BEAST attack

E200937

The BEAST attack is a cryptographic exploit that targets vulnerabilities in early versions of TLS/SSL to decrypt secure HTTPS traffic by abusing weaknesses in block cipher modes like CBC.

All labels observed (2)

Label Occurrences
BEAST attack canonical 1
Browser Exploit Against SSL/TLS 1

How this entity was disambiguated

Statements (46)

Predicate Object
instanceOf TLS attack
chosen-plaintext attack
cryptographic attack
abbreviation BEAST
affects HTTP over TLS
HTTPS
attackType cipher-block chaining (CBC) attack
man-in-the-middle attack
attackVector active network attacker between client and server
category vulnerability in protocol design
demonstratedBy Juliano Rizzo
Thai Duong
doesExploit interaction between CBC mode and TLS 1.0 record protocol
doesNotExploit flaws in specific cipher algorithms
exploits predictable initialization vectors in TLS 1.0
vulnerability in CBC mode
fullName BEAST attack self-linksurface differs
surface form: Browser Exploit Against SSL/TLS
goal decryption of TLS-protected data
recovery of HTTP cookies
session hijacking
influenced best practices for TLS configuration
migration to TLS 1.2 and TLS 1.3
mitigation 1/n-1 record splitting
disabling CBC-based ciphersuites
use of RC4-based ciphersuites (historical, now discouraged)
use of TLS 1.1 or later
notableConsequence compromise of secure web sessions
notableFeature can gradually recover secret data byte by byte
notableTarget TLS implementations using CBC ciphersuites
web browsers
prompted changes in browser TLS configurations
deprecation of vulnerable CBC configurations in TLS 1.0
publicDisclosureEvent Ekoparty Security Conference 2011
publicDisclosureYear 2011
relatedTo CRIME attack
POODLE attack
requires JavaScript or plugin-based code running in victim browser (in original demo)
ability to inject chosen plaintext into TLS sessions
ability to intercept HTTPS traffic
requiresClientCondition support for TLS 1.0 CBC ciphersuites
securityImpact confidentiality breach
status largely mitigated in modern TLS deployments
targetsProtocol SSL
surface form: Secure Sockets Layer

TLS
surface form: Transport Layer Security
targetsVersion SSL 3.0
TLS 1.0

How these facts were elicited

Referenced by (2)

Full triples — surface form annotated when it differs from this entity's canonical label.

TLS 1.0 hasVulnerability BEAST attack
BEAST attack fullName BEAST attack self-linksurface differs
this entity surface form: Browser Exploit Against SSL/TLS