{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2024,9,9]],"date-time":"2024-09-09T11:58:27Z","timestamp":1725883107189},"publisher-location":"Cham","reference-count":29,"publisher":"Springer International Publishing","isbn-type":[{"type":"print","value":"9783319565484"},{"type":"electronic","value":"9783319565491"}],"license":[{"start":{"date-parts":[[2017,1,1]],"date-time":"2017-01-01T00:00:00Z","timestamp":1483228800000},"content-version":"unspecified","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2017]]},"DOI":"10.1007\/978-3-319-56549-1_10","type":"book-chapter","created":{"date-parts":[[2017,3,29]],"date-time":"2017-03-29T09:39:05Z","timestamp":1490780345000},"page":"112-123","source":"Crossref","is-referenced-by-count":0,"title":["A Practical Analysis of TLS Vulnerabilities in Korea Web Environment"],"prefix":"10.1007","author":[{"given":"Jongmin","family":"Jeong","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Hyunsoo","family":"Kwon","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Hyungjune","family":"Shin","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Junbeom","family":"Hur","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2017,3,30]]},"reference":[{"key":"10_CR1","unstructured":"Alexa top 500 sites. http:\/\/www.alexa.com\/topsites\/"},{"key":"10_CR2","unstructured":"Center for software security and assurance website. http:\/\/iotqv.korea.ac.kr\/"},{"key":"10_CR3","unstructured":"Common vulerabilities and exposures. https:\/\/cve.mitre.org\/"},{"key":"10_CR4","unstructured":"Daum mail. http:\/\/mail.daum.net\/"},{"key":"10_CR5","unstructured":"Google transparency report about e-mail TLS. https:\/\/www.google.com\/transparencyreport\/saferemail\/?hl=ko\/"},{"key":"10_CR6","unstructured":"The internet engineering task force. https:\/\/www.ietf.org\/"},{"key":"10_CR7","unstructured":"Nate mail. http:\/\/mail3.nate.com\/"},{"key":"10_CR8","unstructured":"Naver mail. http:\/\/mail.naver.com\/"},{"key":"10_CR9","unstructured":"Qualys ssl labs web site. https:\/\/www.ssllabs.com\/index.html\/"},{"key":"10_CR10","unstructured":"Target website lists and the result of scanning. https:\/\/www.dropbox.com\/s\/mhr4f7mpioow0hd\/Result%20of%20scanning.xlsx?dl=0\/"},{"key":"10_CR11","unstructured":"Wireshark. https:\/\/www.wireshark.org\/"},{"key":"10_CR12","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"103","DOI":"10.1007\/978-3-642-04159-4_7","volume-title":"Selected Areas in Cryptography","author":"K Aoki","year":"2009","unstructured":"Aoki, K., Sasaki, Y.: Preimage attacks on one-block MD4, 63-step MD5 and more. In: Avanzi, R.M., Keliher, L., Sica, F. (eds.) SAC 2008. LNCS, vol. 5381, pp. 103\u2013119. Springer, Heidelberg (2009). doi: 10.1007\/978-3-642-04159-4_7"},{"key":"10_CR13","unstructured":"Aviram, N., Schinzel, S., Somorovsky, J., Heninger, N., Dankel, M., Steube, J., Valenta, L., Adrian, D., Halderman, J.A., Dukhovni, V., et al.: Drown: Breaking TLS using SSLv2"},{"key":"10_CR14","doi-asserted-by":"crossref","unstructured":"Bhargavan, K., Leurent, G., Cad\u00e9, D., Blanchet, B., Paraskevopoulou, Z., Hri\u0163cu, C., D\u00e9n\u00e8s, M., Lampropoulos, L., Pierce, B.C., Delignat-Lavaud, A., et al.: Transcript collision attacks: breaking authentication in TLS, IKE, and SSH. In: Network and Distributed System Security Symposium-NDSS 2016 (2016)","DOI":"10.14722\/ndss.2016.23418"},{"key":"10_CR15","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"36","DOI":"10.1007\/11426639_3","volume-title":"Advances in Cryptology \u2013 EUROCRYPT 2005","author":"E Biham","year":"2005","unstructured":"Biham, E., Chen, R., Joux, A., Carribault, P., Lemuet, C., Jalby, W.: Collisions of SHA-0 and reduced SHA-1. In: Cramer, R. (ed.) EUROCRYPT 2005. LNCS, vol. 3494, pp. 36\u201357. Springer, Heidelberg (2005). doi: 10.1007\/11426639_3"},{"key":"10_CR16","doi-asserted-by":"crossref","unstructured":"Dierks, T.: The transport layer security (TLS) protocol version 1.2 (2008)","DOI":"10.17487\/rfc5246"},{"key":"10_CR17","unstructured":"Durumeric, Z., Adrian, D., Kasten, J., Springall, D., Bailey, M., Halderman, J.: Poodle attack and SSLv3 deployment (2014)"},{"key":"10_CR18","doi-asserted-by":"crossref","unstructured":"Durumeric, Z., Kasten, J., Adrian, D., Halderman, J.A., Bailey, M., Li, F., Weaver, N., Amann, J., Beekman, J., Payer, M., et al.: The matter of heartbleed. In: Proceedings of the 2014 Conference on Internet Measurement Conference, pp. 475\u2013488. ACM (2014)","DOI":"10.1145\/2663716.2663755"},{"key":"10_CR19","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1007\/3-540-45537-X_1","volume-title":"Selected Areas in Cryptography","author":"S Fluhrer","year":"2001","unstructured":"Fluhrer, S., Mantin, I., Shamir, A.: Weaknesses in the key scheduling algorithm of RC4. In: Vaudenay, S., Youssef, A.M. (eds.) SAC 2001. LNCS, vol. 2259, pp. 1\u201324. Springer, Heidelberg (2001). doi: 10.1007\/3-540-45537-X_1"},{"key":"10_CR20","unstructured":"Fogel, B.: A survey of web vulnerabilities. Ph.D. thesis, Auburn University (2015)"},{"issue":"5","key":"10_CR21","first-page":"61","volume":"2","author":"S Gujrathi","year":"2014","unstructured":"Gujrathi, S.: Heartbleed bug: AnOpenSSL heartbeat vulnerability. Int. J. Comput. Sci. Eng. 2(5), 61\u201364 (2014)","journal-title":"Int. J. Comput. Sci. Eng."},{"key":"10_CR22","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"122","DOI":"10.1007\/978-3-319-30806-7_8","volume-title":"Engineering Secure Software and Systems","author":"B Fogel","year":"2016","unstructured":"Fogel, B., Farmer, S., Alkofahi, H., Skjellum, A., Hafiz, M.: POODLEs, more POODLEs, FREAK attacks too: how server administrators responded to three serious web vulnerabilities. In: Caballero, J., Bodden, E., Athanasopoulos, E. (eds.) ESSoS 2016. LNCS, vol. 9639, pp. 122\u2013137. Springer, Cham (2016). doi: 10.1007\/978-3-319-30806-7_8"},{"issue":"1","key":"10_CR23","doi-asserted-by":"crossref","first-page":"79","DOI":"10.1007\/s11390-007-9010-1","volume":"22","author":"J Liang","year":"2007","unstructured":"Liang, J., Lai, X.J.: Improved collision attack on hash function MD5. J. Comput. Sci. Technol. 22(1), 79\u201387 (2007)","journal-title":"J. Comput. Sci. Technol."},{"key":"10_CR24","unstructured":"M\u00f6ller, B., Duong, T., Kotowicz, K.: This poodle bites: exploiting the SSL 3.0 fallback. Google, September 2014"},{"key":"10_CR25","first-page":"152","volume":"2355","author":"A Popov","year":"2015","unstructured":"Popov, A.: Prohibiting RC4 cipher suites. Comput. Sci. 2355, 152\u2013164 (2015)","journal-title":"Comput. Sci."},{"key":"10_CR26","unstructured":"Sasaki, Y., Naito, Y., Kunihiro, N., Ohta, K.: Improved collision attack on MD5. IACR Cryptology ePrint Archive 2005, 400 (2005)"},{"key":"10_CR27","unstructured":"Vanhoef, M., Piessens, F.: All Your biases belong to Us: Breaking RC4 in WPA-TKIP and TLS. In: 24th USENIX Security Symposium (USENIX Security 15), pp. 97\u2013112 (2015)"},{"key":"10_CR28","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"17","DOI":"10.1007\/11535218_2","volume-title":"Advances in Cryptology \u2013 CRYPTO 2005","author":"X Wang","year":"2005","unstructured":"Wang, X., Yin, Y.L., Yu, H.: Finding collisions in the full SHA-1. In: Shoup, V. (ed.) CRYPTO 2005. LNCS, vol. 3621, pp. 17\u201336. Springer, Heidelberg (2005). doi: 10.1007\/11535218_2"},{"key":"10_CR29","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"299","DOI":"10.1007\/11502760_20","volume-title":"Fast Software Encryption","author":"AKL Yau","year":"2005","unstructured":"Yau, A.K.L., Paterson, K.G., Mitchell, C.J.: Padding Oracle attacks on CBC-mode encryption with secret and random IVs. In: Gilbert, H., Handschuh, H. (eds.) FSE 2005. LNCS, vol. 3557, pp. 299\u2013319. Springer, Heidelberg (2005). doi: 10.1007\/11502760_20"}],"container-title":["Lecture Notes in Computer Science","Information Security Applications"],"original-title":[],"link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-319-56549-1_10","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2019,9,20]],"date-time":"2019-09-20T09:38:38Z","timestamp":1568972318000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-319-56549-1_10"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2017]]},"ISBN":["9783319565484","9783319565491"],"references-count":29,"URL":"https:\/\/doi.org\/10.1007\/978-3-319-56549-1_10","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2017]]}}}