Breaking HTTPS with BGP Hijacking

by Artyom Gavrichenkov Sept. 18, 2017 via Black Hat submitted by belen_caty

People are used to believe that BGP hijacking is not a huge issue. Yes, a denial of service can happen, and some plaintext data may be disclosed to an attacker, but there's nothing more to it, since all sensitive data transmitted over the Internet should be encrypted already, and a man in the middle of the Internet cannot decrypt it or break into encrypted connection. So there's pretty much nothing to really worry about. The problem is: the encryption is backed by SSL/TLS PKI, which itself trusts Internet routing. Now there's a way to exploit this trust, and we are going to show how, and to discuss how to prevent this from happening.

https://www.blackhat.com/us-15/briefings.html#breaking-https-with-bgp-hijacking

Avatar
Steven Ulm 1 month ago

I was surprised to learn that actually BGP hijacking actually is a underrated problem...

Reply