Can OCSP stapling reduce or eliminate the weaknesses inherrent with OCSP?
Can OCSP stapling reduce or eliminate the weaknesses inherrent with OCSP?
Homework Answers
Revocation should be done if a certificate is comprised. In this case the valid owner of the certificate will no longer use it. Revocation checks should then make sure, that also the attacker will not be able to use it on intercepted connections.
Langley describes an attack, where the attacker is not only able to redirect the user to the attackers server with the compromised certificate, but also to block or manipulate any other connections from the victim and thus make the OCSP requests for revocation check fail with temporary errors.
OCSP stapling does not help in this case. The server with the compromised certificate is owned by the attacker so the attacker will just not do OCSP stapling, i.e. will not send an OCSP response back within the SSL handshake. This will force the victim to try with the normal OCSP queries and we are back to Langley's attack.
OCSP will only be secure if the client will only continue if it gets a valid response from the server which says that the certificate is ok and if the client can successfully verify the signature of the response. This is the same with and without OCSP stapling. OCSP stapling only speeds up the revocation checks because it saves an extra HTTP request for the OCSP check.
Add Answer to:
Can OCSP stapling reduce or eliminate the weaknesses inherrent
with OCSP?
What can be done to help reduce or eliminate price variances?
What can be done to help reduce or eliminate price variances?
3.5. (a) Exp (b) Explain briefly what measures can be taken to reduce or eliminate the...
3.5. (a) Exp (b) Explain briefly what measures can be taken to reduce or eliminate the effect of modifying inputs.
Describe one mechanism by which double stranded RNAs can reduce or eliminate the production of protein...
Describe one mechanism by which double stranded RNAs can reduce or eliminate the production of protein from a particular gene.
Summarize the five (5) design suggestions to help reduce or eliminate falls.
Summarize the five (5) design suggestions to help reduce or eliminate falls.
Why is the use of evidence important? How does it help eliminate or reduce errors in...
Why is the use of evidence important? How does it help eliminate or reduce errors in thinking?
According to Coase, clearly defining property rights will reduce or eliminate externalities. True False
According to Coase, clearly defining property rights will reduce or eliminate externalities. True False
Discuss one health inequality in healthcare and one way to reduce or eliminate that health inequality
Discuss one health inequality in healthcare and one way to reduce or eliminate that health inequality
Which of the following factors tends to reduce or eliminate the use of float? C a....
Which of the following factors tends to reduce or eliminate the use of float? C a. lenient credit policies Cb.large cash balances. C. electronic funds transfers. C d.high interest rates DF
5) Radiation is utilized to reduce or eliminate microorganisms and insects from food. What are the...
5) Radiation is utilized to reduce or eliminate microorganisms and insects from food. What are the three sources of radiation approved by the U.S. Food and Drug Administration (FDA) and the U.S. Department of Agriculture (USDA).
What are two strengths and two weaknesses of hardware, software, and/or data? How can the weaknesses...
What are two strengths and two weaknesses of hardware, software, and/or data? How can the weaknesses be improved (what safeguards can you take, for instance)? How may the strengths be utilized effectively?
3.5. (a) Exp (b) Explain briefly what measures can be taken to reduce or eliminate the effect of modifying inputs.
Which of the following factors tends to reduce or eliminate the use of float? C a. lenient credit policies Cb.large cash balances. C. electronic funds transfers. C d.high interest rates DF
5) Radiation is utilized to reduce or eliminate microorganisms and insects from food. What are the three sources of radiation approved by the U.S. Food and Drug Administration (FDA) and the U.S. Department of Agriculture (USDA).
Most questions answered within 3 hours.
-
From past history, the scores on a statistics test are normally
distributed with a mean of...
asked 1 minute ago -
Calculate the gravitational field strength on the highest peak
of Everest (8848 m above the Earth).
asked 1 minute ago -
the energy value of carbohydrates is 4.0 cal/g. calculate the
energy in 250 g of carbohydrates,...
asked 3 minutes ago -
i
need the summary of this article “Why I Don’t Trust The Video Games
Cause Violence”...
asked 22 minutes ago -
Draw the reactants and products of the following
reaction:
3-ethyl-2-heptene + HOH → 3-ethyl-3-heptanol +
3-ethyl-2-heptanol...
asked 20 minutes ago -
Determine the ratio of adipic acid and butylene glycol that
should be used to obtain a...
asked 29 minutes ago -
Calculate the ratio of the resistance of 11.0 m of aluminum wire
2.5 mm in diameter,...
asked 22 minutes ago -
Kinkaid Co. is incorporated at the beginning of this year and
engages in a number of...
asked 26 minutes ago -
when setting up a simple pendulum, calculate the string length
required for the period to equal...
asked 44 minutes ago -
: A small but very close dense mass of 389 kg is brought close
to a...
asked 45 minutes ago -
Create a class called Hotel. The hotel class will track the
current reservations for your one-room...
asked 1 hour ago -
In space, a 4.0 kg metal ball moving 30 m/s has a head on
collision with...
asked 1 hour ago