SD-WAN Secure Communications Design and Vulnerabilities

Presented at DeepSec 2019 „Internet of Facts and Fears“, Unknown date/time (Unknown duration).

In this talk, we describe most common classes of design flaws and vulnerabilities in SD-WAN secure communication mechanisms, and disclose a set of reported and already patched vulnerabilities in popular SD-WAN products. We present the new results of our research, consider some technical details of secure and insecure designs, weak attestation, zero-touch provisioning vulnerabilities, and non-TLS related padding oracle attacks.


Presenters:

  • Denis Kolegov - Bi.Zone,Tomsk State University
    Denis Kolegov is a principal security researcher at BI.ZONE and an associate professor in computer security at Tomsk State University. His research focuses on network security, web application security, cryptography engineering, and covert communications. He holds a PhD and associate professor degree in Computer Security. Denis has presented at different international security conferences including Power of Community, Area41, Zero Nights, Positive Hack Days, InsomniHack, and SibeCrypt.

Links:

Similar Presentations: