| 基于SSL/TLS的安全应用中独立端口和磋商升级的研究与实现 |
| |
| 引用本文: | 邓晓军,陈怀义.基于SSL/TLS的安全应用中独立端口和磋商升级的研究与实现[J].计算机工程与科学,2006,28(4):23-25. |
| |
| 作者姓名: | 邓晓军 陈怀义 |
| |
| 作者单位: | 1. 湖南工业大学信息工程系,湖南,株洲,412000
2. 国防科技大学计算机学院,湖南,长沙,410073 |
| |
| 摘 要: | 基于SSL/TLS构建的安全应用中通常采用了独立端口和磋商升级的策略。本文详细论述了这两种策略的基本原理,比较了它们各自的优缺点,进而对实施过程中遇到降级攻击以及因代理语义不能交互而导致连接失败的问题进行了分析,并针对这些问题提出了相应的解决办法。
|
| 关 键 词: | SSL TLS 独立端口 磋商升级 |
| 文章编号: | 1007-130X(2006)04-0023-03 |
| 修稿时间: | 2004年10月12 |
SSL/TLS-Based Research and Implementation of Separate Port and Upward Negotiation in Security Applications |
| |
| DENG Xiao-jun,CHEN Huai-yi.SSL/TLS-Based Research and Implementation of Separate Port and Upward Negotiation in Security Applications[J].Computer Engineering & Science,2006,28(4):23-25. |
| |
| Authors: | DENG Xiao-jun CHEN Huai-yi |
| |
| Abstract: | Most SSL/TLS-based security applications adopt two strategies:the separate port strategy and the upward negotiation strategy. This paper discusses the principle of the two strategies and compares the advantages and disadvantages of the two, and then analyzes the problems of downgrade attacks and the difference of semantics causing connection failures which emerge when the two strategies are being implemented. And the solutions to these problems are also promoted. |
| |
| Keywords: | SSL TLS |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
| 点击此处可从《计算机工程与科学》浏览原始摘要信息 |
|
点击此处可从《计算机工程与科学》下载全文 |
