Slashdot Mirror

← Back to Stories (view on slashdot.org)

SSL Still Mostly Misunderstood, Even By the Pros

Posted by timothy on from the duh-it's-encrypted dept.

An anonymous reader writes "People still don't understand SSL. This isn't much of a surprise... no one expects that grandma and grandpa know what SSL is and what it does. What is surprising and downright scary is that most IT professionals don't understand SSL, and many consider it to be the be-all, end-all of security in their organization. With all the tools out there to manipulate SSL connections, and the browser vendors unable to settle on a single method of showing if a site is secured by SSL or not, is it any wonder that no one gets it?"

23 of 292 comments (clear)

  1. Moderators, are you all friggin' retards? by Eggplant62 · · Score: 4, Insightful

    Who proofreads these article submissions, anyway? Does anyone?

    1. Re:Moderators, are you all friggin' retards? by Stachybotris · · Score: 5, Funny

      no one expects that grandma and grandpa know how to what SSL is and what it does.

      I just consider this sort of typo a cheap and lazy form of story encryption...

    2. Re:Moderators, are you all friggin' retards? by rockbottoms · · Score: 5, Funny

      I just consider this sort of typo a cheap and lazy form of story encryption...

      I just except the typos for what they are

  2. You're doing it wrong by QuantumG · · Score: 4, Informative

    If you want to write a pretentious article about how people don't understand security of the interwebs, at least get the name right. That's right, SSL hasn't been considered "secure" for at least a decade.

    --
    How we know is more important than what we know.
    1. Re:You're doing it wrong by frozentier · · Score: 3, Insightful

      If you want to write a pretentious article, AT LEAST use correct spelling and grammar if nothing else.

    2. Re:You're doing it wrong by Anonymous Coward · · Score: 5, Insightful

      The article isn't even just pretentious, it's just pointless fluff. The entire thing could have been summarized as "many customers ignore security warnings in browsers and many web developers deploy SSL/TSL in vaguely unacceptable ways which we won't even begin to explain here".

      Really, that article couldn't have been more pointless. WHAT are people doing that they shouldn't be? WHAT are people expecting SSL to do that it doesn't? If you're going to write an article about people's misconceptions of a technology, you could at least spend a single sentence explaining what some of those misconceptions are.

      Pointless and uninformative article is pointless and uninformative.

    3. Re:You're doing it wrong by something_wicked_thi · · Score: 5, Informative

      If you want to write a pretentious response to a pretentious article, try reading the source you're linking to. SSL v2 hasn't been secure for a while, but SSL v3 is fine.

    4. Re:You're doing it wrong by Antique+Geekmeister · · Score: 5, Insightful

      No, I'm afraid it's not. It's still vulnerable to "Do you accept this made-up key" attacks where people have become far too accustomed to accepting unsigned keys, and to the purchase of centrally signed keys. Because the key signatures belong to a central signing authorities that rely on valid credit cards, not personal authentication, there is still only a pretense at genuine security.

      There have been other tools proposed to address these issues, such as the PGP web-of-trust, and the Palladium project's hardware encryption, but they've broken down in practice on the problem of US encryption export regulations, poor closed source implementation that turns out to be easily virtualized, and many essentially social rather than technological issues. Even SSL was handicapped for years by the USA's insane 80-bit limit for SSL in exported software.

    5. Re:You're doing it wrong by muckracer · · Score: 3, Informative

      > Even SSL was handicapped for years by the USA's insane 80-bit limit for SSL
      > in exported software.

      It was 40-bits. Agree with your point...just sayin'.

    6. Re:You're doing it wrong by rgviza · · Score: 4, Insightful

      >No, I'm afraid it's not. It's still vulnerable to "Do you accept this made-up key" attacks where people have become far too accustomed to accepting unsigned keys, and to the purchase of centrally signed keys

      Um, that's a social engineering attack, not a fault of the protocol itself. The protocol is secure, users aren't. To be fair, the browser manufacturers could do a better job of writing the warnings so that anyone could understand them. Again, this is not a fault of the protocol, rather how people use it.

      And adding a layer of PGP to it, would have the _exact_ same issue. Instead of "Do you accept this SSL key" It would be "Do you accept this PGP key". In addition, adding PGP would introduce a whole new slew of security bugs related to added complexity of PGP support in browsers, along with all the bugs guaranteed to be introduced with the additional new code.

      No thanks =D.

      --
      Don't kid yourself. It's the size of the regexp AND how you use it that counts.
  3. SSL is trying to do too much. by argent · · Score: 5, Insightful

    Forcing people to implement both privacy and authentication in one package is half the problem with SSL. For most sites, it's more important to know that the site you're visiting is the same site you visited last time, than knowing that foo.example.com has a signed certificate approved by someone you never heard of. If these two functionalities were separated, so the browser just checked that a "non-certified" site's encryption key hadn't changed and let you through without comment if that was the case, then most sites using old or self-signed certificates would just use the encryption layer, and browsers COULD block access to sites with invalid certificates without causing people so much inconvenience they'd want to switch to a different browser that was less picky.

