Slashdot Mirror

← Back to Stories (view on slashdot.org)

Google Chrome Will Soon Detect Man-in-the-Middle Attacks (bleepingcomputer.com)

Posted by EditorDavid on from the surfing-with-security dept.

An anonymous reader writes: Google Chrome 63 will include a new security feature that will detect when third-party software is performing a Man-in-the-Middle (MitM) attack that hijacks the user's Internet connection.... Most MitM toolkits fail to correctly rewrite the user's encrypted connections, causing SSL errors that Chrome will detect. The new Chrome 63 feature is in the form of a new warning screen. This new error will appear whenever Chrome detects a large number of SSL connection errors in a short timespan, a sign that someone is trying -- and failing -- to intercept the user's web traffic. This includes both malware and legitimate applications, such as antivirus and firewall applications. The new Chrome error won't show up for all antivirus and firewall software, but only for those that do not rewrite SSL connections in a proper way, resulting in SSL errors.
Chrome 63 is set for release on December 5, but users can already test it by enabling it in the Google Chrome dev branch.

86 comments

  1. Excellent! by Anonymous Coward · · Score: 0

    More completely indecipherable messages that to the average user translate to: "My web browser is broken".

    With all the work Chrome has put into securing plugins and HTTPS, it's soon going to be completely unusable for any legitimate commercial use of the web.

    Wonder how many AV products this will break?

    1. Re:Excellent! by DontBeAMoran · · Score: 1

      You haven't been talking to the same people as me. When the browser throws an error, they blame the website.

      --
      #DeleteFacebook
    2. Re: Excellent! by Monster_user · · Score: 2

      Shouldn't break anything. Really just one more pop-up that the users will ignore to their own detriment.

    3. Re:Excellent! by SeaFox · · Score: 1

      You haven't been talking to the same people as me. When the browser throws an error, they blame the website.

      Really? You must not work support. When anything doesn't work properly, it's the ISP's fault, according to the customer.
      Especially when it's a script error or the site itself is down.

  2. Alas poor squid by Presence+Eternal · · Score: 0

    I'm not an expert in these things, but I suspect this is another nail in the coffin for homebrew routers. I tried making one, but I found the ostensible benefits either didn't work due to https or were already featured in my four year old Asus router.

    1. Re:Alas poor squid by scdeimos · · Score: 4, Informative

      What? How does squid break HTTPS connections? Proxy servers don't do anything special with HTTPS connections - the browsers setup a tcp tunnel using the CONNECT command and from there on the proxy server's just copying bytes back and forth.

      It's a given that the usefulness of proxy servers is reducing as the percentage of HTTPS-only web sites increases. Eventually all they'll be good for is caching of apt update packages. But any proxy actually breaking HTTPS connections is itself defective.

    2. Re:Alas poor squid by Anonymous Coward · · Score: 0

      I hate update packages that aren't appropriate.

    3. Re:Alas poor squid by Sigma+7 · · Score: 0

      But any proxy actually breaking HTTPS connections is itself defective.

      That's why some proxy servers support a form of SSL bump, which rewrites the SSL connection but leaves the underlying content intact. This does require creating a custom root+intermediate certificate, but gets the job done without the browser squacking.

      If I can do it with in my personal proxy server (to cache https sites as I visit them), then malware can do it on any system. I get the green lock symbol, the word "secure", and none the wiser about someone hacking in.

    4. Re:Alas poor squid by Presence+Eternal · · Score: 1

      Kind of what I meant. I tried it and quickly realized that everything I visited repeatedly was https. Actually enabling a lot of the features you'd get from a homebrew required man in the middle stuff for that reason.

    5. Re:Alas poor squid by scdeimos · · Score: 1

      I have no sympathy for anyone rewriting SSL traffic so they can cache it/inspect it/whatever. You've created your own MiTM problem right there and deserve to be hacked.

    6. Re:Alas poor squid by Anonymous Coward · · Score: 0

      If you've got malware that can modify your certificate stores, you're already screwed.

