CertShim : Securing SSL Certificate Verification through Dynamic Linking

  title={CertShim : Securing SSL Certificate Verification through Dynamic Linking},
  author={Tyler Nichols and Adam R. Bates and Joe Pletcher and Braden Hollembaek and Dave Tian and Abdulrahman Alkhelaifi and Kevin R. B. Butler},
Recent discoveries of widespread vulnerabilities in the SSL/TLS protocol stack, particular with regard to the verification of server certificates, has left the security of the Internet’s communications in doubt. Newly proposed SSL trust enhancements address many of these vulnerabilities, but are slow to be deployed and do not solve the problem of securing existing software. In this work, we provide new mechanisms that offer immediate solutions to addressing vulnerabilities in legacy code. We… CONTINUE READING


Publications citing this paper.


Publications referenced by this paper.
Showing 1-10 of 36 references

Rethinking SSL development in an appified world

ACM Conference on Computer and Communications Security • 2013
View 8 Excerpts
Highly Influenced

The most dangerous code in the world: validating SSL certificates in non-browser software

ACM Conference on Computer and Communications Security • 2012
View 14 Excerpts
Highly Influenced

SSL and the Future of Authenticity

M. Marlinspike
Black Hat USA • 2011
View 4 Excerpts
Highly Influenced

Heartbleed bug: what do you actually need to do to stay secure? Available: http://www.theguardian. com/technology/2014/apr/10/heartbleed-bugeverything-you-need-to-know-to-stay-secure

S. Gibbs
View 1 Excerpt

Similar Papers

Loading similar papers…