Secure password-based cipher suite for TLS
| Autor: | Michael Waidner, Peter Buhler, Thomas Eirich, Michael Steiner |
|---|---|
| Rok vydání: | 2001 |
| Předmět: |
Password
Transport Layer Security General Computer Science business.industry Computer science ComputerSystemsOrganization_COMPUTER-COMMUNICATIONNETWORKS Public key infrastructure Mutual authentication Computer security computer.software_genre Forward secrecy Cipher suite Authentication protocol Safety Risk Reliability and Quality business computer Secure channel Computer network |
| Zdroj: | ACM Transactions on Information and System Security. 4:134-157 |
| ISSN: | 1557-7406 1094-9224 |
| Popis: | SSL is the de facto standard today for securing end-to-end transport on the Internet. While the protocol itself seems rather secure, there are a number of risks that lurk in its use, for example, in web banking. However, the adoption of password-based key-exchange protocols can overcome some of these problems. We propose the integration of such a protocol (DH-EKE) in the TLS protocol, the standardization of SSL by IETF. The resulting protocol provides secure mutual authentication and key establishment over an insecure channel. It does not have to resort to a PKI or keys and certificates stored on the users computer. Additionally, its integration in TLS is as minimal and non-intrusive as possible. |
| Databáze: | OpenAIRE |
| Externí odkaz: |
|