AppSec Europe 2018 has ended
                                                                                    ***Content is subject to change.***
Back To Schedule
Friday, July 6 • 11:45am - 12:30pm
FIESTA: an HTTPS side-channel party LIMITED

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.
Limited Capacity seats available

In the past few years, several attacks exploiting side-channel issues in TLS traffic have been launched with the aim of extracting information protected by HTTPS. CRIME, BREACH,, and TIME are all good examples of such attacks.  But they are known, and most Internet sites have introduced countermeasures to protect against them. Unfortunately, this is not enough to protect sensitive online information. HTTPS traffic has other side-channels that could be exploited in a similar way, exposing private information. It this paper, we present a new tool, called FIESTA, that will help us test this kind of issues. In addition, we release a new side-channel not used before, affecting the most important technology companies in the Internet.

avatar for Jose Selvi

Jose Selvi

Principal Penetration Tester, Prosegur Cybersecurity
Jose Selvi is a Principal Penetration Tester & Security Researcher atProsegur Cybersecurity. His 13 years of expertise performing advancedsecurity services and solutions in various industries include mainlypenetration tests and information security research in new technologies.He... Read More →

Friday July 6, 2018 11:45am - 12:30pm BST
Fleming - 3rd Floor QEII Centre Broad Sanctuary, Westminster, London. SW1P 3EE