The Role of SSL/TLS, IPsec &amp; IKEv2 Protocols in Security of E-learning System’s Communications, A Study &amp; Simulation Approach

Zivi, Afshin; Farahani, Gholamreza; Manochehri, Kooroush

doi:10.14445/22312803/ijctt-v50p105

Cited by 2 publications

(5 citation statements)

References 0 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Let us consider the general chart of authentication of a key generated by users А and В if there is a TA under conditions of attacks of an active eavesdropper Е Figure 2. The users communicate with TA, where they are preliminary authenticated using protocols that apply certificates, for example, protocols SSL/TLS or IPSec [23]. The users have integrated PUF blocks into their devices.…”

Section: Dh Authentication Protocol Using a Ta And Pufsmentioning

confidence: 99%

Authentication and key distribution protocol based on Diffie-Hellman algorithm and physically unclonable function

A. Yakovlev,

Zh. Satybaldina,

Egamberdiyev

et al. 2024

TELKOMNIKA

View full text Add to dashboard Cite

Based on the modified Diffie-Hellman (DH) protocol, a key distribution scheme between two correspondents over open communication channels is considered. The correspondents communicate through a trusted entity. An attacker can control the communication channels between the correspondents and the channels between the correspondents and the trusted authority (TA) and perform active attacks there, including a man-in-themiddle attack. DH authentication protocol using physically unclonable functions (PUF) is proposed. A formalized PUF model based on the class of universal hash functions is presented. Namely, it is proposed to use the class of strictly universal hash functions developed by Wegman and Carter. A polynomial dependence of the possible number of PPUs on the number of answers has been proven. Requirements for PPUs suitable for authentication systems are formulated. The protocol has been analyzed, and its security has been proved.

show abstract

Section: Dh Authentication Protocol Using a Ta And Pufsmentioning

confidence: 99%

Authentication and key distribution protocol based on Diffie-Hellman algorithm and physically unclonable function

A. Yakovlev,

Zh. Satybaldina,

Egamberdiyev

et al. 2024

TELKOMNIKA

View full text Add to dashboard Cite

show abstract

“…4T EXP +7T SYM +29T h SR: Server Registration Phase, SA: Server Authentication Phase, UR: User Registration Phase, ULA: User Login and Authentication Phase, PC: Password Change Phase, RCA: Registration Center Authentication Phase Table 11: Comparison of execution times with considering (Zivi et al, 2017a), (Chuang and Chen, 2014) and (Chaudhry et al, 2016) for proposed model and other methods Models Execution times (Microsecond) Improvement of proposed method (%) Kim et al (2012) 20237.0 67.09 Yoon and Yoo (2013) 20237.0 67.09 Chuang and Chen (2014) 11357.9 −6.22 Mishra et al (2014) 11376.1 −6.07 Amin et al (2015) 35853 Kim et al, Yoon and Yoo, Chuang and Chen, Mishra et al and Amin et al models, five IKEv2 operations for acquiring the same result is considered. This five IKEv2 operation is for client side configuration: (1) request from the server for client side configuration, (2) respond from the user for applying this configuration, (3) sending configuration script or algorithm for receiving validation message, (4) sending system-level execution permission and (5) sending configuration result.…”

Section: Compare the Proposed Model With Other Models In Terms Of Thementioning

confidence: 99%

“…Also the IKEv2 task processing time choose from our previous research. This value is average of task processing time in 10%, 30% and 50% of background traffic in 3 states of evaluation (Zivi et al, 2017a) Also Table 9 shows the Security and functional features improvements in percent for proposed model in comparison to other models. To calculate the security percentage of each method, (second column of Table 9), considering 16 security components with a security percentage of 100 (proposed method), with assuming that the security components have an equal importance (Table 8), each security component has a 6.25% impact on overall security.…”

Section: Compare the Proposed Model With Other Models In Terms Of Thementioning

confidence: 99%

“…The aim of this research was to provide an authentication protocol based on hardware, software and iriscode identifier through a SSL/TLS protocol for the Elearning and other similar web-based systems such that specifically, a sample has been assessed and examined in the Islamic Azad University Electronic Unit (Zivi et al, 2017b) in order to promote the level of privacy, security in the system, protect the student information and maintain optimal function of the system. The reason for using a SSL/TLS protocol in this authentication model has been explained in detail in a previous research (Zivi et al, 2017a). In the previous study, a SSL/TLS protocol was compared with 2 other protocols called IKEv2 and IPsec and in most comparisons the SSL/TLS protocol provided the best result (Zivi et al, 2017a).…”

Section: Introductionmentioning

confidence: 99%

“…The reason for using a SSL/TLS protocol in this authentication model has been explained in detail in a previous research (Zivi et al, 2017a). In the previous study, a SSL/TLS protocol was compared with 2 other protocols called IKEv2 and IPsec and in most comparisons the SSL/TLS protocol provided the best result (Zivi et al, 2017a).…”

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

A New Secure Passwordless Multi-Server Modified Authenticated Master-Key Agreement Scheme Based on Hardware-Software and Iriscode Identifiers Through SSL/TLS Protocol for E-learning and Similar Web-based Services

Zivi

Farahani

2018

Journal of Computer Science

Self Cite

View full text Add to dashboard Cite

There is a growing concern about systems security and how to organize it. This is because the internet which is the backbone of all systems is regarded as unsafe. Also, the internet transmits all connection transactions in the E-learning and similar web-based systems and as a result, intruders and attackers by abusing security holes can compromise the system. The Elearning and other similar systems should be safe against threats and manipulation by intruders and should protect the privacy of users. The purpose of this paper is to provide an authentication model based on hardware, software and iriscode identifiers through the SSL/TLS protocol, in order to significantly improve the security and privacy level, while at the same time, maintain the system performance at an acceptable level. There are major differences between our model and other similar works, such as: no need to password in registration and login phase, using of iriscode identifier, isolation of users profiles based on hardware and software identifiers of relying party, enhancing master secret key exchange phase in the SSL/TLS protocol, no need to password change phase, strong performance in comparison with other approaches because of using SHA-3 function and removing password change phase, capability of providing authentication services over large networks and internet. Also according to conducted studies and tests, the mentioned solution can significantly improve the system security, as well as maintain its function at an acceptable level. Therefore the proposed model easily can be used for immunize E-learning and similar web-based systems that works through internet. The proposed model improves the 32.50% security and 63.58% execution time in comparison to average of five newest methods.

show abstract

The Role of SSL/TLS, IPsec & IKEv2 Protocols in Security of E-learning System’s Communications, A Study & Simulation Approach

Cited by 2 publications

References 0 publications

Authentication and key distribution protocol based on Diffie-Hellman algorithm and physically unclonable function

Authentication and key distribution protocol based on Diffie-Hellman algorithm and physically unclonable function

A New Secure Passwordless Multi-Server Modified Authenticated Master-Key Agreement Scheme Based on Hardware-Software and Iriscode Identifiers Through SSL/TLS Protocol for E-learning and Similar Web-based Services

Contact Info

Product

Resources

About