10. standard and applications - Basic Security Protocols (Transport layer - SSL, TLS)

Yona·2021년 12월 6일
0

🌙 CS_security

목록 보기
19/24

Transport Layer

  • process-process data transfer
  • 보안 종류
    • SSL (secure socket layer)
    • TLS (transport layer security)

SSL (secure socket layer)

  • 특징

    • TCP 사용
  • 구조

    • 구성요소
      • SSL Record Protocol
        • message intergirty, confidentiality 를 제공
      • 3 Hihger-layer-protocol
        • SSL exchanges를 관리
          • Hand shake protocol
          • SSL change cipher spec protocol
            updating the cipher suite in use -> can cause pending state become current
          • alert protocol
            • waring : connection or security may be unstable
            • fatal : connection or security may be compromised, or an unrecoverable error has occured
    • 제공
      • SSL connection
        • one SSL ession과 associated with
      • SSL session
        • association between client & server
        • created by handshake protocol
        • may share by mutiple SSL connections

    TLS (transport layer security)

  • minor diffrences with SSL..

    • record format version number
    • uses HMAC for MAC
    • Pseudo-random function expands secrets
    • additional alert codes
    • soem changes in supoorted ciphers
    • changes in certificate types & negotiations
    • changes in crypto computations & padding
profile
Sometimes you win, sometimes you learn 🏃‍♀️

0개의 댓글