Comparison Studies between Pre-Shared and Public Key Exchange Mechanisms for Transport Layer Security

2006 ◽  
Author(s):  
Fang-Chun Kuo ◽  
Hannes Tschofenig ◽  
Fabian Meyer ◽  
Xiaoming Fu
Keyword(s):  
Key Exchange ◽  
Transport Layer ◽  
Public Key ◽  
Transport Layer Security

Data Confidentiality, Integrity, and Authentication

2019 ◽  
pp. 246-274
Author(s):  
Dhanalakshmi Senthilkumar
Keyword(s):  
Access Control ◽  
Hash Function ◽  
Transport Layer ◽  
Public Key ◽  
Data Confidentiality ◽  
Linked List ◽  
Cryptographic Hash Function ◽  
Transport Layer Security ◽  
Entire Network

Blockchain has been created in the process of development in bitcoin. It's a singly linked list of block, with each block containing a number of transactions and each list in the blocks using with cryptographic functions. The cryptographic hash function contains the hash of the previous block, timestamp, and transaction ID. Blockchain services include the authentication, confidentiality, integrity, data and resource provenance, and privacy and access control lists technologies. The authentication provider authenticates decentralized database with transactions in private-public key pair. This key-pair is used in the transport layer security with the entire network. The network legitimizes the transaction after that and adds the transaction to the blockchain. A sequence of blocks in blockchain holds the complete record of transactions like a public ledger. The integrity data written in the blockchain cannot be altered subsequently. By limiting access to the information in confidentiality, only authorized users can access the information, so that information is also protected.

scholarly journals Embedding the three pass protocol messages into transmission control protocol header

2021 ◽  
Vol 22 (1) ◽  
pp. 442
Author(s):  
Suherman Suherman ◽  
Deddy Dikmawanto ◽  
Syafruddin Hasan ◽  
Marwan Al-Akaidi
Keyword(s):  
Information Exchange ◽  
Transmission Control Protocol ◽  
Key Exchange ◽  
Transport Layer ◽  
Transmission Control ◽  
Control Protocol ◽  
Transfer Delay ◽  
Transport Layer Security ◽  
Security Information ◽  
Dynamic Key

<span>Transmission control protocol provides reliable communication between two or more parties. Each transmitted packet is acknowledged to make sure successful deliveries. Transport layer security protocols send security information exchange as TCP loads. As results, the handshaking stage experiences longer delay as TCP acknowledgement process has already been delay prone. Furthermore, the security message transfers may have their own risks as they are not well protected yet. This paper proposes TCP-embedded three pass protocol for dynamic key exchange. The key exchange is embedded into TCP headers so that transmission delay is reduced, and message transfer is secured. The proposed protocol was assessed on self network by using socket programming in lossless environment. The assessments showed that the proposed protocol reduced three-pass protocol message transfer delay up to 25.8% on lossless channel. The assessment on security also showed that TCP-embedded three pass protocol successfully secured each transmitted TCP load using a unique key; that is much securer than the compared method.</span>

scholarly journals Accountable and Transparent TLS Certificate Management: An Alternate Public-Key Infrastructure with Verifiable Trusted Parties

2018 ◽  
Vol 2018 ◽  
pp. 1-16 ◽  
Author(s):  
Salabat Khan ◽  
Zijian Zhang ◽  
Liehuang Zhu ◽  
Meng Li ◽  
Qamas Gul Khan Safi ◽  
...  
Keyword(s):  
State Of The Art ◽  
Public Key Infrastructure ◽  
Transport Layer ◽  
Public Key ◽  
Security Issues ◽  
Transport Layer Security ◽  
Security Properties ◽  
Alternative Approaches ◽  
Certificate Management ◽  
Performance Results

