Mechanized Verification of Security Properties of Transport Layer Security 1.2 Protocol with Crypto Verif in Computational Model

2014 ◽  
Vol 13 (4) ◽  
pp. 601-613 ◽  
Author(s):  
Bo Meng ◽  
Leyuan Niu ◽  
Yitong Yang ◽  
Zimao Li
Keyword(s):  
Computational Model ◽  
Transport Layer ◽  
Transport Layer Security ◽  
Security Properties ◽  
Mechanized Verification

scholarly journals Accountable and Transparent TLS Certificate Management: An Alternate Public-Key Infrastructure with Verifiable Trusted Parties

2018 ◽  
Vol 2018 ◽  
pp. 1-16 ◽  
Author(s):  
Salabat Khan ◽  
Zijian Zhang ◽  
Liehuang Zhu ◽  
Meng Li ◽  
Qamas Gul Khan Safi ◽  
...  
Keyword(s):  
State Of The Art ◽  
Public Key Infrastructure ◽  
Transport Layer ◽  
Public Key ◽  
Security Issues ◽  
Transport Layer Security ◽  
Security Properties ◽  
Alternative Approaches ◽  
Certificate Management ◽  
Performance Results

Current Transport Layer Security (TLS) Public-Key Infrastructure (PKI) is a vast and complex system; it consists of processes, policies, and entities that are responsible for a secure certificate management process. Among them, Certificate Authority (CA) is the central and most trusted entity. However, recent compromises of CA result in the desire for some other secure and transparent alternative approaches. To distribute the trust and mitigate the threats and security issues of current PKI, publicly verifiable log-based approaches have been proposed. However, still, these schemes have vulnerabilities and inefficiency problems due to lack of specifying proper monitoring, data structure, and extra latency. We propose Accountable and Transparent TLS Certificate Management: an alternate Public-Key Infrastructure (PKI) with verifiable trusted parties (ATCM) that makes certificate management phases; certificate issuance, registration, revocation, and validation publicly verifiable. It also guarantees strong security by preventing man-in-middle-attack (MitM) when at least one entity is trusted out of all entities taking part in the protocol signing and verification. Accountable and Transparent TLS Certificate Management: an alternate Public-Key Infrastructure (PKI) with verifiable trusted parties (ATCM) can handle CA hierarchy and introduces an improved revocation system and revocation policy. We have compared our performance results with state-of-the-art log-based protocols. The performance results and evaluations show that it is feasible for practical use. Moreover, we have performed formal verification of our proposed protocol to verify its core security properties using Tamarin Prover.

ChaCha20-Poly1305 Crypto Core Compatible with Transport Layer Security 1.3

2021 ◽  
Author(s):  
Ronaldo Serrano ◽  
Ckristian Duran ◽  
Trong-Thuc Hoang ◽  
Marco Sarmiento ◽  
Akira Tsukamoto ◽  
...  
Keyword(s):  
Transport Layer ◽  
Transport Layer Security

scholarly journals Implementasi dan Analisis Fitur Keamanan Protokol MQTT pada Telehealthcare

JoTI ◽  
2020 ◽  
Vol 2 (2) ◽  
pp. 12-23
Author(s):  
Dian Rachmadini ◽  
Ira Puspasari ◽  
Jusak
Keyword(s):  
Cross Correlation ◽  
Transport Layer ◽  
Transport Layer Security

Protokol MQTT merupakan salah satu protokol IoT dengan konsep publisher, subscriber, dan broker. Penerapan protokol MQTT dengan fitur keamanan dapat menggunakan Transport Layer Security (TLS). Pada makalah ini, fitur keamanan TLS pada MQTT akan diimplementasikan untuk mengirim data sinyal EKG. Sinyal EKG berbeda setiap orang dan merupakan privasi bagi pasien, karena dari sinyal EKG ini juga dapat digunakan untuk melihat penyakit pasien tersebut. Proses transmisi pada MQTT Security (MQTTS) akan menggunakan file kunci yang telah dibuat oleh broker. File kunci ini akan diberikan kepada client supaya bisa melakukan komunikasi, mengirim dan menerima data yang telah terenkripsi. Enkripsi data dilakukan karena adanya file kunci ini sehingga proses transmisi lebih aman. Hasil analisis perhitungan selisih besar paket sebelum dan setelah pengiriman pada QoS 0 adalah 152,6458 byte dan 139,4504 byte. Sedangkan QoS 1 sebesar 99,7932 byte dan 115,5321 byte. Kedua QoS menunjukkan selisih yang cukup besar, tetapi disisi lain pegiriman data menjadi lebih aman. Pada pengujian waktu yang diperlukan untuk proses enkripsi, QoS 0 menghasilkan waktu rata-rata 0,7 ms, QoS 1 menunjukkan hasil lebih lama yaitu 9,6 ms   dikarenakan penambahan sinyal kontrol pada QoS 1. Hasil uji integritas data dengan cross-correlation , QoS 0 dan QoS 1 menunjukkan nilai 1 pada lag ke-0 yang artinya data yang dikirim dan diterima tidak terdapat perubahan (sama).

Sign in / Sign up

Export Citation Format

Share Document