Slashdot Mirror

← Back to Stories (view on slashdot.org)

EFF's HTTPS Everywhere Detects and Warns About Cryptographic Vulnerabilities

Posted by samzenpus on from the protect-ya-neck dept.

Peter Eckersley writes "EFF has released version 2 of the HTTPS Everywhere browser extension for Firefox, and a beta version for Chrome. The Firefox release has a major new feature called the Decentralized SSL Observatory. This optional setting submits anonymous copies of the HTTPS certificates that your browser sees to their Observatory database allowing them to detect attacks against the web's cryptographic infrastructure. It also allows us to send real-time warnings to users who are affected by cryptographic vulnerabilities or man-in-the-middle attacks. At the moment, the Observatory will send warnings if you connect to a device has a weak private key due to recently discovered random number generator bugs."

46 comments

  1. does it keep track.. ? by gl4ss · · Score: 4, Interesting

    "It also allows us to send real-time warnings to users who are affected by cryptographic vulnerabilities or man-in-the-middle attacks."

    so how does that work? you know who's connected where?

    --
    world was created 5 seconds before this post as it is.
    1. Re:does it keep track.. ? by Anonymous Coward · · Score: 1

      Welcome to the EFF botnet.

    2. Re:does it keep track.. ? by Anonymous Coward · · Score: 0

      It sees you when you're sleeping, it knows when you're awake.

    3. Re:does it keep track.. ? by sociocapitalist · · Score: 2

      We can't answer you as we're all busy installing the addon...please hold...

      --
      blindly antisocialist = antisocial
    4. Re:does it keep track.. ? by Anonymous Coward · · Score: 5, Informative

      so how does that work? you know who's connected where?

      When going to an SSL website, your browser submits a copy of the SSL certificate to the EFF's server.

      The EFF's server does some sanity checking on the certificate to see if it is from a weak key.

      The EFF's server compares the SSL certificate your browser submits with the SSL certificates for the same hostname that the EFF has on file from other users who submitted certificates (or maybe the EFF also tries to connect to the https server themselves).

      If the certificate your browser sees is different from what the EFF expects you to see, the browser plugin displays a nasty warning to the end user.

      Of course, I expect that 99% of end users will still click OK, let me connect anyways despite all the security problems!

    5. Re:does it keep track.. ? by Peter+Eckersley · · Score: 5, Informative

      you know who's connected where?

      Great question. If you have Torbutton installed, the Decentralized SSL Observatory will use Tor to submit the certs via an anonymized HTTPS POST, and warnings (if there are any) are sent back through the Tor network in response.

      If you don't have Torbutton, you can still turn on the SSL Observatory, in which case the submission is direct. The server does not keep logs of which IPs certs are submitted from, though this is of course less secure than using Tor.

      Before you can turn the Observatory on, we have a UI that tries to explain all of this elegantly and succinctly, in language that even not-super-technical users can understand.

      The original design document is here: https://trac.torproject.org/projects/tor/wiki/doc/HTTPSEverywhere/SSLObservatorySubmission

      --
      Fixing copyright
    6. Re:does it keep track.. ? by Onymous+Coward · · Score: 2

      The EFF's server compares the SSL certificate your browser submits with the SSL certificates for the same hostname that the EFF has on file from other users who submitted certificates (or maybe the EFF also tries to connect to the https server themselves).

      So, similar in effect to the "multiple views" or "notaries" method of validation (a là Perspectives / Convergence). How do you know this is what HTTPS Everywhere is doing? I wondered about it and wasn't able to find any information on it, including mentions in feature lists.

    7. Re:does it keep track.. ? by Nimey · · Score: 1

      I don't seem able to turn on the Observatory in Chrome OS.

      --
      Hail Eris, full of mischief...

      E pluribus sanguinem
    8. Re:does it keep track.. ? by Anonymous Coward · · Score: 3, Informative

      Erm, it's disabled by default and they recommend using Tor. They don't want you to trust them to not keep logs and they make it as easy as possible to do so.

    9. Re:does it keep track.. ? by Suki+I · · Score: 1

      "It also allows us to send real-time warnings to users who are affected by cryptographic vulnerabilities or man-in-the-middle attacks."

      so how does that work? you know who's connected where?

      When I first added it to Chrome, it kept "going off" whenever I went to my Blogspot.Com blog. It has stopped now.

      --
      Home of The Suki Series
    10. Re:does it keep track.. ? by Anonymous Coward · · Score: 0

      You're just a fucking idiot. Really.

    11. Re:does it keep track.. ? by Anonymous Coward · · Score: 0

      Of course, I expect that 99% of end users will still click OK, let me connect anyways despite all the security problems!

      Nope, I expect that 99% of end users will not have this extension installed in the first place ...

    12. Re:does it keep track.. ? by muckracer · · Score: 1

      > Nope, I expect that 99% of end users will not have this extension
      > installed in the first place ...

      You might be wrong. It's been, surprisingly, a very popular plugin even for non-technical folks. At least from what I see. But do your part anyway and install it on people's machine's whenever you get the chance to.

    13. Re:does it keep track.. ? by muckracer · · Score: 1

      Hey Peter...thank you and the rest of the folks at the EFF for such great and important work! Beer's on me if we ever run into each other! :-)

    14. Re:does it keep track.. ? by gl4ss · · Score: 1

      okays, thanks for the response. tor makes sense for this perfectly, I guess it's as good solution as one can get now, it's probably not feasible to mirror the entire repo to local.

      --
      world was created 5 seconds before this post as it is.
  2. I'm confused by Anonymous Coward · · Score: 0

    Don't web browsers already come with pre-known public keys/certs to detect Man-In-The-Middle attacks?? I like the HTTPS everywhere part but I don't get why this is useful or needed as of today...

    1. Re:I'm confused by 19thNervousBreakdown · · Score: 4, Informative

      No, they come with pre-trusted cert authorities. And any cert authority can issue a certificate for any domain. So, if somebody "convinces" Verisign to give them a cert for facebook.com, that's it, they are now facebook.com as far as every browser is concerned.

      In fact, sites like Facebook and Google change their certs so often (probably due to load-balancing or the simple challenge of synchronizing a certificate over a global set of datacenters), it's practically a full-time job keeping track of whether this "new" cert is valid or not.

      --
      <xml><I><am><so><damn>Web 2.0</damn></so></am></I></xml>
    2. Re:I'm confused by lgw · · Score: 4, Informative

      Don't web browsers already come with pre-known public keys/certs to detect Man-In-The-Middle attacks?? I like the HTTPS everywhere part but I don't get why this is useful or needed as of today...

      I've read of 3 successful attempts to get fake "Bank of America" certs. One was a cert for "Bank of America\0My Phishing Site", and browers would stop at the null and accept it. One was simply an email request with forged headers to the CA, who responded with a BoA cert without double-checking the origin of the request. One was signed by one of the now-bogus CAs while most browers hadn't yet updated with awareness of that bogosity.

      And those are just the ones I've read about.

      CAs are simply no longer the "trusted 3rd party" needed to prevent MitM attacks. EFF is trying to fill that void, and I'm sure that will work well for a while!

      --
      Socialism: a lie told by totalitarians and believed by fools.
    3. Re:I'm confused by Skapare · · Score: 1

      Updating a cert over 100 servers is not hard. Doing so over 10000 servers is no harder, but it takes longer for the script to run though the list. You did run this as a scripted batch update, right? You aren't logging into each server manually, right?

      --
      now we need to go OSS in diesel cars
    4. Re:I'm confused by Skapare · · Score: 1

      Proof that social engineering is how security fails. It's not the techs to blame. It's the executives ... the dishonest rich.

      --
      now we need to go OSS in diesel cars
    5. Re:I'm confused by Anonymous Coward · · Score: 0

      > CAs are simply no longer the "trusted 3rd party" needed to prevent MitM attacks.

      CAs have *never* been trusted to prevent MitM attacks. In fact, the CA system was never designed to stop MitM attack because it wasn't considered a realistic threat at the time, the Internet was too small at the time.

