通过 HTTP2 服务器推送和签名 HTTP 交换进行跨域 Web 攻击.pdf

编号:981949 PDF 52页 2.05MB 下载积分:VIP专享
下载报告请您先登录!

1、#BHUSA BlackHatEventsCross-Origin Web Attacks via HTTP/2 Server Push and Signed HTTP Exchange Speaker:Pinji ChenContributors:Jianjun Chen,Qi Wang,Mingming Zhang,Haixin Duan#BHUSA BlackHatEventsTalk Roadmap What is SOP and What has been changed in todays“origin”definition?What novel threats/attacks w

2、ould this change bring to the Web?Are these attacks practical in the real world?Our work:CrossPUSH and CrossSXG attackSome practical attack techniques caused by Web PKI weaknessA real-world case we found#BHUSA BlackHatEvents“URI-based”same-origin policy(SOP)URI-based origintriple of scheme,host,port

3、BrowserWeb Server()SOP IGET http:/ responseWeb Server()SOP is a cornerstone of web security designed to safeguard user data against cross-origin attackse.g.“https”,“”,“443”#BHUSA BlackHatEventsDo you know other definition of origin#BHUSA BlackHatEvents“SAN-based”originHTTP/2 and HTTP/3 consider any

4、hosts listed in the SAN of the certificate are same origin(RFC9110-HTTP Semantics,RFC9113-HTTP/2,SXG draft)Subject Alternative Name(SAN)* TLS certificate is shared with many hosts*,*,admob-,*,* .#BHUSA BlackHatEventsSAN-based origin is more permisssive 96%certificates have multiple domains in SAN li

5、st.Even 3.2%contain domains from different organizations11 Cangialosi F et al.Measurement and analysis of private key sharing in the https ecosystemC/Proceedings of the 2016 ACM SIGSAC Conference on Computer and Communications Security.2016:628-640.multi-domain shared certificate is general#BHUSA Bl

6、ackHatEventsSAN-based origin is more permisssive 96%certificates have multiple domains in SAN list.Even 3.2%contain domains from different organizations1URI-based OriginSAN-based Originhttps:/ is more permissive!1 Cangialosi F et al.Measurement and analysis of private key sharing in the https ecosys

友情提示

1、下载报告失败解决办法
2、PDF文件下载后,可能会被浏览器默认打开,此种情况可以点击浏览器菜单,保存网页到桌面,就可以正常下载了。
3、本站不支持迅雷下载,请使用电脑自带的IE浏览器,或者360浏览器、谷歌浏览器下载即可。
4、本站报告下载后的文档和图纸-无水印,预览文档经过压缩,下载后原文更清晰。

本文(通过 HTTP2 服务器推送和签名 HTTP 交换进行跨域 Web 攻击.pdf)为本站 (竿头日上) 主动上传,三个皮匠报告文库仅提供信息存储空间,仅对用户上传内容的表现方式做保护处理,对上载内容本身不做任何修改或编辑。 若此文所含内容侵犯了您的版权或隐私,请立即通知三个皮匠报告文库(点击联系客服),我们立即给予删除!

温馨提示:如果因为网速或其他原因下载失败请重新下载,重复下载不扣分。
客服
商务合作
小程序
服务号
折叠