TLS-Attacker: A Dynamic Framework for Analyzing TLS Implementations
F. Bäumer, M. Brinkmann, N. Erinola, S.N. Hebrok, N. Heitmann, F. Lange, M. Maehren, R. Merget, N. Niere, M.M. Radoy, C. Schmidt, J. Schwenk, J. Somorovsky, in: Proceedings of Cybersecurity Artifacts Competition and Impact Award (ACSAC ’24), 2024.
Download
No fulltext has been uploaded.
Conference Paper
| English
Author
Bäumer, Fabian;
Brinkmann, Marcus;
Erinola, Nurullah;
Hebrok, Sven NiclasLibreCat 
;
Heitmann, NicoLibreCat;
Lange, FelixLibreCat;
Maehren, Marcel;
Merget, Robert;
Niere, NiklasLibreCat;
Radoy, Maximilian ManfredLibreCat ;
Schmidt, Conrad;
Schwenk, Jörg
All
;
Heitmann, NicoLibreCat;
Lange, FelixLibreCat;
Maehren, Marcel;
Merget, Robert;
Niere, NiklasLibreCat;
Radoy, Maximilian ManfredLibreCat ;
Schmidt, Conrad;
Schwenk, Jörg
All
Abstract
TLS-Attacker is an open-source framework for analyzing Transport
Layer Security (TLS) implementations. The framework allows users
to specify custom protocol flows and provides modification hooks to
manipulate message contents. Since its initial publication in 2016 by
Juraj Somorovsky, TLS-Attacker has been used in numerous studies
published at well-established conferences and helped to identify
vulnerabilities in well-known open-source TLS libraries. To enable
automated analyses, TLS-Attacker has grown into a suite of projects,
each designed as a building block that can be applied to facilitate
various analysis methodologies. The framework still undergoes
continuous improvements with feature extensions, such as DTLS
1.3 or the addition of new dialects such as QUIC, to continue its
effectiveness and relevancy as a security analysis framework.
Keywords
Publishing Year
Proceedings Title
Proceedings of Cybersecurity Artifacts Competition and Impact Award (ACSAC ’24)
Conference
Annual Computer Security Applications Conference
Conference Location
Hawaii
Conference Date
2024-12-09 – 2024-12-13
LibreCat-ID
Cite this
Bäumer F, Brinkmann M, Erinola N, et al. TLS-Attacker: A Dynamic Framework for Analyzing TLS Implementations. In: Proceedings of Cybersecurity Artifacts Competition and Impact Award (ACSAC ’24). ; 2024.
Bäumer, F., Brinkmann, M., Erinola, N., Hebrok, S. N., Heitmann, N., Lange, F., Maehren, M., Merget, R., Niere, N., Radoy, M. M., Schmidt, C., Schwenk, J., & Somorovsky, J. (2024). TLS-Attacker: A Dynamic Framework for Analyzing TLS Implementations. Proceedings of Cybersecurity Artifacts Competition and Impact Award (ACSAC ’24). Annual Computer Security Applications Conference, Hawaii.
@inproceedings{Bäumer_Brinkmann_Erinola_Hebrok_Heitmann_Lange_Maehren_Merget_Niere_Radoy_et al._2024, title={TLS-Attacker: A Dynamic Framework for Analyzing TLS Implementations}, booktitle={Proceedings of Cybersecurity Artifacts Competition and Impact Award (ACSAC ’24)}, author={Bäumer, Fabian and Brinkmann, Marcus and Erinola, Nurullah and Hebrok, Sven Niclas and Heitmann, Nico and Lange, Felix and Maehren, Marcel and Merget, Robert and Niere, Niklas and Radoy, Maximilian Manfred and et al.}, year={2024} }
Bäumer, Fabian, Marcus Brinkmann, Nurullah Erinola, Sven Niclas Hebrok, Nico Heitmann, Felix Lange, Marcel Maehren, et al. “TLS-Attacker: A Dynamic Framework for Analyzing TLS Implementations.” In Proceedings of Cybersecurity Artifacts Competition and Impact Award (ACSAC ’24), 2024.
F. Bäumer et al., “TLS-Attacker: A Dynamic Framework for Analyzing TLS Implementations,” presented at the Annual Computer Security Applications Conference, Hawaii, 2024.
Bäumer, Fabian, et al. “TLS-Attacker: A Dynamic Framework for Analyzing TLS Implementations.” Proceedings of Cybersecurity Artifacts Competition and Impact Award (ACSAC ’24), 2024.
Google Scholar