《计算机应用研究》|Application Research of Computers

基于批量化密钥重分配的SSL握手协议

SSL handshake protocol based on batch key redistribution

免费全文下载 (已被下载 次)  
获取PDF全文
作者 罗卿,林亚平
机构 湖南大学 a.计算机与通信学院;b.软件学院,长沙 410082
统计 摘要被查看 次,已被下载
文章编号 1001-3695(2011)01-0345-04
DOI 10.3969/j.issn.1001-3695.2011.01.097
摘要 SSL(安全套接层)握手协议利用公开密钥体制(RSA)保护通信实体之间传输信息的机密性和完整性,其存在信息处理速度过慢的缺点,基于batch RSA的SSL握手协议能较好地解决这一问题,但当服务器收到大量客户端请求或遭受DoS攻击时,易导致服务器性能下降。为此,提出一种基于批量化密钥重分配 (batch key redistribution)的改进协议。协议将密钥分解成两个密钥序列分支,并将一个密钥序列分支发送至客户端,由客户端来部分解密,以减少服务器的计算开销,从而克服服务器性能下降的问题。分析和实验结果表明,协议能很好地保证信息传输的安全,且有效提高了信息处理的速度。
关键词 安全套接层握手协议;批量化解密;批量化密钥重分配;密钥序列
基金项目 湖南省科技计划资助项目(2009FJ3083)
本文URL http://www.arocmag.com/article/1001-3695(2011)01-0345-04.html
英文标题 SSL handshake protocol based on batch key redistribution
作者英文名 LUO Qing, LIN Ya-ping
机构英文名 a. School of Computer & Communication, b. School of Software, Hunan University, Changsha 410082, China
英文摘要 SSL handshake protocol could provide data confidentiality and integrity by public key cryptosystem between two communicating entities. Shortcoming of the protocol was that processing speed was too slow. It introduced that batch RSA could be used to speedup SSL handshake protocol, but server overload was either due to a lot of legitimate client requests or a denial-of-service (DoS) attack. For this reason, this paper proposed a promising protocol based on batch key redistribution. The protocol divided the private key into two key sequence and sent one of two key sequences to client, which shifted some computational burden from the server to the client, so the technique could speed up RSA decryption and reduce overload of sever. Analysis and experimental results show that the protocol can ensure the safety of information transmission and improve the processing speed.
英文关键词 SSL handshake protocol; batch decryption; batch key redistribution; key sequence
参考文献 查看稿件参考文献
 
收稿日期
修回日期
页码 345-348
中图分类号
文献标志码 A