Skip to Main content Skip to Navigation
Conference papers

FLEXTLS A Tool for Testing TLS Implementations

Abstract : We present FLEXTLS, a tool for rapidly prototyping and testing implementations of the Transport Layer Security (TLS) protocol. FLEXTLS is built upon MITLS, a verified implementation of TLS, and hence protocol scenarios written in FLEXTLS can benefit from robust libraries for messaging and cryptography. Conversely, attack scripts in FLEXTLS can be used to evaluate and communicate the impact of new protocol vulnerabilities. FLEXTLS was used to discover recent attacks on TLS implementations, such as SKIP and FREAK, as well as to program the first proof-of-concept demos for FREAK and Logjam. It is also being used to experiment with proposed designs of the upcoming version 1.3 of TLS. Our goal is to create a common platform where protocol analysts and practitioners can easily test TLS implementations and share protocol designs, attacks or proofs.
Complete list of metadata

Cited literature [12 references]  Display  Hide  Download

https://hal.inria.fr/hal-01295035
Contributor : Bhargavan Karthikeyan <>
Submitted on : Wednesday, March 30, 2016 - 11:43:18 AM
Last modification on : Friday, May 25, 2018 - 12:02:06 PM
Long-term archiving on: : Monday, November 14, 2016 - 8:53:39 AM

File

woot15-paper-beurdouche.pdf
Files produced by the author(s)

Identifiers

  • HAL Id : hal-01295035, version 1

Collections

Citation

Benjamin Beurdouche, Antoine Delignat-Lavaud, Nadim Kobeissi, Alfredo Pironti, Karthikeyan Bhargavan. FLEXTLS A Tool for Testing TLS Implementations. 9th USENIX Workshop on Offensive Technologies, WOOT '15, Usenix, Aug 2014, Washington DC, United States. ⟨hal-01295035⟩

Share

Metrics

Record views

221

Files downloads

807