Current Transport Layer Security (TLS) Public-Key Infrastructure (PKI) is a vast and complex system; it consists of processes, policies, and entities that are responsible for a secure certificate management process. Among them, Certificate Authority (CA) is the central and most trusted entity. However, recent compromises of CA result in the desire for some other secure and transparent alternative approaches. To distribute the trust and mitigate the threats and security issues of current PKI, publicly verifiable log-based approaches have been proposed. However, still, these schemes have vulnerabilities and inefficiency problems due to lack of specifying proper monitoring, data structure, and extra latency. We propose Accountable and Transparent TLS Certificate Management: an alternate Public-Key Infrastructure (PKI) with verifiable trusted parties (ATCM) that makes certificate management phases; certificate issuance, registration, revocation, and validation publicly verifiable. It also guarantees strong security by preventing man-in-middle-attack (MitM) when at least one entity is trusted out of all entities taking part in the protocol signing and verification. Accountable and Transparent TLS Certificate Management: an alternate Public-Key Infrastructure (PKI) with verifiable trusted parties (ATCM) can handle CA hierarchy and introduces an improved revocation system and revocation policy. We have compared our performance results with state-of-the-art log-based protocols. The performance results and evaluations show that it is feasible for practical use. Moreover, we have performed formal verification of our proposed protocol to verify its core security properties using Tamarin Prover.

Data Confidentiality, Integrity, and Authentication

2021 ◽  
pp. 459-487
Author(s):  
Dhanalakshmi Senthilkumar
Keyword(s):  
Access Control ◽  
Hash Function ◽  
Transport Layer ◽  
Public Key ◽  
Data Confidentiality ◽  
Linked List ◽  
Cryptographic Hash Function ◽  
Transport Layer Security ◽  
Entire Network

Blockchain has been created in the process of development in bitcoin. It's a singly linked list of block, with each block containing a number of transactions and each list in the blocks using with cryptographic functions. The cryptographic hash function contains the hash of the previous block, timestamp, and transaction ID. Blockchain services include the authentication, confidentiality, integrity, data and resource provenance, and privacy and access control lists technologies. The authentication provider authenticates decentralized database with transactions in private-public key pair. This key-pair is used in the transport layer security with the entire network. The network legitimizes the transaction after that and adds the transaction to the blockchain. A sequence of blocks in blockchain holds the complete record of transactions like a public ledger. The integrity data written in the blockchain cannot be altered subsequently. By limiting access to the information in confidentiality, only authorized users can access the information, so that information is also protected.

scholarly journals Modeling advanced security aspects of key exchange and secure channel protocols

2020 ◽  
Vol 62 (5-6) ◽  
pp. 287-293
Author(s):  
Felix Günther
Keyword(s):  
Building Blocks ◽  
Key Exchange ◽  
Internet Security ◽  
Streaming Data ◽  
Transport Layer ◽  
Security Model ◽  
Secret Key ◽  
Multi Stage ◽  
Key Exchange Protocols ◽  
Secure Channel

AbstractSecure connections are at the heart of today’s Internet infrastructure, protecting the confidentiality, authenticity, and integrity of communication. Achieving these security goals is the responsibility of cryptographic schemes, more specifically two main building blocks of secure connections. First, a key exchange protocol is run to establish a shared secret key between two parties over a, potentially, insecure connection. Then, a secure channel protocol uses that shared key to securely transport the actual data to be exchanged. While security notions for classical designs of these components are well-established, recently developed and standardized major Internet security protocols like Google’s QUIC protocol and the Transport Layer Security (TLS) protocol version 1.3 introduce novel features for which supporting security theory is lacking.In my dissertation [20], which this article summarizes, I studied these novel and advanced design aspects, introducing enhanced security models and analyzing the security of deployed protocols. For key exchange protocols, my thesis introduces a new model for multi-stage key exchange to capture that recent designs for secure connections establish several cryptographic keys for various purposes and with differing levels of security. It further introduces a formalism for key confirmation, reflecting a long-established practical design criteria which however was lacking a comprehensive formal treatment so far. For secure channels, my thesis captures the cryptographic subtleties of streaming data transmission through a revised security model and approaches novel concepts to frequently update key material for enhanced security through a multi-key channel notion. These models are then applied to study (and confirm) the security of the QUIC and TLS 1.3 protocol designs.

ChaCha20-Poly1305 Crypto Core Compatible with Transport Layer Security 1.3

2021 ◽  
Author(s):  
Ronaldo Serrano ◽  
Ckristian Duran ◽  
Trong-Thuc Hoang ◽  
Marco Sarmiento ◽  
Akira Tsukamoto ◽  
...  
Keyword(s):  
Transport Layer ◽  
Transport Layer Security
Sign in / Sign up

Export Citation Format

Share Document