this year, 1 this monthBetter curl !July 3rd, 2019
118 views, 5 this year, 2 this monthManaging a growing fleet of WiFi routers combining OpenWRT, WireGuard, Salt and ZabbixJuly 3rd, 2019
33 viewsNo IT security without Free SoftwareJuly 3rd, 2019
34 viewsD4 Project - Design and Implementation of an Open Source Distributed and Collaborative Security MonitoringJuly 3rd, 2019
15 viewsProgramming research, a missed opportunity for secure and libre software?July 3rd, 2019