ACM Portal
  Subscribe (Full Service)    Register (Limited Service, Free)    Login
  Search:   The ACM Digital Library   The Guide
  
ACM Home Page
Please provide us with feedback. Feedback
Running-mode analysis of the Security Socket Layer protocol
Full text PdfPdf (815 KB)
Source ACM SIGOPS Operating Systems Review archive
Volume 38 ,  Issue 2  (April 2004) table of contents
Pages: 34 - 40  
Year of Publication: 2004
ISSN:0163-5980
Authors
Yuqing Zhang  State Key Laboratory of Information Security, GSCAS, Beijing, P.R.China
Xiuying Liu  National Computer Network Intrusion Protection Center, GSCAS, Beijing, P.R.China
Publisher
ACM  New York, NY, USA
Bibliometrics
Downloads (6 Weeks): 6,   Downloads (12 Months): 31,   Citation Count: 0
Additional Information:

abstract   references   collaborative colleagues  

Tools and Actions: Review this Article  
DOI Bookmark: Use this link to bookmark this Article: http://doi.acm.org/10.1145/991130.991133
What is a DOI?

ABSTRACT

The Secure-Socket Layer (SSL) protocol is analyzed using a formal analysis mehod called the approach of the running-mode analysis. This analysis uncovers successfully some anomalies in the basic SSL handshake protocol. And we give some attacks on these anomalies.


REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

 
1
S. Dietrich. A Formal Analysis of the Secure Sockets Layer Protocol. PhD thesis, Dept. Mathematics and Computer Science, Adelphi University, April 1997.
 
2
Alan O. freier, Philip Karlton and Paul C. Kocher. The SSL version 3.0, Internet-draft, Netscape Communications, 18.11.1996.
 
3
J. C. Mitchell, V. Shmatikov, U. Stern. Finite-State Analysis of SSL 3.0. In 7th USENIX Security Symposium, San Antonio, 1998, pages 201--216.
 
4
D. Wagner and B. Schneiner. Analysis of the SSL 3.0 Protocol. In 2nd USENIX Workshop on Elecctronic Commerce, 1996. Revised version of November 19, 1996 available form http://www.cs.berkely.edu/~daw/ssl3.0.ps.
5
Yuqing Zhang , Jihong Li , Guozhen Xiao, An approach to the formal verification of the two-party cryptographic protocols, ACM SIGOPS Operating Systems Review, v.33 n.4, p.48-51, Oct. 1999  [doi>10.1145/334598.334607]
Collaborative Colleagues:
Yuqing Zhang: colleagues
Xiuying Liu: colleagues

The ACM Portal is published by the Association for Computing Machinery. Copyright © 2009 ACM, Inc.
Terms of Usage   Privacy Policy   Code of Ethics   Contact Us

Useful downloads: Adobe Acrobat    QuickTime    Windows Media Player    Real Player