TY - GEN
T1 - Validating security protocols with cloud-based middleboxes
AU - Taylor, Curtis R.
AU - Shue, Craig A.
N1 - Publisher Copyright:
© 2016 IEEE.
PY - 2017/2/21
Y1 - 2017/2/21
N2 - Residential networks pose a unique challenge for security since they are operated by end-users that may not have security expertise. Residential networks are also home to devices that may have lackluster security protections, such as Internet of Things (IoT) devices, which may introduce vulnerabilities. In this work, we introduce TLSDeputy, a middlebox-based system to protect residential networks from connections to inauthentic TLS servers. By combining the approach with OpenFlow, a popular software-defined networking protocol, we show that we can effectively provide residential network-wide protections across diverse devices with minimal performance overheads.
AB - Residential networks pose a unique challenge for security since they are operated by end-users that may not have security expertise. Residential networks are also home to devices that may have lackluster security protections, such as Internet of Things (IoT) devices, which may introduce vulnerabilities. In this work, we introduce TLSDeputy, a middlebox-based system to protect residential networks from connections to inauthentic TLS servers. By combining the approach with OpenFlow, a popular software-defined networking protocol, we show that we can effectively provide residential network-wide protections across diverse devices with minimal performance overheads.
UR - http://www.scopus.com/inward/record.url?scp=85016056852&partnerID=8YFLogxK
U2 - 10.1109/CNS.2016.7860493
DO - 10.1109/CNS.2016.7860493
M3 - Conference contribution
AN - SCOPUS:85016056852
T3 - 2016 IEEE Conference on Communications and Network Security, CNS 2016
SP - 261
EP - 269
BT - 2016 IEEE Conference on Communications and Network Security, CNS 2016
PB - Institute of Electrical and Electronics Engineers Inc.
T2 - 2016 IEEE Conference on Communications and Network Security, CNS 2016
Y2 - 17 October 2016 through 19 October 2016
ER -