• 中国计算机学会会刊
  • 中国科技核心期刊
  • 中文核心期刊

J4 ›› 2014, Vol. 36 ›› Issue (06): 1077-1082.

• 论文 • 上一篇    下一篇

一种安全协议的安全性分析及攻击研究

钟军,吴雪阳,江一民,段光明   

  1. (78046部队,四川 成都 610014)
  • 收稿日期:2012-11-20 修回日期:2013-04-12 出版日期:2014-06-25 发布日期:2014-06-25

Study of security analysis and attack on a secure protocol          

ZHONG  Jun,WU Xueyang,JIANG Yimin,DUAN Guangming   

  1. (Troop 78046,Chengdu 610014,China)
  • Received:2012-11-20 Revised:2013-04-12 Online:2014-06-25 Published:2014-06-25

摘要:

针对Web安全协议SSL的握手协议部分进行了详尽的阐述,对其安全性作了一定的分析,给出了理论上存在的三个协议漏洞的详尽描述,并且经过测试验证,指出了SSL协议存在***模式漏洞。

关键词: SSL协议, 协议漏洞, 安全性分析

Abstract:

The handshake protocol of web security protocol SSL is described detailedly and its security is analyzed. The three protocol logical bugs are theoretically elaborated in detail. In the end, by establishing the test environment, it is pointed out that the defect on *** mode exists in SSL protocol.

Key words: SSL protocol;protocol defects;security analysis