{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,4,17]],"date-time":"2026-04-17T04:11:25Z","timestamp":1776399085519,"version":"3.51.2"},"publisher-location":"New York, NY, USA","reference-count":33,"publisher":"ACM","license":[{"start":{"date-parts":[[2015,4,14]],"date-time":"2015-04-14T00:00:00Z","timestamp":1428969600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2015,4,14]]},"DOI":"10.1145\/2714576.2714592","type":"proceedings-article","created":{"date-parts":[[2015,4,3]],"date-time":"2015-04-03T16:27:14Z","timestamp":1428078434000},"page":"225-236","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":4,"title":["TLS Record Protocol"],"prefix":"10.1145","author":[{"given":"Olivier","family":"Levillain","sequence":"first","affiliation":[{"name":"French Network and Information Security Agency, Paris, France"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Baptiste","family":"Gourdin","sequence":"additional","affiliation":[{"name":"Sekoia, Paris, France"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Herv\u00e9","family":"Debar","sequence":"additional","affiliation":[{"name":"T\u00e9l\u00e9com SudParis, Evry, France"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2015,4,14]]},"reference":[{"key":"e_1_3_2_1_1_1","volume-title":"USENIX Security","author":"AlFardan N. J.","year":"2013","unstructured":"N. J. AlFardan , D. Bernstein , K. G. Paterson , B. Poettering , and J. C. N. Schuldt . On the security of RC4 in TLS and WPA . In USENIX Security , 2013 . N. J. AlFardan, D. Bernstein, K. G. Paterson, B. Poettering, and J. C. N. Schuldt. On the security of RC4 in TLS and WPA. In USENIX Security, 2013."},{"key":"e_1_3_2_1_2_1","volume-title":"IEEE SSP","author":"AlFardan N. J.","year":"2013","unstructured":"N. J. AlFardan and K. G. Paterson . Lucky Thirteen: Breaking the TLS and DTLS Record Protocols . In IEEE SSP , 2013 . N. J. AlFardan and K. G. Paterson. Lucky Thirteen: Breaking the TLS and DTLS Record Protocols. In IEEE SSP, 2013."},{"key":"e_1_3_2_1_3_1","first-page":"6265","year":"2011","unstructured":"A. Barth. HTTP State Management Mechanism. RFC 6265 , 2011 . A. Barth. HTTP State Management Mechanism. RFC 6265, 2011.","journal-title":"A. Barth. HTTP State Management Mechanism. RFC"},{"key":"e_1_3_2_1_4_1","first-page":"6454","year":"2011","unstructured":"A. Barth. The Web Origin Concept. RFC 6454 , 2011 . A. Barth. The Web Origin Concept. RFC 6454, 2011.","journal-title":"A. Barth. The Web Origin Concept. RFC"},{"key":"e_1_3_2_1_5_1","volume-title":"a variant of Salsa20. cr.yp.to\/papers.html#chacha","author":"Bernstein D.","year":"2008","unstructured":"D. Bernstein . ChaCha , a variant of Salsa20. cr.yp.to\/papers.html#chacha , 2008 . D. Bernstein. ChaCha, a variant of Salsa20. cr.yp.to\/papers.html#chacha, 2008."},{"key":"e_1_3_2_1_6_1","doi-asserted-by":"publisher","DOI":"10.5555\/646764.703964"},{"key":"e_1_3_2_1_7_1","doi-asserted-by":"publisher","DOI":"10.1145\/2220352.2220353"},{"key":"e_1_3_2_1_8_1","first-page":"4346","author":"Dierks T.","year":"2006","unstructured":"T. Dierks and E. Rescorla . TLS Protocol Version 1.1. RFC 4346 , 2006 . T. Dierks and E. Rescorla. TLS Protocol Version 1.1. RFC 4346, 2006.","journal-title":"TLS Protocol Version 1.1. RFC"},{"key":"e_1_3_2_1_9_1","first-page":"5246","author":"Dierks T.","year":"2008","unstructured":"T. Dierks and E. Rescorla . TLS Protocol Version 1.2. RFC 5246 , 2008 . T. Dierks and E. Rescorla. TLS Protocol Version 1.2. RFC 5246, 2008.","journal-title":"TLS Protocol Version 1.2. RFC"},{"key":"e_1_3_2_1_10_1","volume-title":"Ekoparty","author":"Duong T.","year":"2011","unstructured":"T. Duong and J. Rizzo . BEAST: Surprising crypto attack against HTTPS . Ekoparty , 2011 . T. Duong and J. Rizzo. BEAST: Surprising crypto attack against HTTPS. Ekoparty, 2011."