TLS 1.3, Solving new challenges for next generation firewalls
| Key | Action |
|---|---|
| K or space | Play / Pause |
| M | Mute / Unmute |
| C | Select next subtitles |
| A | Select next audio track |
| V | Show slide in full page or toggle automatic source change |
| left arrow | Seek 5s backward |
| right arrow | Seek 5s forward |
| shift + left arrow or J | Seek 10s backward |
| shift + right arrow or L | Seek 10s forward |
| control + left arrow | Seek 60s backward |
| control + right arrow | Seek 60s forward |
| shift + down arrow | Decrease volume |
| shift + up arrow | Increase volume |
| shift + coma | Decrease playback speed |
| shift + dot or shift + semicolon | Increase playback speed |
| end | Seek to end |
| beginning | Seek to beginning |
Share this media
Information on this media
Creation date:
July 2nd, 2019, 4:48 p.m.Add date:
July 2nd, 2019, 5:23 p.m.Number of views:
51 (this month: 8)Company:
StormshieldLicense:
CC BY-SA v4Visibility:
This media is publishedDescription
Transport layer security (TLS) version 1.3 has been standardized in August 2018 by the Internet Engineering Task Force (IETF). This new version of the protocol focuses on enhancing user privacy and security. As a network and security appliance manufacturer, Stormshield’s SNS (Stormshield Network Security) product provides security and application analysis over the previous versions of the TLS protocol (1.0 to 1.2). Service detection in our home-made Intrusion Prevention System for the TLS protocol is based on the server’s certificate availability in the connection handshake. This certificate being now encrypted in TLS 1.3, its analysis requires solving new challenges. In this paper, we explain how we overcame these limitations, without downgrading the security level of the connection.
Speakers
Nicolas Pamart (Stormshield), Damien Deville (Stormshield), Thomas Malherbe (Stormshield)
Bio
Nicolas Pamart is a student at ENSIMAG (École nationale supérieure d’informatique et de mathématiques appliquées de Grenoble). He has been working in apprenticeship at the Stormshield R&D lab for 3 years, in the Intrusion Prevention System (IPS) team.
After obtaining his PhD on smartcard security from the University of Lille 1, Damien Deville has been working at Stormshield for 12 years. First as a Intrusion Prevention System (IPS) Team Manager and then as a Technical Leader, mainly on the IPS subject.
Thomas Malherbe obtained his diploma from ENSTA (École nationale supérieure de techniques avancées) in 2007. He has been working at Stormshield for 2 years as a developper in R&D lab.
Other media in the channel "2019"
774 views, 22 this monthPatrOwl - Orchestrating SecOps with an open-source SOAR platformJuly 3rd, 2019
119 views, 2 this monthBetter curl !July 3rd, 2019
33 views, 2 this monthManaging a growing fleet of WiFi routers combining OpenWRT, WireGuard, Salt and ZabbixJuly 3rd, 2019
31 viewsNo IT security without Free SoftwareJuly 3rd, 2019
31 viewsD4 Project - Design and Implementation of an Open Source Distributed and Collaborative Security MonitoringJuly 3rd, 2019
11 viewsProgramming research, a missed opportunity for secure and libre software?July 3rd, 2019