IT Security Stack Exchange
IT Security Stack Exchange

Questions tagged [spdy]

SPDY is an open networking protocol developed by Google for transporting web content. The goal of the protocol is to reduce web page load time. SPDY does not replace HTTP, but modifies the way HTTP requests and responses are sent over the wire.

SPDY is an open networking protocol developed by Google for transporting web content. The goal of the protocol is to reduce web page load time. SPDY does not replace HTTP, but modifies the way HTTP requests and responses are sent over the wire.

6 questions
14
votes
3 answers

What should I know about SPDY before enabling it?

I've been looking at SPDY for increased performance, particularly with full-site SSL. I understand most of what it does, but I've not had time to go through and do a full review of it. What should I know about it before enabling it? Are there any…
Polynomial
  • 132,208
  • 43
  • 298
  • 379
10
votes
1 answer

Is HTTPS over UDP secure?

Recently, I notice that while using Google search, I am connecting to Google's server using UDP instead of TCP on both port 80 and port 443. It seems that Google is experimenting with some new technology related to SPDY QUIC or HTTP/2.0. Since UDP…
Question Overflow
  • 5,220
  • 6
  • 27
  • 48
5
votes
1 answer

How To Bypass SSL pinning In SPDY protocol?

I have been trying for almost a month to intercept the traffic of an android app the uses SSL pinning. I used Android-SSL-TrustKiller and SSLUnpinning but it did not work.I also decompiled the app and added mitmproxy's certificate to the app's…
DarkNight
  • 51
  • 1
3
votes
1 answer

Detect a server supporting SPDY?

With my current interest in the CRIME attack, I am currently trying to check if there actually exits a way to "fingerprint" a server that supports SPDY? My research lead me to believe only that the response header "X-Firefox-SPDY" can help. Is there…
Metahuman
  • 493
  • 1
  • 5
  • 12
1
vote
1 answer

Search for user credentials within a packet capture of a gmail session over SPDY

I was reading this paper on SSL/TLS from the SANS Reading Room on how to capture and decrypt your own SSL traffic with Wireshark. I wanted to capture the credentials used to login to gmail. When the TLS handshake takes place, the browser and the…
user1720897
  • 603
  • 2
  • 10
  • 18
0
votes
0 answers

TLSV1 and TLSV1.2 coexist issue in wireshark

I analysed an live camero's net traffic and found that the client uses both TLS1.0 and TLS1.2 in the handshakings while the server only uses TLS1.0. How can the handshaking uses both TLSV1.0 and TLSV1.2?Is there a reason for doing so? 1.Is TLS1.0 is…
vaj oja
  • 101
  • 2