},{"key":"e_1_3_2_1_11_1","first-page":"6455","year":"2011","unstructured":"I. Fette and A. Melnikov. The WebSocket Protocol. RFC 6455 , 2011 . I. Fette and A. Melnikov. The WebSocket Protocol. RFC 6455, 2011.","journal-title":"I. Fette and A. Melnikov. The WebSocket Protocol. RFC"},{"key":"e_1_3_2_1_12_1","volume-title":"FSE","author":"Fluhrer S.","year":"2000","unstructured":"S. Fluhrer and D. McGrew . Statistical Analysis of the Alleged RC4 Keystream Generator . In FSE , 2000 . S. Fluhrer and D. McGrew. Statistical Analysis of the Alleged RC4 Keystream Generator. In FSE, 2000."},{"key":"e_1_3_2_1_13_1","first-page":"2617","author":"Franks J.","year":"1999","unstructured":"J. Franks , P. Hallam-Baker , J. Hostetler , S. Lawrence , P. Leach , A. Luotonen , and L. Stewart . HTTP Authentication: Basic and Digest Access Authentication. RFC 2617 , 1999 . J. Franks, P. Hallam-Baker, J. Hostetler, S. Lawrence, P. Leach, A. Luotonen, and L. Stewart. HTTP Authentication: Basic and Digest Access Authentication. RFC 2617, 1999.","journal-title":"HTTP Authentication: Basic and Digest Access Authentication. RFC"},{"key":"e_1_3_2_1_14_1","volume-title":"USENIX Security","author":"Fu K.","year":"2001","unstructured":"K. Fu , E. Sit , K. Smith , and N. Feamster . The Dos and Don'ts of Client Authentication on the Web . In USENIX Security , 2001 . K. Fu, E. Sit, K. Smith, and N. Feamster. The Dos and Don'ts of Client Authentication on the Web. In USENIX Security, 2001."},{"key":"e_1_3_2_1_15_1","doi-asserted-by":"publisher","DOI":"10.5555\/648252.752372"},{"key":"e_1_3_2_1_16_1","first-page":"7366","author":"Gutmann P.","year":"2014","unstructured":"P. Gutmann . Encrypt-then- MAC for Transport Layer Security (TLS) and Datagram Transport Layer Security (DTLS). RFC 7366 , 2014 . P. Gutmann. Encrypt-then-MAC for Transport Layer Security (TLS) and Datagram Transport Layer Security (DTLS). RFC 7366, 2014.","journal-title":"RFC"},{"key":"e_1_3_2_1_17_1","first-page":"6797","author":"Hodges J.","year":"2012","unstructured":"J. Hodges , C. Jackson , and A. Barth . HTTP Strict Transport Security (HSTS). RFC 6797 , 2012 . J. Hodges, C. Jackson, and A. Barth. HTTP Strict Transport Security (HSTS). RFC 6797, 2012.","journal-title":"HTTP Strict Transport Security (HSTS). RFC"},{"key":"e_1_3_2_1_18_1","volume-title":"FSE","author":"Isobe T.","year":"2013","unstructured":"T. Isobe , T. Ohigashi , Y. Waatanabe , and M. Morii . Full Plaintext Recovery Attack on Broadcast RC4 . In FSE , 2013 . T. Isobe, T. Ohigashi, Y. Waatanabe, and M. Morii. Full Plaintext Recovery Attack on Broadcast RC4. In FSE, 2013."},{"key":"e_1_3_2_1_19_1","doi-asserted-by":"publisher","DOI":"10.1145\/2420950.2420953"},{"key":"e_1_3_2_1_20_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICCCN.2005.1523880"},{"key":"e_1_3_2_1_21_1","volume-title":"Security of CBC Ciphersuites in SSL\/TLS: Problems and Countermeasures","author":"M\u00f6ller B.","year":"2002","unstructured":"B. M\u00f6ller . Security of CBC Ciphersuites in SSL\/TLS: Problems and Countermeasures , 2002 -2004. B. M\u00f6ller. Security of CBC Ciphersuites in SSL\/TLS: Problems and Countermeasures, 2002-2004."},{"key":"e_1_3_2_1_22_1","volume-title":"Google Security Advisory: This POODLE Bites: Exploiting The SSL 3.0 Fallback","author":"M\u00f6ller B.","year":"2014","unstructured":"B. M\u00f6ller , T. Duong , and K. Kotowicz . Google Security Advisory: This POODLE Bites: Exploiting The SSL 3.0 Fallback , 2014 . B. M\u00f6ller, T. Duong, and K. Kotowicz. Google Security Advisory: This POODLE Bites: Exploiting The SSL 3.0 Fallback, 2014."},{"key":"e_1_3_2_1_23_1","volume-title":"NDSS","author":"Paterson K. G.","year":"2012","unstructured":"K. G. Paterson and N. J. AlFardan . Plaintext Recovery Attacks Against DTLS . In NDSS , 2012 . K. G. Paterson and N. J. AlFardan. Plaintext Recovery Attacks Against DTLS. In NDSS, 2012."