SafeTLS - Securing the Future Internet with TLS 1.3

Home » SafeTLS - Securing the Future Internet with TLS 1.3
01/10/2016 to 31/12/2020

Project Description:

TLS/SSL is one of the 3 essential cryptographic protocols used today (together with SSH and IPSec). It is widely used in securing e-commerce, Internet browsing, email, Voice over IP, and in almost every search and connection query made on the Internet today. All Internet browsers, including Internet Explorer, Mozilla Firefox, and Google Chrome, support TLS.
Despite its importance, TLS still presents many security flaws in its conception.

For many years, the complex structure of TLS 1.2 made it nearly impossible to analyze. Later breakthroughs in protocol analysis indicated a partially-sound design [JKS+12], [KPW13], [BFK+14]. However, attacks such as FREAK , LogJam, 3Shake, SKIP, SLOTH, Lucky 13, and DROWN bely such results, and raise concerns over the security of today's Internet use.As a consequence, a new version i.e. TLS 1.3 has recently been drafted.

Our project, SafeTLS, addresses the security of both TLS 1.3 and of TLS 1.2 as they are (expected to be) used, in three important ways:
* A better understanding: We will provide a better understanding of how TLS 1.2 and 1.3 are used in real-world applications.
* Empowering clients: By developing a tool that will show clients the quality of their TLS connection and inform them of potential security and privacy risks.
* Analyzing implementations: We will analyze the soundness of current TLS 1.2 implementations and use automated verification to provide a backbone of a secure TLS 1.3 implementation.


Wednesday, 12 December, 2018


The European Commission has launched a call for applications to select members of the Stakeholder Cybersecurity Certification Group (SCCG). Submission of application is until 17th September 2019.


Future Events

The 14th International Conference on Availability, Reliability and Security (ARES 2019), will be held from August 26 to August 29, 2019 at the University of Kent, Canterbury, UK.

26/08/2019 to 29/08/2019

PROTECTIVE is co-organising the 2nd International Workshop on Cyber Threat Intelligence Management(CyberTIM 2019) as apart of the ARES 2019 conference in the UK on 26-29 August 2019.

26/08/2019 to 29/08/2019