    7. Re:Alas poor squid by DarkOx · · Score: 1

      Yes wanting to know what my bluray playing is up to when it calls home, makes me a bad person. Check

      --
      Repeal the 17th Amendment TODAY! Also Please Read http://www.gnu.org/philosophy/right-to-read.html
    8. Re:Alas poor squid by swillden · · Score: 1

      Yes wanting to know what my bluray playing is up to when it calls home, makes me a bad person. Check

      Your bluray player will accept the self-signed cert provided by your proxy as legitimate, instead of expecting the cert of its actual home server? That's possible, but it just means the bluray player software is broken, and if the manufacturer is really trying to do something sneaky, they'll fix it in the next update as soon as they realize someone is looking.

      --
      Note to ACs: I usually delete AC replies without reading them. If you want to talk to me, log in.
    9. Re:Alas poor squid by Anonymous Coward · · Score: 0

      It would be *really* nice for there to exist a version of HTTPS that is in the clear, but signed. This gets you most of the benefit of HTTPS for things like news websites or the CSS stylesheets, static images, etc. on others for which the server sends the same content to everyone (so no privacy implications), but would let it safely be cached. Having such a thing would make low-bandwidth connections a great deal more tolerable.

    10. Re:Alas poor squid by SuricouRaven · · Score: 1

      Have some sympathy for those of us who work in education. We have a legal requirement to filter and monitor for child protection reasons - if we couldn't MITM, we'd have no choice but to block SSL entirely except for whitelisted sites. Filtering on domain name alone isn't good enough when so many sites feature user-generated content and comments.

    11. Re:Alas poor squid by jon3k · · Score: 1

      A lot of proxy's will support SSL/TLS termination. A lot of web proxies support this. You use a GPO to push a trusted root to your users, then you terminate their SSL sessions and create a new tunnel using your trusted cert, then inspect the traffic contents. It's usually called "TLS Inspection" or "SSL Decryption" or something like that. By the way, I'm not making any moral judgement on if this is right or wrong.

    12. Re:Alas poor squid by Sigma+7 · · Score: 1

      If you've got malware, you're screwed regardless of whether it can alter your certificate stores.

    13. Re:Alas poor squid by Sigma+7 · · Score: 1

      Protip: If someone knows enough about HTTPS to successfully do a MitM without the browser squaking, then they're not likely they're going to be hacked by their own MitM method.

      Modern "hacking" attempts instead rely on other social engineering routes, such as the Punycode URL showing up as "Secure" and on apple.com, with the user being unable to tell if something is wrong. The other common route is using a browser exploit to automatically execute code, as done for two consecutive decades.

      So before you complain about insecure activity by someone who knows what they're doing, maybe you should do some work in dampening well known browser exploits.

  3. Firefox as well please by jonwil · · Score: 4, Insightful

    This is one Chrome feature I wish Firefox (and browsers that use the same codebase) WOULD copy.

    1. Re:Firefox as well please by Anonymous Coward · · Score: 0

      really why? it is only going to catch poorly written code (both good and bad), net result will simply be malware writers write better harder to detect code. If anything it is a net negative as at least if you knew what you were looking for good firewalls and NiS could pick up the poor SSL rewrite.

    2. Re:Firefox as well please by Anonymous Coward · · Score: 0

      Firefox detects when DNS has been tampered with.

    3. Re:Firefox as well please by Anonymous Coward · · Score: 0

      as long as it can be turned off when doing web development and debugging ... for stuff like that.. wireshark and others are vital

  4. Why not? by Anonymous Coward · · Score: 0

    Google is basically a trojan horse that has all your data and browsing habits and gives them away to the NSA, so why shouldn't they protect about MitM attacks. Makes sense to me.

    1. Re:Why not? by reboot246 · · Score: 2

      I've always thought that Google WAS the (evil) man in the middle.

