SSL and TLS: Theory and Practice

Front Cover
Artech House, 2009 - Computers - 257 pages
1 Review
SSL (secure socket layer) and TLS (Transport Layer Security) are widely deployed security protocols that are used in all kinds of web-based e-commerce and e-business applications and are part of most contemporary security systems available today. This practical book provides a comprehensive introduction to these protocols, offering you a solid understanding of their design. You find discussions on the advantages and disadvantages of using SSL/TLS protocols compared to other Internet security protocols. This authoritative resource shows how to properly employ SSL and TLS and configure security solutions that are based on the use of the SSL/TLS protocols.
 

What people are saying - Write a review

We haven't found any reviews in the usual places.

Selected pages

Contents

Introduction
1
Security Services
4
Security Mechanisms
8
SECURITY DEFINITION
11
FINAL REMARKS
14
References
15
Cryptography Primer
17
Cryptographic Systems
19
Alert Messages
151
TLS 12
152
TLS Extensions
153
Cipher Suites
168
Certificate Management
173
Other Differences
174
SECURITY ANALYSIS
178
References
179

Classes of Cryptographic Systems
21
Secure Cryptosystems
22
Historical Background Information
24
Legal Situation
26
CRYPTOSYSTEMS OVERVIEW
28
Secret Key Cryptosystems
35
Public Key Cryptosystems
45
FINAL REMARKS
59
References
60
Transport Layer Security
65
PROTOCOL EVOLUTION
68
FINAL REMARKS
73
SSL Protocol
75
PROTOCOLS
87
SSL Handshake Protocol
94
SSL Change Cipher Spec Protocol
117
SSL Alert Protocol
118
SSL Application Data Protocol
120
TRAFFIC ANALYSIS OF AN SSL SESSION
121
SECURITY ANALYSIS
125
FINAL REMARKS
129
References
130
TLS Protocol
133
TLS PRF
136
Generation of Keying Material
139
TLS 10
141
Certificate Management
144
Alert Messages
145
Other Differences
146
TLS 11
147
Cipher Suites
149
Certificate Management
150
DTLS Protocol
183
DTLS 10
186
Record Protocol
187
Handshake Protocol
190
DTLS 12
194
SECURITY ANALYSIS
195
References
196
Firewall Traversal
199
SSLTLS TUNNELING
202
SSLTLS PROXYING
205
FINAL REMARKS
206
References
207
Public Key Certificates and PKIs
209
PGP Certificates
213
X509 Certificates
215
SERVER CERTIFICATES
218
Wildcard Certificates
220
Extended Validation Certificates
221
CLIENT CERTIFICATES
222
FINAL REMARKS
223
References
224
Conclusions and Outlook
227
RESEARCH CHALLENGES
230
Protection Against MITM Attacks
232
Trust Management
235
References
236
Standardized TLS Cipher Suites
239
Abbreviations and Acronyms
243
About the Author
249
Index
251
Copyright

Other editions - View all

Common terms and phrases

About the author (2009)

Rolf Oppliger received his M.Sc. and Ph.D. in Computer Science from the University of Berne, Switzerland, and the Venia Legendi in Computer Science from the University of Zürich, Switzerland. Oppliger is the founder and owner of eSECURITY Technologies Rolf Oppliger (www.esecurity.ch) and works for the Swiss Federal Strategy Unit for Information Technology (FSUIT) . He is also the author of Security Technologies for the World Wide Web (Artech House, 1999) , Internet and Intranet Security (Artech House, 1998), and Authentication Systems for Secure Networks (Artech House, 1996). Dr. Oppliger is the computer security series editor at Artech House.

Bibliographic information