Can Https work without a certificate?

windows-server-2008 ssl iis-7.5 https certificate
21,470

Solution 1

No. You must have a certificate. It can be self signed, but there must be a public/private key pair in place to exchange the session symmetric key between server and client to encrypt data.

Solution 2

In short, no, but there might be subtle cases depending on how you want to deploy the system.

HTTPS is HTTP over SSL/TLS, and you can use SSL/TLS without certificate or with certificates of other types than X.509.

  • Anonymous cipher suites: they can provide encryption, but without authentication. Rather useless as far as security is concerned... To quote RFC 4346: "anonymous Diffie-Hellman is strongly discouraged because it cannot prevent man-in-the-middle attacks."
  • Pre-shared keys: it has its own mechanism to verify the remote identity, but the shared nature of the keys brings its own set of problems (in particular limited deployment).
  • Kerberos cipher suites: the client can verify the identity of the server against the Kerberos principal name.

Strictly speaking, the HTTP over TLS specification says the following:

In general, HTTP/TLS requests are generated by dereferencing a URI. As a consequence, the hostname for the server is known to the client. If the hostname is available, the client MUST check it against the server's identity as presented in the server's Certificate message, in order to prevent man-in-the-middle attacks.

If the client has external information as to the expected identity of the server, the hostname check MAY be omitted. (For instance, a client may be connecting to a machine whose address and hostname are dynamic but the client knows the certificate that the server will present.) In such cases, it is important to narrow the scope of acceptable certificates as much as possible in order to prevent man in the middle attacks. In special cases, it may be appropriate for the client to simply ignore the server's identity, but it must be understood that this leaves the connection open to active attack.

In short, it's clearly intended for usage with an X.509 certificate (it clearly references RFC 2459, later superseded by RFC 3280 and 5280: PKIs with X.509 certificates).

There can be an edge case when you're using Kerberos cipher suites. It may make sense to treat the server's Kerberos service ticket could be assume to have the same purpose as the X.509 certificate in usual HTTPS, for the verification of the remote party's identity. It doesn't quite fit within the rules of RFC 2818 (although it might fall under "If the client has external information as to the expected identity of the server, the hostname check MAY be omitted."), but it wouldn't be completely absurd. This being said, I don't think usual browsers support TLS Kerberos cipher suites in general (a number can support Kerberos via SPNEGO authentication, but that's unrelated). In addition, this would also only work in an environment where using Kerberos is suitable.

"[Giving] the consumer peace of mind that they are connecting to the correct website" is actually one of the key requirements for securing the communication between them and your server. Do use a certificate they can verify, with the appropriate naming conventions (RFC 2818 or more recently RFC 6125).

Share:
21,470

Related videos on Youtube

Laza Lazarevic
Author by

Laza Lazarevic

Updated on September 18, 2022

Comments

  • Laza Lazarevic
    Laza Lazarevic over 1 year

    Recently our infrastructure team told our development team that you do not need a certificate for https. They mentioned that the only benefit of buying a certificate was to give the consumer peace of mind that they are connecting to the correct website.

    This goes against everything I assumed about https.

    I read wikipedia and it mentions you need either a trusted certificate or a self signed certificate to configure https.

    Is it possible to configure IIS to respond to https without any certificate?

    • user1364702
      user1364702 over 12 years
      Self-signed certs give you encryption, but it can't protect from man in the middle attacks,since you get the same warnings about invalid or unverified certs for the self-signed as you do for some guy intercepting the traffic, decrypting it, stealing the data, and re-encrypting it to return to the client.
    • Bruno
      Bruno over 12 years
      "Self-signed certs give you encryption, but it can't protect from man in the middle attacks [...]", unless the user can trust those self-signed certificates explicitly by some out-of-band mechanism, which is only realistically possible for a small user base that knows you via such an out-of-band mechanism. Unlikely, indeed.
    • mfinni
      mfinni over 12 years
      Or if they trust it the first time, they'll get warned if it changes in the future. Just like SSH signatures, really.
    • Bruno
      Bruno over 12 years
      @ChrisS: definitely agreed. (I was merely to expand by quoting the spec in my answer, the edge case I'm mentioning is clearly unlikely.)
  • Brandon Rhodes
    Brandon Rhodes almost 10 years
    To test whether your OpenSSL can support certificate-less connections, run openssl ciphers and look for an ADH protocol like ADH-AES256-SHA — if such a protocol is present, then you can technically set up a connection without any certificates involved.
  • Brandon Rhodes
    Brandon Rhodes almost 10 years
    Anonymous Diffie-Hellman, as noted in another answer, did permit a connection without a certificate — but modern OpenSSL versions are usually compiled without any support for ADH.

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

iPhone: install certificate for SSL connection
Self signed certificate honoring both, Machine Name & IP Address
Certificate issue: SSL page brings up "you need to set a lock screen pin or password before you can use credential storage" on Android
net::ERR_CERT_AUTHORITY_INVALID when trying to locally call to API
SSL certificate: incorrect order
Why Firefox alert me about HTTPs "Untrusted" Connection on Positivessl - Comodo certificate?
Solve untrusted self-signed certificate
SSL certificate: EE certificate key too weak
svn not accepting https/ssl certificate
Get a server's SSL/TLS certificate using "openssl s_client"