    2. Re:Why not? by Anonymous Coward · · Score: 0

      Why would the NSA bother with MITM? Surely they have gotten themselves the encryption keys for the root certificates and all others. Being a government agency, they can simply demand that stuff domestically - and wield sufficient resources to extract most foreign keys through spy operations. https is then transparent to them.

      Oh, of course. They have some pretend MITM attacks to make you think they haven't got the keys already.

  5. error cause by bugs2squash · · Score: 3, Insightful

    I don't see why MITM attacks intended to capture information would cause SSL errors. I could see there being errors while breaking into an existing connection or poisoning ARP or whatever nefarious tricks are used to force the traffic through the MITM, but surely Mallory is smart enough not to mangle the messages he wants to intercept and preserve and besides, I always thought the SSL connection between the victims and the MiTM were pristine, normal SSL connections in their own right. Maybe I suppose if they wanted to modify content on the way through, but even then maybe an application layer error, not an SSL issue. Enlighten me...

    --
    Nullius in verba
    1. Re:error cause by Sigma+7 · · Score: 2

      I don't see why MITM attacks intended to capture information would cause SSL errors

      If the Mitm just sees the bits transmitted between two points, there won't be a problem. However, the MitM attack wants the decoded information, and that requires cracking SSL.

      The operating system (or browser) has a set of public root certificates, all of which are used to verify a chain of trust of other certificates. The theory is that the SSL certificate is authentic towards an intermediate certificate, and in turn is authentic to a root certificate.

      In a MitM attack, an SSL certificate is generated but doesn't validate correctly if checked against the intermediate certificate. Alternatively, it could be valid, but not towards a certificate known by the client.

    2. Re:error cause by Anonymous Coward · · Score: 0

      If the MITM has a valid cert matching the root store, it's over. This sounds like it needs some reference (pinned certs?) otherwise it really means, "MITM software that is lazy and breaks negotiation will be detected".

      Root store -> Game over

    3. Re:error cause by Opportunist · · Score: 1

      A certificate that doesn't match the page it is supposedly for or a self signed certificate that isn't part of the browsers trust chain is already detected and reported, what's the news?

      --
      We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
    4. Re: error cause by Anonymous Coward · · Score: 0

      If it keeps happening chrome has a new warning pop up that mentions MitM is possibly occurring.

    5. Re:error cause by thegarbz · · Score: 1

      That Chrome will treat multiple successive errors differently than simple trust chain issues. It's the difference between "This server is misconfigured" and "every server you attempt to access appears to be misconfigured, maybe someone is messing with your connection".

      Anyone in IT would have recognised the problem anyway. Average dumb users are less likely to.

    6. Re:error cause by Opportunist · · Score: 1

      So instead of every https-page I visit coming up with red URI bar and "this connection is not secure" warning, I will get a red URI-bar on every https-page I visit and "these connections are not secure" warnings?

      Chrome is trying to find a way to make red alert redder?

      --
      We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
    7. Re:error cause by thegarbz · · Score: 1

      So instead of every https-page I visit coming up with red URI bar and "this connection is not secure" warning, I will get a red URI-bar on every https-page I visit and "these connections are not secure" warnings?

      No you get a full page alert that something is messing with your system.

      Chrome is trying to find a way to make red alert redder?

      No. There's a difference between getting an alert about a security event and getting an alert about systemic problems on your connection. And that's kind of the point.

  6. Version Bloat by Anonymous Coward · · Score: 0

    Version 63 already? This things more bloated than Donald Trump's ego.

  7. Hotel Wifi by ShakaUVM · · Score: 1

    Will this further break hotel wifi?

    It is irritating enough as it is, with my web browsers screaming about invalid certificates and possible MitM attacks when simply trying to pull up a Wifi login screen.

    1. Re: Hotel Wifi by Anonymous Coward · · Score: 1

      Use a vpn

    2. Re: Hotel Wifi by Monster_user · · Score: 3, Insightful

      Typically have to agree to the wifi before the router will allow ANY traffic, including VPN traffic.

    3. Re:Hotel Wifi by KiloByte · · Score: 4, Insightful

      Will this further break hotel wifi?

      Nope, that hotel wifi is already broken.

      It is irritating enough as it is, with my web browsers screaming about invalid certificates and possible MitM attacks when simply trying to pull up a Wifi login screen.

      Because it is a MitM attack? The motive isn't relevant here: the hotel tries to intercept your SSL session and present you something that isn't your intended destination.

      --
      The creatures outside looked from Alt-Right to Antifa; but already it was impossible to say which was which.
    4. Re:Hotel Wifi by ShakaUVM · · Score: 1, Insightful

      >Because it is a MitM attack?

      Yes, I know it is. And if the browser would let me go to the damn page, I could get rid of it.

      >Nope, that hotel wifi is already broken.

      Yes, it is. But it's not a security threat either.

    5. Re:Hotel Wifi by KiloByte · · Score: 1

      But it's not a security threat either.

      And how exactly do you tell a hotel who's 100% honest from one that wants to get some extra dime on the side -- be it in gathering data on visitors, displaying ads, or something more nefarious?

      --
      The creatures outside looked from Alt-Right to Antifa; but already it was impossible to say which was which.
    6. Re:Hotel Wifi by swillden · · Score: 1

      >Because it is a MitM attack?

      Yes, I know it is. And if the browser would let me go to the damn page, I could get rid of it.

      Go to an HTTP URL. Then the hotel proxy can intercept it without trouble, you can get logged in, then go to the page you actually wanted to visit.

      This is a simple, excellent solution for people who understand what's going on. I have no idea how the other 99% of the population is supposed to use hotel Wifi. Hotels may have to find another approach when the vast majority of the web implements HSTS.

      Actually, I think what will really happen is that browsers and/or OSes will do Wifi login page detection. Of the OSes that I often use, Android and Mac OS X already do. When a Wifi connection is established, they send a test HTTP request to a particular HTTP-only site. If the data they get is what's expected, great. If they get a Wifi login page, they prompt the user to log in.

      --
      Note to ACs: I usually delete AC replies without reading them. If you want to talk to me, log in.
    7. Re:Hotel Wifi by Anonymous Coward · · Score: 0

      HTTP URLs are getting more and more scarce. I used to use Slashdot for triggering sign-on pages, thinking that if they haven't yet figured out Unicode, then they are going to be stuck on http for decades to come. But now even Slashdot automatically uses HTTPS in my browser.

    8. Re:Hotel Wifi by swillden · · Score: 1

      Yeah, slashdot uses HSTS, so your browser should never sent HTTP requests to slashdot.

      FWIW http://www.google.com/ does not use HSTS. For this exact reason, I'd guess. So your browser will send HTTP requests to google.com. If the request isn't intercepted you'll get back a 301 redirecting you to https://www.google.com/ so in the normal case it will immediately switch to TLS mode, but in the case that it's intercepted by a login page the login page will work.

      I have no idea how long that will continue to be the case.

      --
      Note to ACs: I usually delete AC replies without reading them. If you want to talk to me, log in.
    9. Re:Hotel Wifi by ShakaUVM · · Score: 1

      Being able to do a one-time override to connect to a hotel login screen doesn't compromise by ability to use https everywhere else, which is my normal means of operation.

  8. There goes the corporate market. by Anonymous Coward · · Score: 1

    Not sure why Google would want to cut itself out from pretty much every fortune 500 company.

    The legal requirements and the diligence duty require big companies to MTM all encrypted traffic.

    Just tested the dev channel, and yep, the warnings make the browser pretty much unusable.

    Farewell Google.

    1. Re:There goes the corporate market. by Anonymous Coward · · Score: 0

      You can switch to Firefox but they will copy that feature in 6 monthes.

    2. Re:There goes the corporate market. by CrankyFool · · Score: 3, Insightful

      I work in a Fortune 500 company. They don't MITM all (or, hell, any) encrypted traffic. I question your assertion that this is required by legal requirements. We're a PCI Level 1 provider; we're covered by SOX. No MITM. What evidence do you have that this is "required"?

    3. Re: There goes the corporate market. by Anonymous Coward · · Score: 0

      A lot of F500 _and_ F200 companies use security products that effectively do man in the middle on https traffic by redirecting all browsers through a proxy whose certs the browsers trust. As stated above, many believe its a regulatory requirement (notably ITAR for companies whose business is covered by it). Whether that's actually true or not, or "not everyone is doing it", doesn't matter. It _is_ happening, and _is_ dangerous. But from the info on this new feature published, I'm not entirely clear it will detect these kinds of systems.

  9. Um ... by fahrbot-bot · · Score: 2

    Most MitM toolkits fail to correctly rewrite the user's encrypted connections, causing SSL errors that Chrome will detect.

    Shouldn't all browsers already detect incorrect encrypted connections and/or SSL errors? Otherwise, what's the point?

    --
    It must have been something you assimilated. . . .
    1. Re:Um ... by Opportunist · · Score: 2

      If browsers complained about SSL errors, questionable, dated ciphers and odd configurations, a lot of pages would be considered "insecure".

      Want proof? Take your favorite webpage and get a report from SSLlabs about it. And if you want more, throw the page against Securityheaders, too.

      If you don't mind losing some sleep, try it with your favorite online banking page.

      --
      We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
    2. Re:Um ... by mikeebbbd · · Score: 1

      Slashdot get's an "A" from SSLLabs (only minor complaints), but and "E" out of "G" for headers (several missing that they want).

    3. Re:Um ... by thegarbz · · Score: 1

      They do. The difference here is that chrome will detect repeated errors and then show a different warning.

      A MITM attack would otherwise show up as an error on the SSL trust chain. This warning is saying "hey you got a lot of trust issues recently, you sure someone isn't meeting with you?"

    4. Re:Um ... by thegarbz · · Score: 1

      *messing with you, damn autocorrect.

  10. Props for the (futile) effort by Opportunist · · Score: 1

    If people really gave a shit about it, they already could. It is already very possible, with every browser out there, to identify broken certificate chains and bogus certificates. Every single browser out there first displays a "this connection is not secure" warning. Chrome adds a red URL bar with a big, red "NOT SECURE!" next to it.

    You know what really bugged me to no end? That the only thing HSTS added to the mix was that people are now complaining about a page not letting them in because "something is broken in the browser". And they want to do that away. And if you try to explain, what you get is a "hey, what do you want, it's encrypted so it's safe, just get rid of that certifithingamajig there."

    You cannot fix stupid.

    --
    We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
    1. Re:Props for the (futile) effort by sexconker · · Score: 1

      The problem is that I need to accept self signed certs, SSLv3 certs, etc. from copiers, switches, UPS units, etc.

      Let ME choose. Warn all you want, but let ME fucking choose. I know what I'm doing, you cocksluts.

    2. Re:Props for the (futile) effort by Anonymous Coward · · Score: 0

      You cannot fix stupid.

      The stupid already accepts ads everywhere. Why would they fuss over a "not secure" warning? Can't they ignore it along with the ads? Or do they actually read all the ads? Must be stupid then . . .

    3. Re:Props for the (futile) effort by Opportunist · · Score: 1

      There is a difference between accepting a risk and ignoring a risk. The former is a way to deal with risks, the latter isn't.

      If you make a conscious decision to accept a risk after knowing it, weighing it against the alternatives and eventually coming to the conclusion that accepting the risk is the best way to deal with it, great.

      The problem is that most people don't do that.

      --
      We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
    4. Re:Props for the (futile) effort by sexconker · · Score: 1

      No, the problem is the browsers are designed with the attitude that the browser always knows better than the user. That's fine for most people, but it really fucks people like me over. At least Google still lets you accept self-signed certs. But if you've got an SSLv3 device all the browsers throw up a hard "NO" and refuse to connect. Firefox used to let you disable the enforcement in about:config, but not anymore. IE used to let you click a few times to expose the advanced option and connect anyway. I don't know what Google did prior to all the Poodle/Heartbleed/FancilyNamedExploit shit recently.

