Design and Implementation of SSL Based Secure Transmission System
-
摘要: 安全套接层协议SSL(Secure Socket Layer)是用来保障数据安全传输的协议,目前已经成为工业标准.首先简要介绍了SSL协议,设计并实现了基于SSL的数据安全传输系统,它由两部分组成:SSL客户方安全通信代理CSP(Client Secure Proxy)和服务器方安全通信网关SSG(Server Secure Gateway),二者可以在Internet上建立一个安全通道,从而能够保障敏感数据的安全传输.讨论了系统的整体结构,并详细分析了实现中的若干关键技术,主要包括握手协议的实现、密钥的协商、记录层数据的分段与填充、会话重用等.
-
关键词:
- 网络 /
- 安全 /
- 安全套接层协议SSL /
- 密钥协商
Abstract: SSL protocol is a de facto standard to protect data transferred securely on the Internet. According to the SSL protocol, we design and implement a SSL based secure transmission system. It includes two parts: Client Secure Proxy(CSP) and Server Secure Gateway(SSG) through which a secure tunnel can be established between peers to protect sensitive data from being eavesdropped, altered and faked. This paper presents a detailed structure of this system and key techniques such as the implementation of handshake protocol, the negotiation of secret keys, the fragmentation and padding of record layer, session reuse etc. Our SSL Secure Proxy can establish an secure tunnel.-
Key words:
- electric networks /
- safety /
- Secure Socket Layer(SSL) /
- secret negotiation
-
[1] Freier,Karlton,Kocher. The SSL protocol Version 3.0 .[2] Berners-Lee, Fielding, Frystyk H. Hypertext transfer protocol-HTTP/1.0 .[3] David Wagner, Bruce Schneier. Analysis of the SSL 3.0 protocol . [4] 韦 卫,王德杰,张 英,等.基于SSL的安全WWW系统的研究与实现[J].计算机研究与发展,1999,36(5):619~624. -
点击查看大图
计量
- 文章访问数: 2844
- HTML全文浏览量: 36
- PDF下载量: 323
- 被引次数: 0
下载:
