New York University Network Problems Encrypted Traffic and Security Questios

Question Description

Consider the trace https://www.cloudshark.org/captures/2afbba90fdcb that captures an HTTPS session and answer the questions below. The trace captures encrypted traffic, so normally you would not be able to see the application layer payload. As the trace was taken, the browser (Chrome) was instructed (by starting it with --ssl-key-log-file=sslkeylogfile.log option) to save the SSL keylog for the session. The SSL keylog was then uploaded to CloudShark together with the trace to enable decryption. If you are curious how the same trace looks without the key, take a look at https://www.cloudshark.org/captures/21d4224a7346.
1. The SSL keylog has been uploaded to a third-party website. Does that somehow compromise security of either the client or the server? Obviously, the content of the session is now visible to everyone but how about any past or future sessions? Or sessions with other clients or servers? Is there a danger of Man-in-the-Middle attack?
2. How many packets does it take to establish the TLS session (i.e., past 3-way handshake all the way to the packet that carries the HTTP GET request)?
3. How many round trips does it take to establish the TLS session, i.e., to get to the point when the client can start with HTTP? Pay attention to what is a trigger for what, this is a bit more complicated than counting packet pairs till you get to the one that contains the first HTTP command.
4. Which packets contain the server certificate?
5. Who issued the certificate?
6. From the TCP perspective, is there an ACK for every data packet sent?
7. What is the purpose of the last line of the HTTP request headers?

Our Service Charter

1. Professional & Expert Writers: DESTINY PAPERS only hires the best. Our writers are specially selected and recruited, after which they undergo further training to perfect their skills for specialization purposes. Moreover, our writers are holders of master's and Ph.D. degrees. They have impressive academic records, besides being native English speakers.

2. Top Quality Papers: Our customers are always guaranteed papers that exceed their expectations. All our writers have +5 years of experience. This implies that all papers are written by individuals who are experts in their fields. In addition, the quality team reviews all the papers before sending them to the customers.

3. Plagiarism-Free Papers: All papers provided by DESTINY PAPERS are written from scratch. Appropriate referencing and citation of key information are followed. Plagiarism checkers are used by the Quality assurance team and our editors just to double-check that there are no instances of plagiarism.

4. Timely Delivery: Time wasted is equivalent to a failed dedication and commitment. DESTINY PAPERS is known for the timely delivery of any pending customer orders. Customers are well informed of the progress of their papers to ensure they keep track of what the writer is providing before the final draft is sent for grading.

5. Affordable Prices: Our prices are fairly structured to fit in all groups. Any customer willing to place their assignments with us can do so at very affordable prices. In addition, our customers enjoy regular discounts and bonuses.

6. 24/7 Customer Support: At DESTINY PAPERS, we have put in place a team of experts who answer all customer inquiries promptly. The best part is the ever-availability of the team. Customers can make inquiries anytime.