      I have to keep an older, portable version of Firefox around to connect to a bunch of hardware on my own subnet, often on my very desk.

  11. The Ultimate Man In The Middle by 93+Escort+Wagon · · Score: 2

    Will Chrome warn people about the attempted information interception as it tells them they should log into their Google account before browsing?

    --
    #DeleteChrome
    1. Re:The Ultimate Man In The Middle by fibonacci8 · · Score: 2

      Each warning will automatically be posted to twitter and facebook, with an option to opt out in chrome://settings.

      --
      Inheritance is the sincerest form of nepotism.
    2. Re:The Ultimate Man In The Middle by thegarbz · · Score: 1

      Why would it? The chain of trust isn't broken by logging into your Google account.

      By comparing an MITM to Google's collection it shows you're either trolling, or completely incapable of understanding differences in trust.

  12. Just more confusion by Anonymous Coward · · Score: 0

    I just think a lot a fake warnings have come about from these real warnings. Does the average person have the ability to decipher what is a real warning and what is fake?

  13. Firewalls and anticirus whitelisted by manu0601 · · Score: 1

    This includes both malware and legitimate applications, such as antivirus and firewall applications

    It would have been a good opportunity to warn the user about security software that intercept SSL. There is a real security hazard here, as we have no idea how good theses SSL client implementation are. Does it properly validates certificates, for instance?

  14. im starting with the man in the middle by Anonymous Coward · · Score: 0

    I'm Asking Him To Change His Ways
    And No Message Could Have Been Any Clearer
    If You Wanna Make The World A Better Place
    Take A Look At Yourself, And Then Make A Change

  15. Impossible by sexconker · · Score: 1

    MITM attacks are impossible to detect without physical ownership and inspection of all links and devices along the path.

    1. Re:Impossible by Anonymous Coward · · Score: 0

      Yeah, in theory someone could replace the Chrome binary with its embedded Google decryption key, but at that point it's not Chrome failing to warn you, it's the Trojan failing to tell you that it's facilitating some (foreign?) government agency's MITM attack on you.

    2. Re:Impossible by thegarbz · · Score: 1

      Sure if you assume a perfect attacker. But most are not.

    3. Re:Impossible by QuietLagoon · · Score: 1

      MITM attacks are impossible to detect without physical ownership and inspection of all links and devices along the path.

      Perhaps being able to detect "most" or even "some" MITM attacks, if the detection process is low cost, is an improvement.

    4. Re:Impossible by sexconker · · Score: 1

      Sure, but I'm more worried about a MITM that has physical access to wires along the path.

      You can't detect or stop that kind of attacker. You can prevent them from reading or altering your packets by using encryption. On today's internet that means trusting the key exchange and cipher negotiation protocols as well as the cipher itself. However, it's also known that that type of attacker typically has the ability to create "valid" certificates for any domain, knows of unpublished vulnerabilities in the protocols and weakensses ciphers, has influence in the design of the cipher itself, etc.

      Certificate pinning is a great way to stop that kind of attacker (assuming you trust the crypto and the cert you've pinned), but recently, people have turned their backs on cert pinning. It's mind boggling.

    5. Re:Impossible by SuricouRaven · · Score: 1

      They are actually quite easy to detect, providing one end has a public key signed by a mutually trusted party. That's what SSL certificates are for.

  16. Is this feudal security? by Anonymous Coward · · Score: 0

    Is this so to speak feudal security? Being ruled by a browser vendor?

    Also, how could I possibly detect a MITM attack if a government agency can make use of somebody else's digital certificate for tls/https, to tamper with, replace, or surveil a webpage I am visiting with tls/https?

    1. Re:Is this feudal security? by Jerry · · Score: 1

      By blocking their ability to be a MITM.
      Use a P2P app: IPFS, ZeroNet, I2P or Freenet and leave that walled prison that Google, Facebook, Twitter and the MNM are setting up.
      IF they succeed you will be digitally shackled.