},{"key":"e_1_3_2_1_24_1","volume-title":"Renego patched servers: A long-term interoperability time bomb brewing. My Opera blog: Implementer's notes","author":"Pettersen Y. N.","year":"2010","unstructured":"Y. N. Pettersen . Renego patched servers: A long-term interoperability time bomb brewing. My Opera blog: Implementer's notes , 2010 . Y. N. Pettersen. Renego patched servers: A long-term interoperability time bomb brewing. My Opera blog: Implementer's notes, 2010."},{"key":"e_1_3_2_1_25_1","volume-title":"Black Hat USA","author":"Prado A.","year":"2013","unstructured":"A. Prado , N. Harris , and Y. Gluck . SSL, Gone in 30 seconds - A BREACH beyond CRIME . Black Hat USA , 2013 . A. Prado, N. Harris, and Y. Gluck. SSL, Gone in 30 seconds - A BREACH beyond CRIME. Black Hat USA, 2013."},{"key":"e_1_3_2_1_26_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-38348-9_9"},{"key":"e_1_3_2_1_27_1","first-page":"6347","author":"Rescorla E.","year":"2012","unstructured":"E. Rescorla and N. Modadugu . DTLS Version 1.2. RFC 6347 , 2012 . E. Rescorla and N. Modadugu. DTLS Version 1.2. RFC 6347, 2012.","journal-title":"DTLS Version 1.2. RFC"},{"key":"e_1_3_2_1_28_1","volume-title":"Talk at BlackHat","author":"Ristic I.","year":"2010","unstructured":"I. Ristic . Internet SSL Survey , Talk at BlackHat 2010 . Black Hat USA , 2010. I. Ristic. Internet SSL Survey, Talk at BlackHat 2010. Black Hat USA, 2010."},{"key":"e_1_3_2_1_29_1","volume-title":"Ekoparty","author":"Rizzo J.","year":"2012","unstructured":"J. Rizzo and T. Duong . The CRIME attack . Ekoparty , 2012 . J. Rizzo and T. Duong. The CRIME attack. Ekoparty, 2012."},{"key":"e_1_3_2_1_30_1","volume-title":"IETF Draft: Problems with proposed IP Cryptography","author":"Rogaway P.","year":"1995","unstructured":"P. Rogaway . IETF Draft: Problems with proposed IP Cryptography , 1995 . P. Rogaway. IETF Draft: Problems with proposed IP Cryptography, 1995."},{"key":"e_1_3_2_1_31_1","volume-title":"NDSS","author":"A. Stubble","year":"2002","unstructured":"A. Stubble field, J. Ioannidis , and A. Rubin . Using the Fluhrer, Mantin, and Shamir Attack to Break WEP . In NDSS , 2002 . A. Stubble field, J. Ioannidis, and A. Rubin. Using the Fluhrer, Mantin, and Shamir Attack to Break WEP. In NDSS, 2002."},{"key":"e_1_3_2_1_32_1","volume-title":"TIME Will Tell. Black Hat EU","author":"Be'ery A. Shulman T.","year":"2013","unstructured":"A. Shulman T. Be'ery . A Perfect CRIME ? TIME Will Tell. Black Hat EU , 2013 . A. Shulman T. Be'ery. A Perfect CRIME? TIME Will Tell. Black Hat EU, 2013."},{"key":"e_1_3_2_1_33_1","volume-title":"Eurocrypt","author":"Vaudenay S.","year":"2002","unstructured":"S. Vaudenay . Security Flaws Induced by CBC Padding Applications to SSL, IPsec , WTLS . In Eurocrypt , 2002 . S. Vaudenay. Security Flaws Induced by CBC Padding Applications to SSL, IPsec, WTLS. In Eurocrypt, 2002."}],"event":{"name":"ASIA CCS '15: 10th ACM Symposium on Information, Computer and Communications Security","location":"Singapore Republic of Singapore","acronym":"ASIA CCS '15","sponsor":["SIGSAC ACM Special Interest Group on Security, Audit, and Control"]},"container-title":["Proceedings of the 10th ACM Symposium on Information, Computer and Communications Security"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2714576.2714592","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/2714576.2714592","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T06:16:54Z","timestamp":1750227414000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2714576.2714592"}},"subtitle":["Security Analysis and Defense-in-depth Countermeasures for HTTPS"],"short-title":[],"issued":{"date-parts":[[2015,4,14]]},"references-count":33,"alternative-id":["10.1145\/2714576.2714592","10.1145\/2714576"],"URL":"https:\/\/doi.org\/10.1145\/2714576.2714592","relation":{},"subject":[],"published":{"date-parts":[[2015,4,14]]},"assertion":[{"value":"2015-04-14","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}