Cryptology ePrint Archive: Report 2020/1180
MultiTLS: Secure communication channels with cipher suite diversity
Ricardo Moura and David R. Matos and Miguel Pardal and Miguel Correia
Abstract: TLS ensures confidentiality, integrity, and authenticity of communications. However, design, implementation, and cryptographic vulnerabilities can make TLS communication channels insecure. We need mechanisms that allow the channels to be kept secure even when a new vulnerability is discovered.
We present MultiTLS, a middleware based on diversity and tunneling mechanisms that allows keeping communication channels secure even when new vulnerabilities are discovered. MultiTLS creates a secure communication channel through the encapsulation of k TLS channels, where each one uses a different cipher suite. We evaluated the performance of MultiTLS and concluded that it has the advantage of being easy to use and maintain since it does not modify any of its dependencies.
Category / Keywords: implementation / implementation, message authentication codes, secret-key cryptography
Original Publication (in the same form): 35th IFIP TC-11 SEC 2020 International Information Security and Privacy Conference
DOI: 10.1007/978-3-030-58201-2_5
Date: received 26 Sep 2020
Contact author: miguel p correia at tecnico ulisboa pt
Available format(s): PDF | BibTeX Citation
Version: 20200930:074006 (All versions of this report)
Short URL: ia.cr/2020/1180
[ Cryptology ePrint archive ]