      --

      Running with Linux for over 20 years!

  17. Re:Does it prevent Google from tracking you by Big+Hairy+Ian · · Score: 1

    I do hope it can be turned off I regularly use packet sniffers (Same basic idea as MIM Attack) to record user sessions which I then turn into Performance Test Scripts which is a hard enough job to start off with without having to click on an error message every time I interact with the browser.

    --

    Build a Man a Fire, and He'll Be Warm for a Day. Set a Man on Fire, and He'll Be Warm for the Rest of His Life.

  18. Wifi login screen by DrYak · · Score: 1

    The latest versions of Firefox opens a pop-bar telling you that this is probably a Wifi log-in screen and gives your the choice to open the login screen in a new tab so you can connect.

    --
    "Sufficiently advanced satire is indistinguishable from reality." - [Tips: 1DrYakQDKCQ6y52z6QbnkxHXAocMZJE61o ]
    1. Re:Wifi login screen by ShakaUVM · · Score: 1

      Not with this hotels' Wifi, apparently. I have the latest version of the big three browsers.

      I don't dispute that the hotel wifi was probably badly configured, but not being able to disable the security measures just to click through a login screen is bad design on the web browsers' part.

  19. Certificate patrol by DrYak · · Score: 1

    certificate patrol is an example of firefox add-on that can detect un-expected changes of certificates.

    (So if suddenly a website isn't signed by "DigiCert" but by China's government you'll be alerted).

    --
    "Sufficiently advanced satire is indistinguishable from reality." - [Tips: 1DrYakQDKCQ6y52z6QbnkxHXAocMZJE61o ]
  20. SSL protocol by DrYak · · Score: 5, Informative

    I don't see why MITM attacks intended to capture information would cause SSL errors {...} I always thought the SSL connection between the victims and the MiTM were pristine, normal SSL connections in their own right. Maybe I suppose if they wanted to modify content on the way through, but even then maybe an application layer error, not an SSL issue. Enlighten me...

    ONE of the part of the SSL protocol works by having both end points agree on a common password.

    The usual technique used is Diffie-Hellman or Elliptic Diffie-Hellman : it's a special cryptographic way in which two end point can agree on a common random password, and nobody else from the outside is able to guess it. (they have a way to exchange a shared secret).

    (it's complicated, but it relies on special system in which you can add things together commutatively, but not separate them :
      - e.g. it's easier to multiply prime number than factor the product.
      - e.g.: elliptic curve maths posses an easy "addition" operation, but no trivial way to do "subtraction".
    Each side picks a random number side 1 chooses A, side 2 chooses B.
    Then they together publicly pick a common number C.
    Side 1 computes A+C and sends it to Side 2
    Side 2 computes B+C and sends it to Side 1.
    External observers can't separate A from A+C nor B from B+C, they can only observe C and these (n+C) combinations.
    Side 1 computes (B+C)+A
    Side 2 computes (A+C)+B
    - Those above are the same : it's a password that can only be known to them.
    - External observers could only do (B+C)+(A+C) which is not the same number (and again they can't remove the extra additionnal C from it).)

    So when two end point try to establish a secure connection only they 2 know the password, 3rd parties can't.

    So if a MitM tries to intercept SSL traffic, they need to negotiate a password with the server.
    But because they can only negotiate password between 2 sides, the MitM can't forward the SSL traffic to the victim user, as the user can only negotiate a *different* password. (because in the above detail, they would have guessed a different secret "B").

    So the only way for a MitM to work is for the MitM to negociate a password with the server, and negociate a password with the victim,
    and then decrypt-relay-rencrypt-forward the SSL traffic.

    Then comes the SECOND part of SSL - certificate :

    to make sure that the password you got is actually from the server you intend and not from a MitM, the exchange is also cryptographically signed with key pairs. Only the owner of the secret private key can successful sign a signature that is validated by the publicly known public key.

