CipherSuite Setting Problem of SSL Protocol and It's Solutions

Lee, Yun Young; Hur, Soon-Haeng; Park, SangJoo; Shin, Donghwi; Won, Dongho; Kim, Seungjoo

doi:10.3745/kipstc.2008.15-c.5.359

The KIPS Transactions:PartC

2008

DOI: 10.3745/kipstc.2008.15-c.5.359

|View full text |Cite

CipherSuite Setting Problem of SSL Protocol and It's Solutions

Yun Young Lee¹,

Soon-Haeng Hur²,

SangJoo Park³

et al.

Abstract: As the use of Internet and information communication technology is being generalized, the SSL protocol is essential in Internet because the important data should be transferred securely. While the SSL protocol is designed to defend from active attack such as message forgery and message alteration, the cipher suite setting can be easily modified. If the attacker draw on a malfunction of the client system and modify the cipher suite setting to the symmetric key algorithm which has short key length, he should eav… Show more

Help me understand this report

Search citation statements

Order By: Relevance

Paper Sections

Select...

Citation Types

Supporting

Mentioning

Contrasting

Year Published

2014

2015

Publication Types

Select...

Article3

Relationship

Self Cite0

Independent3

Authors

Journals

Cited by 3 publications

References 1 publication

Supporting

Mentioning

Contrasting

Order By: Relevance

Design of Improved Authentication Protocol for Sensor Networks in IoT Environment

Kim¹,

Kwak

2015

Journal of the Korea Institute of Information Security and Cryp

View full text Add to dashboard Cite

Recently interest in Internet of Things(IoT) is increasing, and a variety of the security technologies that are suitable for Internet of Things has being studied. Especially sensor network area of the device is an increased using and diversified for a low specification devices because of characteristic of the Internet of Things. However, there is difficulty in directly applying the security technologies such as the current authentication technologies to a low specification device, so also increased security threats. Therefore, authentication protocol between entities on the sensor network communication in Internet of Things has being studied. In 2014, Porambage et al. suggested elliptic curve cryptography algorithm based on a sensor network authentication protocol for advance security of Internet of Things environment, but it is vulnerability exists. Accordingly, in this paper, we analyze the vulnerability in elliptic curve cryptography algorithm based on authentication protocol proposed by Porambage et al. and propose an improved authentication protocol for sensor networks in Internet of Things environment.

show abstract

Design of Improved Authentication Protocol for Sensor Networks in IoT Environment

Kim¹,

Kwak

2015

Journal of the Korea Institute of Information Security and Cryp

View full text Add to dashboard Cite

show abstract

Key-pair(Public key, Private key) conflict analysis using OpenSSL

Hyoung¹,

박정효²,

Jun³

2014

Journal of the Korea Academia-Industrial cooperation Society

View full text Add to dashboard Cite

A Security Assessment on the Designated PC service

Lee¹,

Yim²

2015

Journal of the Korea Society of Computer and Information

View full text Add to dashboard Cite

In this paper, we draw a security assessment by analyzing possible vulnerabilities of the designated PC service which is supposed for strengthening security of current online identification methods that provide various areas such as the online banking and a game and so on. There is a difference between the designated PC service and online identification methods. Online identification methods authenticate an user by the user's private information or the user's knowledge-based information, though the designated PC service authenticates a hardware-based unique information of the user's PC. For this reason, high task significance services employ with online identification methods and the designated PC service for improving security multiply. Nevertheless, the security assessment of the designated PC service has been absent and possible vulnerabilities of the designated PC service are counterfeiter and falsification when the hardware-based unique-information is extracted on the user's PC and sent an authentication server. Therefore, in this paper, we analyze possible vulnerabilities of the designated PC service and draw the security assessment.

show abstract

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

hi@scite.ai

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

CipherSuite Setting Problem of SSL Protocol and It's Solutions

Cited by 3 publications

References 1 publication

Design of Improved Authentication Protocol for Sensor Networks in IoT Environment

Design of Improved Authentication Protocol for Sensor Networks in IoT Environment

Key-pair(Public key, Private key) conflict analysis using OpenSSL

A Security Assessment on the Designated PC service

Contact Info

Product

Resources

About