    6. Re:I'm confused by 19thNervousBreakdown · · Score: 1

      Well yeah, you could do that. Or, since literally no browser warns about changed certificates in their default configuration, you could just do whatever is easiest.

      --
      <xml><I><am><so><damn>Web 2.0</damn></so></am></I></xml>
    7. Re:I'm confused by petermgreen · · Score: 1

      DO you have a source that backs up that outlandish claim?!

      --
      note: i'm known as plugwash most places but i screwd up registering that here somehow in the past and now can't register
    8. Re:I'm confused by Anonymous Coward · · Score: 0

      As a matter of fact, yes: http://www.youtube.com/watch?v=Z7Wl2FW2TcA @ about 12 minutes in.

      Here's a quick and dirty transcription: "[in the 90's] The internet itself was tiny, according to ISC there were less than 5 million hosts on the internet [...] when SSL was designed there were less than 10 sites you could think of in the world you'd want to be secure for some reason [...] SSL was developed at Netscape, there was a lot of intense pressure within that company, this where a series of 4AM decisions gave us JavaScript [...] the thing to remember that when SSL was developed this type of attack was entirely theoretical, the tools didn't exist yet, this type of thing wasn't actually happening with any consistency or had ever happened this is the king of thing where it was like 'well there's one thing called a MITM attack'"

      The talk is well worth watching :)

    9. Re:I'm confused by petermgreen · · Score: 1

      And listening a bit further

      "he was like ssl, yeah I haven't throught about that in a long time. and he was like amazing ..... Oh these certificate authorities whats the deal with them...oh that whole authenticity thing yeah we just threw that in at the end...he was like ssl yeah I mean we were really designing it to prevent passive attacks, the whole man in the middle thing someone told us about that and you know we just kind of threw that thing in at the end, really that whole certificate authority thing it was a bit of a hand wave

      So it sounds like they did put CAs in as an attempt to defend against MITM attacks but they didn't really care too much about whether it worked or not.

      Which makes far more sense than the GGPs claim that the system was not designed to stop MITM attacks at all. If you aren't trying to defend against MITM attacks at all then there really isn't any point in having CAs in the first place.

      Plus the CA system has got weaker over the years, when it was first introduced you had to convince one of a couple of companies that you were either the legitimate owner of the domain or that you are not the legitimate owner of the domain but they should give you the cert anyway. Now you have to convince one of the CAs listed in http://www.mozilla.org/projects/security/certs/included/ or one of the many sub-cas they delegate to that you are either the legitimate owner of the domain or that you are not the legitimate owner of the domain but they should give you the cert anyway.

      --
      note: i'm known as plugwash most places but i screwd up registering that here somehow in the past and now can't register
  3. Part of latest TOR release by stevegee58 · · Score: 1

    I noticed this add-on pop up when I started the latest TOR release. Seems like a good idea.

  4. One more recipient of (part of) my browser history by Cow+Jones · · Score: 1

    So to enable this feature, you basically have to tell them when you visit a site over SSL. Good thing it's the EFF, because we're spreading our browsing history every which way as it is. Phishing detection, WOT, sometimes the browser vendors themselves, not to mention all the ads, cookies and trackers. But I guess the people who are likely to install HTTPSEverywhere know how to protect themselves against the last three (AdBlock+, Ghostery, NoScript, etc).

    CJ

    --

    Ah, arrogance and stupidity, all in the same package. How efficient of you. -- Londo Mollari
  5. Good by eternaldoctorwho · · Score: 2

    I want a browser extension to record and track my connections into a centralized database. It's for my own benefit, you see.

    1. Re:Good by Anonymous Coward · · Score: 4, Insightful

      I want a browser extension to record and track my connections into a centralized database. It's for my own benefit, you see.

      Well, it's only the https connections, and your ISP and the TLAs already have that.

      I would trust the EFF more than I would trust google, omniture, doubleclick, comscore (which slashdot uses), etc.

    2. Re:Good by suutar · · Score: 1

      You don't need a browser extension for that. Your ISP can handle it.

  6. Re:One more recipient of (part of) my browser hist by bmo · · Score: 2

    Good thing it's the EFF, because we're spreading our browsing history every which way as it is.

    Your ISP knows all about you, and your family, and what the cat looks at while you are away.

    Just in case you didn't think the tinfoil was tight enough.

    --
    BMO

  7. Re:One more recipient of (part of) my browser hist by Cow+Jones · · Score: 1

    Your ISP knows all about you, and your family, and what the cat looks at while you are away.

    No they don't, because my cat and I are using SSL :)

    CJ

    --

    Ah, arrogance and stupidity, all in the same package. How efficient of you. -- Londo Mollari
  8. Donate. by metrometro · · Score: 4, Insightful

    The list of people who both care about the non-commercial interests of an end user and are technically proficient to do something about it is pretty small.

  9. Re:One more recipient of (part of) my browser hist by Brian+Feldman · · Score: 1

    So? They cannot legally do anything with it, and there is no way they can be legally compelled to perform espionage without a warrant.

    --
    Brian Fundakowski Feldman
  10. Re:One more recipient of (part of) my browser hist by Anonymous Coward · · Score: 1

    So? They cannot legally do anything with it, and there is no way they can be legally compelled to perform espionage without a warrant.

    You have just blown my mind. You are right, of course, it is only the people who can legally do things with the information that scare me.

  11. Re:One more recipient of (part of) my browser hist by lgw · · Score: 4, Informative

    The TOR browser bundle includes this change (because the HTTPS-everywhere addon auto-updates, IIRC). For those who opt in, the EFF will know far more about their browsing history then their ISP.

    Of course, if you don't trust the EFF's claims that it will be anonymized, I'm not sure why you'd trust the anonymity of TOR, but that's a different topic.

    --
    Socialism: a lie told by totalitarians and believed by fools.
  12. Re:One more recipient of (part of) my browser hist by Brian+Feldman · · Score: 2

    Seems like some perfectly reasonable paranoia, assuming everyone is out to get you all the time. The powers that be can't do much without actually charging you with a crime.

    --
    Brian Fundakowski Feldman
  13. Re:One more recipient of (part of) my browser hist by KhabaLox · · Score: 1

    Your ISP knows all about . . . what the cat looks at while you are away.

    http://barelyferal.tumblr.com/

    --
    Ceci n'est pas un sig.
  14. Re:One more recipient of (part of) my browser hist by Anonymous Coward · · Score: 0

    Your ISP knows all about you, and your family, and what the cat looks at while you are away.

    No they don't, because my cat and I are using SSL :)

    CJ

    I think it's safe to assume your cat is looking at lolcats.

  15. Re:One more recipient of (part of) my browser hist by bmo · · Score: 1

    >barely feral

    Oh dear gawd.

    --
    BMO

  16. Re:One more recipient of (part of) my browser hist by Anonymous Coward · · Score: 0

    or catsgonewild

  17. Re:One more recipient of (part of) my browser hist by Skapare · · Score: 3

    They know where your encrypted packets are going. That is, unless you also encrypted the destination IP address (and if that's so, then I know where your packets are going).

    --
    now we need to go OSS in diesel cars
  18. Re:One more recipient of (part of) my browser hist by Fnord666 · · Score: 1

    So? They cannot legally do anything with it, and there is no way they can be legally compelled to perform espionage without a warrant.

    Legally compelled? Hell, they will do it voluntarily and in return the powers that be will grant them retroactive immunity for their criminal actions. I've seen it happen!

    --
    'The tyrant will always find pretext for his tyranny.' - Aesop's Fables
  19. Re:One more recipient of (part of) my browser hist by Anonymous Coward · · Score: 0

    No, my ISP knows that I open an SSH connection to a dedicated server outside of the USA. They might suspect that all other traffic is tunneled through that link.

  20. What, no auto-updates? by Rich0 · · Score: 1

    You'd think that somebody coming out with version 2 of a security-sensitive browser extension would deploy it in a manner that would ensure auto-updates. I searched in the Chrome Web Store and there was no sign of this. You have to install it directly from their website. That means that it won't auto-update, and I need to remember to install/maintain it on every Chrome profile I have (no auto-syncing).

    I'd rather not have to guess or check whether any particular browser I'm using has the extension installed and up-to-date...