    (yes, I know that this would probably be implemented using self-signed certificates, but it could be presented to the user as a "low security" site with an appropriate icon and at most a comment that "you haven't visited XXXX.example.com before, it is a low security site..." the first time you see it)

    1. Re:SSL is trying to do too much. by Drencrom · · Score: 5, Insightful

      Totally agree with this. If I dont want to spend money paying a certification authority I should be able to encrypt anyway without the browser warning the user in big red letters that I am a pirate. Firefox warnings are geting worse in each version and, for the user perspective, it seems that encrypting with a non official certificate is much worse than not encrypting at all. By the way I use cacert to generate my certificates; it should be inlcuded in the default Firefox certification authorities list. I suspect there is money involved in getting into that list though.

    2. Re:SSL is trying to do too much. by argent · · Score: 3, Funny

      Everyone knows the world will end in 2012.

      Oh come on, nobody's using that old stone circle computer technology any more. Half of the Machu Picchu site is missing, they've lost the Nazca Plain key server, Avesbury is completely trashed (half the stones there are uncalibrated replacements), and Stonehenge was originally just a backup ring in case the Avon flooded: I bet you couldn't get a millithaum per second out of it even on the equinox AND with a FULL team of chanters on hand.

  4. You didn't get it right either... try "HTTPS" by WD · · Score: 4, Informative

    The correct term is "HTTPS". HTTPS, which can use various versions of SSL or TLS, is still mostly understood. Even by the pros.

  5. Re:and WHY doesn't Slashdot use HTTPS? by pjt33 · · Score: 5, Informative

    How would HTTPS help? You'll still probably do an unencrypted DNS lookup for idle.slashdot.org.

  6. As usual, no one wants to be the leader. by Futurepower(R) · · Score: 5, Interesting

    This article would be funny if it weren't so sad. What's the reason computer professionals don't understand SSL? Bad documentation. And neither the Slashdot summary or the article to which Slashdot links is willing to link to documentation.

    The Wikipedia explanation of SSL helps. This explanation helps, also.

    The Do It Yourself SSL Guide is useful.

    1. Re:As usual, no one wants to be the leader. by Chrisq · · Score: 3, Informative

      In general Java devs know ZIP about anything out side of a JAR file.

      They may not even know that JAR files are ZIP format.

  7. Of course IT proffessionals don't get it by Malc · · Score: 5, Insightful

    Have you ever tried teaching yourself the basics behind SSL, such as PKI and X.509 certificates? In an industry full of jargon and technalese, the security people are some of the worst for explaining things. The documentation out there is poor and cryptic. Ever wonder why encrypted or signed email never took off? Look no further than GnuPG or the Enigmail plug-in for Mozilla. Try finding out what DER encoding is, or ASC.1, or what PKCS#7 means. None of it's straight-forward, even for technical people.

  8. OpenSSL: [STILL INCOMPLETE] by Futurepower(R) · · Score: 5, Funny

    The OpenSSL web site lists "[STILL INCOMPLETE]" for each of its manuals.

  9. it's the browser implementation by circletimessquare · · Score: 4, Insightful

    as the guy said in the article, it should kick you from a session at expired certs, not allow click through options

    if the cert is expired/ unverifiable, the browser should simply kick the session, end of story

    that should really be the only option available to anyone. its psychological: take this seriously, sorry for the inconvenience. otherwise, lazy admins will let their expired/ malformed certs hang out there for a lot longer (which i've seen even on a credit card site: capital one), because users just easily circumvent the roadblock. they'll definitely notice if no users can get through, and the angry emails pile in their inbox

    i only allow https admin connections to my router, which of course means my browser screams about being unable to verify any certs... since i'm on a subnet. and i bet there are many other valid situations where expired/ unverified certs still represent a valid connection

    however, add up all the valid situations where you want to continue an uncertified https connection, and you are left with nothing but a hill of beans in comparison to the mch more massive problem of psychologically just not taking https seriously enough

    now you just have to convince the 3/4/5 major browser flavors to implement this new status quo

    maybe the certificate authority should simply kick insecure browsers regardless (is that passed to the certificate authority during verification of cert?). that would get browser coders and vendors to notice. of course, what the browser report themselves can be hacked/ finessed, but if that's done maliciously, you're box is already owned, and its already game over regardless through a lot more powerful avenues

    --
    intellectual property law is philosophically incoherent. it is your moral duty to ignore it or sabotage it
  10. MITM attack on browser downloads by aembleton · · Score: 4, Interesting

    With the exception of pre-installed machines, we all have to download our web browsers. What would stop someone carrying out a man in the middle attack on a web browser or distribution download that provided a different Firefox that contains different CA keys. These CA keys could be designed to work the same with https websites, but would allow a man in the middle to also read off the information being transmitted.

    Admittedly this would be very hard to do, but theoretically possible and with the resources of a nation state this may have already been done. As most machines are now built in the far east, what would stop the IE that ships with your computer from also having altered CA keys?

    Would it even be possible to detect this? You could use MD5 checksums on your downloads, but most of the websites that show an MD5 are unsecure, so they could easily be showing a manipulated version of the checksum.

    This strikes me as one of the biggest flaws of our reliance on SSL v2, v3, whatever.

    Please tell me that this isn't possible.

  11. SSL has 7 times as many hits as TLS by tepples · · Score: 4, Funny

    Good luck. Google has 9,610,000 hits for ssl certificate and 1,350,000 hits for tls certificate.

  12. Bug 215243 by tepples · · Score: 5, Informative

    By the way I use cacert to generate my certificates; it should be inlcuded in the default Firefox certification authorities list. I suspect there is money involved in getting into that list though.

    CAcert failed a DRC audit. Bug 215243 comment 158 has the details.