    Thus, when establishing the SSL traffic, the server will also sign its traffic, with a key that is itself signed by a root certificate provider.
    By seeing that the traffic has a legit signature, the user's browser knows that it comes from the server and not from someone pretending to be the server.

    Then there are only 2 possibilities :

    - most of the time : the MitM attempts fail, because they do not have access to the server's secret key, and can't forge the server's signature to pretend to be the server. They can only propose some bogus signature. The victim's browser realises that something is fishy, and it wasn't talking to the server as it though, but was talking to a MitM impersonator all along.
    You get a big "Wrong certificate" message on the screen.

    - a few key situation : the MitM has a way to forge a false certificate that looks legit (e.g.: they have access to a root certificate provider that will sign such a bogus certificate). This is *only the situation* where the SSL connection itself might look pristine.

    BUT... there are counter measures even in that case :
    - there are other source that can confirm if the correct certificate was used (some relying on DNS)
    - some browser can use "certificate pinning" plugins (Certificate patrol is one such for FireFox) : if suddenly the connection isn't signed by "DigiCert" but by "China's State cert", you know something fishy is happening.

    --
    "Sufficiently advanced satire is indistinguishable from reality." - [Tips: 1DrYakQDKCQ6y52z6QbnkxHXAocMZJE61o ]
  21. this is doubleclick lies by Anonymous Coward · · Score: 0

    the actual purpose, is not to make things secure. As i see it, the actual purpose behind it is to make you not being able to use the web, unless you trust ALL the CA authorities that chrome+windows trust to by default.

    If you have manually distrusted each and every one of those CA parasites... For every cert that Chrome cannot check the chain of trust of, it'll make a booboo, and ask you to submit it to GOOG... And if you dont trust any CA's (as you should, unless you're an idiot) this thing will stop you after a few pages?

  22. CAA and TLSA records in DNS by QuietLagoon · · Score: 1

    Could Chrome also check CAA and TLSA records in a site's DNS to assure the cert being provided is the one the site owner wants to provide?

  23. Stats? by EndlessNameless · · Score: 1

    How often are users actually targeted for MITM attacks? How many have shoddy security applications that handle SSL inspection poorly?

    It's hard to judge the merit without knowing, and I'm betting the balance tips toward the latter. There are a lot of garbage applications out there, even at the enterprise level.

    Because INFOSEC is really: Building a skyscraper with a $5 knock-off multitool.

    --

    ---
    According to the latest ruleset, this post should be modded as Vorpal Flamebait +5.
  24. Comment removed by account_deleted · · Score: 1

    Comment removed based on user account deletion

  25. Google IS the MITM by Jerry · · Score: 1

    and they say they will use their power to block what they don't want you to see. They'll call what they don't want you to see "fake news", and they'll use a George Soros supported filtering app to make that determination. Facebook Twitter, Bill Gates and FireFox approve of that app so no need to be afraid. /sarcasm

    --

    Running with Linux for over 20 years!

  26. Chain of Trust by Anonymous Coward · · Score: 0

    Why would it? The chain of trust isn't broken by logging into your Google account.

    By comparing an MITM to Google's collection it shows you're either trolling, or completely incapable of understanding differences in trust.

    "Chain of trust" and "Google" aren't allowed in the same sentence, per secret ruling of the Supreme Court.

  27. Disable security by DrYak · · Score: 1

    Not with this hotels' Wifi, apparently. I have the latest version of the big three browsers.

    that's strange : I actually had the "there is apparently a log-in screen" pop-bar just the day before....

    but not being able to disable the security measures just to click through a login screen is bad design on the web browsers' part.

    On the "bad certificate" page in firefox, you can still click to get the details, then add an exception and make it temporary (just until you've logged in).

    Disabling the security is another possible route instead of the pop-bar (one which was available long before the pop-bar itself).

    --
    "Sufficiently advanced satire is indistinguishable from reality." - [Tips: 1DrYakQDKCQ6y52z6QbnkxHXAocMZJE61o ]