Overview#
Secure connection (or Secure Channel) is a network connection that is encrypted by one or more security protocols to ensure the security of data In Transit for End-to-End CommunicationsSecure connection MUST be able allow Alice to send Bob a message and:
- maintain confidentiality of data In Transit
- maintain integrity of the data In Transit
Secure connection can be performed by many protocols and most of them involve data encryption.
Secure connection is usually provided by:
- Transport Layer Secure connection is provided by Transport Layer Security (TLS/SSL) End-to-End Communications
- Application Layer Secure connection is provided by Application Layer Security (End-to-end Encryption)
Secure connection Vulnerabilities#
Some Secure connection Vulnerabilities:- Man-In-The-Middle
- SSL-TLS Interception (TLS Proxy)
- Public Key Infrastructure Weaknesses - as TLS is most popular method for Secure connection and TLS often relies on Public Key Infrastructure
Secure connection#
Transport Layer Security (TLS) is the most popular Protocol for Secure connection.Alert (TA15-120A) Securing End-to-End Communications is provided by the United States Department of Homeland Security for Securing End-to-End Communications [1]
More Information#
There might be more information for this subject on one of the following:- AWS VPN
- Application-Layer Protocol Negotiation
- Best Practices Password
- Biometric Data Challenges
- Certificate Validation
- Channel Binding
- Cryptographic Primitive
- CurveCP
- End-to-End Communications
- HTTP Strict Transport Security
- INTERDOMAIN_TRUST_ACCOUNT
- Kerberos
- LOA 2
- LOA 3
- LOA 4
- Logjam
- Man-In-The-Middle
- Open Protocol for Access Control, Identification, and Ticketing with privacY
- Password Validator
- Perfect Forward Secrecy
- RFC 5056
- SSL Overhead
- Schannel SSP
- Shared Secret
- Simple Authentication
- TLS Full Handshake
- Thread network layer
- Tomcat And LDAP
- Transport Layer Security
- Windows Authentication Package
- [#1] - Alert (TA15-120A) Securing End-to-End Communications
- based on information obtained 2017-06-25-