Tibor Jager, Florian Kohlar, Sven Schäge, and Jörg Schwenk
Horst Görtz Ins,tute for IT Security, Bochum
1st BIU Security Day: The Current Status of TLS Security
May 1, 2016
Bar-Ilan University, Israel
Sponsored by vpnMentor.com
50. Summary
• New ACCE security model
• First full security proof for TLS-DHE
• Many follow-up works, but also many open
problems:
– TLS is much more complex – we (and subsequent
“pencil-and-paper” proofs) considered only the
cryptographic core
– Other promising approaches:
• Verified implementa`ons (miTLS)
• Automated Analysis (see Thyla’s talk)
50
51. Summary
• New ACCE security model
• First full security proof for TLS-DHE
• Many follow-up works, but also many open
problems:
– TLS is much more complex – we (and subsequent
“pencil-and-paper” proofs) considered only the
cryptographic core
– Other promising approaches:
• Verified implementa`ons (miTLS)
• Automated Analysis (see Thyla’s talk)
51
Thank you!