Optimizing TLS for Low Bandwidth Environments
作者: Diego A. Ortiz-Yepes
DOI: 10.1007/978-3-319-17040-4_10
关键词:
摘要: This paper explores alternatives to minimize the overhead of Transport Layer Security (TLS) towards making it usable in bandwidth-constrained environments. Several areas are identified where can be reduced while remaining fully compatible with standard Security. The most relevant one consists moving Elliptic Curve Cryptography (ECC) from RSA certificates, which reduces TLS handshake between 22 % and 60 depending on chosen security level.
springer.com
ru.nl
core.ac.uk
sci-hub.st 参考文章(16)
Thomas Weigold, Thorsten Kramp, Reto Hermann, Frank Höring, Peter Buhler, Michael Baentsch, The Zurich Trusted Information Channel --- An Efficient Defence Against Man-in-the-Middle and Malicious Software Attacks trust and trustworthy computing. pp. 75- 91 ,(2008) , 10.1007/978-3-540-68979-9_6
Saar Drimer, Steven J. Murdoch, Ross Anderson, Optimised to Fail: Card Readers for Online Banking Financial Cryptography and Data Security. ,vol. 5628, pp. 184- 200 ,(2009) , 10.1007/978-3-642-03549-4_11
Jean-Pierre Szikora, None, Banques en ligne : à la découverte d'EMV-CAP Multi-System and Internet Security Cookbook - MISC. ,vol. 56, pp. 50- 62 ,(2011)
Vipul Gupta, Simon Blake-Wilson, Chris Hawk, Bodo Moeller, Nelson Bolyard, Elliptic Curve Cryptography (ECC) Cipher Suites for Transport Layer Security (TLS) RFC. ,vol. 4492, pp. 1- 35 ,(2006)
Darrel Hankerson, Alfred J. Menezes, Scott Vanstone, Guide to Elliptic Curve Cryptography ,(2004)
D. A. Ortiz-Yepes, R. J. Hermann, H. Steinauer, P. Buhler, Bringing strong authentication and transaction security to the realm of mobile devices Journal of Reproduction and Development. ,vol. 58, pp. 2- ,(2014) , 10.1147/JRD.2013.2287810
C. Adams, M. Myers, A. Malpani, S. Galperin, R. Ankney, X.509 Internet Public Key Infrastructure Online Certificate Status Protocol - OCSP IETF RFC 2560. ,vol. 2560, pp. 1- 23 ,(1999)
P. Deutsch, DEFLATE Compressed Data Format Specification version 1.3 RFC. ,vol. 1951, pp. 1- 17 ,(1996)
D. Solo, R. Housley, W. Ford, W. Polk, Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile RFC. ,vol. 3280, pp. 1- 129 ,(2002)
Arjan Blom, Gerhard de Koning Gans, Erik Poll, Joeri de Ruiter, Roel Verdult, Designed to fail: a USB-Connected reader for online banking nordic conference on secure it systems. pp. 1- 16 ,(2012) , 10.1007/978-3-642-34210-3_1