D982613040324 - International Journal of Innovative Technology and Exploring Engineering (IJITEE)

Survey of Attacks against HTTPS: Analysis, Exploitation, and Mitigation Strategies
Adithyan Arun Kumar¹, Gowthamaraj Rajendran², Nitin Srinivasan³, Praveen Kumar Sridhar⁴, Kishore Kumar Perumalsamy⁵

¹Adithyan Arun Kumar, Department of Information Security, Carnegie Mellon University, San Jose, United States.

²Gowthamaraj Rajendran, Department of Information Security, Carnegie Mellon University, San Jose, United States.

³Nitin Srinivasan, Department of Computer Science, University of Massachusetts Amherst, Sunnyvale, United States.

⁴Praveen Kumar Sridhar, Department of Data Science, Northeastern University, San Jose, United States.

⁵Kishore Kumar Perumalsamy, Department of Computer Science, Carnegie Mellon University, San Jose, United States.

Open Access | Editorial and Publishing Policies | Cite | Zenodo | OJS | Indexing and Abstracting
© The Authors. Blue Eyes Intelligence Engineering and Sciences Publication (BEIESP). This is an open access article under the CC-BY-NC-ND license (http://creativecommons.org/licenses/by-nc-nd/4.0/)

Abstract: This research paper aims to provide a comprehensive overview of known attacks against HTTPS, focusing on the SSL and TLS protocols. The paper begins by explaining the working of HTTPS, followed by detailed descriptions of SSL and TLS protocols. Subsequently, it explores common attacks against HTTPS, providing an in-depth analysis of each attack, along with proof-of-concept (PoC) demonstrations. Furthermore, the paper outlines mitigation strategies to address each attack, emphasizing the importance of proactive security measures. Finally, a conclusion is drawn, highlighting the evolving nature of HTTPS attacks and the continuous need for robust security practices.

Keywords: EHTTPS, TLS, SSL, Heartbleed, BEAST
Scope of the Article: Big Data Security

Download PDF

JOURNAL

REQUIREMENTS

PRODUCT

CONTACT US