Secure Socket Layer Transport Layer Security

More documents

Recommendations

Info

SSL Record Protocol (suite) message fragmentation and compression • 16KB in a fragment • LossLess compression (1 KB is OK) confidentiality • using symmetric encryption with a shared secret key defined by Handshake Protocol • IDEA, RC2-40, RC2 40, DES-40, DES 40, DES, 3DES, Fortezza, RC4-40, RC4 40, RC4-128 RC4 128 • message is compressed before encryption (optional) message integrity • using a MAC with shared secret key • Using SHA-1 SHA 1 or MD5 Non replay SSL Alert Protocol • Use counter (64 bits) to prevent replay in SSL session page 39 SSL Alert Protocol signals state changes and indicates errors SSL Alert is invoked by: Handshake protocol – in case of problem Record protocol – e.g. if MAC is not valid Application – to close connection (close_notify) Connections should be closed with close_notify to allow detection of truncation attacks (dropping last messages) Notice: Notice close_notify is normal, not a failure alert! The alerts are carried in an “Alert Alert Record” Record
SSL Alert Protocol (2) Use two-byte two byte message to convey SSL-related SSL related alerts to peer entity First byte is severity level warning(1) or fatal(2) Second byte is specific alert Always fatal: unexpected_message, bad_record_mac, decompression_failure, handshake_failure, illegal_parameter Other alerts: close_notify, no_certificate, bad_certificate, unsupported_certificate, certificate_revoked, certificate_expired, certificate_unknown Compressed and encrypted like all SSL data SSL Handshake Protocol Allow server and client to agree agree on cipher suite (algorithms and options): authenticate server (madatory ( madatory) Authenticate client (option) negotiate encryption algorithms (symmetric or asymmetric) negotiate Signature & MAC algorithms negotiate cryptographic keys to be used Send certificate(s) certificate(s SSL Message compression Comprise a series of messages in 4 phases Establish <strong>Security</strong> Capabilities Server Authentication and Key Exchange Client Authentication and Key Exchange Finish
Page 1 and 2: VPN Secure Socket Layer Transport L
Page 3 and 4: Transport Layer Security • Advant
Page 5 and 6: No client auth; weak encryption; Ma
Page 7 and 8: Principe de fonctionnement de SSL:
Page 9 and 10: Certificat X509 - Autorité de cert
Page 11 and 12: Web Security with SSL/TLS (simplifi
Page 13 and 14: Using Public Key Certificates • W
Page 15 and 16: SSL Sub-Protocols Sub Protocols La
Page 17 and 18: A Pseudo-Random Pseudo Random Funct
Page 19: SSL Session State Information Eleme
Page 23 and 24: Phase 1 - Establish Parameters Clie
Page 25 and 26: Phase 4 - Finish Client Server Clie
Page 27 and 28: SMTP over TLS : Solutions Serveurs
Page 29: Spoofed Location Bar (1) Spoofed w

Secure Socket Layer Transport Layer Security

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?