Client-side caching for TLS

ACM Transactions on Information and System Security

Volumn 7, Issue 4, 2004, Pages 553-575

  Shacham, Hovav ^a,b   Boneh, Dan ^a,b   Rescorla, Eric ^a,b  

^a STANFORD UNIVERSITY   (United States)

^b Stanford University   (United States)

Author keywords

Bloom filters; Session cache; TLS; Wireless networks

Indexed keywords

BLOOM FILTERS; PAYLOAD TRANSFERS; SECURITY; SESSION CACHE; TLS;

BANDWIDTH; CLIENT SERVER COMPUTER SYSTEMS; NETWORK PROTOCOLS; PARAMETER ESTIMATION; PRODUCT DESIGN; PUBLIC POLICY; TELECOMMUNICATION TRAFFIC; WIRELESS TELECOMMUNICATION SYSTEMS;

CACHE MEMORY;

EID: 14544299579     PISSN: 10949224     EISSN: None     Source Type: Journal    
DOI: 10.1145/1042031.1042034     Document Type: Article

References (28)

1. ABBOTT, S. AND KEUNG, S. 1998. CryptoSwift, Version 2, Performance on Netscape Enterprise Server. Available at http://www.cryptoswift.cz/csw-labs/ NSE351-CSv2-NT/NS351-CSv2.html.
2. APOSTOLOPOULOS, G., PERIS, V., AND SAHA, D. 1999. Transport layer security: How much does it really cost? In Proceedings of IEEE Infocom '99, A. K. Choudhury and N. Shroff, Eds. IEEE, 717-725.
3. APOSTOLOPOULOS, G., PERIS, V., PRADHAN, P., AND SAHA, D. 2000. Securing electronic commerce: Reducing the SSL overhead. IEEE Netw. 14, 4 (July), 8-16.
4. BLAKE-WILSON, S., NYSTROM, M., HOPWOOD, D., MIKKELSEN, J., AND WRIGHT, T. 2003. RFC 3546: TLS Extensions.
5. BLEICHENBACHER, D. 1998. Chosen ciphertext attacks against protocols based on RSA encryption standard pkcs #1. In Proceedings of Crypto 1998, H. Krawczyk, Ed. Lecture Notes in Computer Science, vol. 1462. Springer-Verlag, Berlin, 1-12.
6. BLOOM, B. 1970. Space/time trade-offs in hash coding with allowable errors. Commun. ACM 13, 7, 422-6.
7. BRADLEY, J. AND DAVIES, N. 1995. Analysis of the SSL protocol. Tech. Rep. CSTR-95-021, Department of Computer Science, University of Bristol.
8. BRUMLEY, D. AND BONEH, D. 2003. Remote timing attacks are practical. In Proceedings of USENIX Security 2003, V. Paxson, Ed. USENIX.
9. CANVEL, B., HILTGEN, A., VAUDENAY, S., AND VUAGNOUX, M. 2003. Password interception in a SSL/TLS channel. In Proceedings of Crypto 2003, D. Boneh, Ed. Lecture Notes in Computer Science, vol. 2729. Springer-Verlag, Berlin, 583-599.
10. COARFA, C., DRUSCHEL, P., AND WALLACH, D. 2002. Performance analysis of TLS web servers. In Proceedings of NDSS 2002, M. Tripunitara, Ed. Internet Society, 183-194.
11. DIERKS, T. AND ALLEN, C. 1999. RFC 2246: The TLS Protocol, Version 1.
12. DIFFIE, W. AND HELLMAN, M. 1979. Privacy and authentication: An introduction to cryptography. Proc. IEEE 67, 397-427.
13. GOLDBERG, A., BUFF, R., AND SCHMITT, A. 1998. Secure web server performance dramatically improved by caching SSL session keys. In Proceedings of WISP 1998, P. Cao and S. Sarukkai, Eds.
14. GUPTA, V., STEBILA, D., FUNG, S., SHANTZ, S.C., GURA, N., AND EBERLE, H. 2004. Speeding up secure web transactions using elliptic curve cryptography. In Proceedings of NDSS '04, M. Tripunitara, Ed. Internet Society.
15. KOCHER, P. 1996. Timing attacks on implementations of Diffie-Hellman, RSA, DSS, and other systems. In Proceedings of Crypto 1996, N. Koblitz, Ed. Lecture Notes in Computer Science, vol. 1109. Springer-Verlag, Berlin, 104-113.
16. KRAWCZYK, H. 2001. The order of encryption and authentication for protecting communications. In Proceedings of Crypto 2001, J. Killian, Ed. Lecture Notes in Computer Science, vol. 2139. Springer-Verlag, Berlin, 310-31.
17. MITCHELL, J., SHMATIKOV, V., AND STERN, U. 1998. Finite-state analysis of SSL 3.0. In Proceedings of USENIX Security 1998, A. Rubin, Ed. USENIX, 201-216.
18. MÖLLER, B. 2004. Security of CBC Ciphersuites in SSL/TLS: Problems and Counter-measures. Available at http://www.openssl.org/~bodo/tls-cbc.txt.
19. PAULSON, L. C. 1999. Inductive analysis of the internet protocol TLS. ACM Trans. Informat. Syst. Secur. 2, 3, 332-51.
20. RESCORLA, E., CAIN, A., AND KORVER, B. 2002. SSLACC: A clustered SSL accelerator. In Proceedings of USENIX Security 2002, D. Boneh, Ed. USENIX, 229-246.
21. SHACHAM, H. AND BONEH, D. Fast-track TLS Prototype Implementation. Available at http://hovav.net/dist/sslex-dr0.1.tar.gz.
22. SHACHAM, H. AND BONEH, D. 2001. TLS Fast-Track Session Establishment. Internet Draft: draft-shacham-tls-fasttrack-00.txt. Work in progress.
23. STEVENS, W. R. 1999. UNIX Network Programming: Interprocess Communications, vol. 2. Prentice-Hall, Englewood Cliffs, NJ.
24. THORPE, G. Distcache: Distributed Session Caching. Available at http://distcache.sourceforge.net/.
25. VAUDENAY, S. 2002. Security flaws induced by CBC padding - applications to SSL, IPSEC, WTLS . . . In Proceedings of Eurocrypt 2002, L. Knudsen, Ed. Lecture Notes in Computer Science, vol. 2332. Springer-Verlag, Berlin, 534-545.
26. WAGNER, D. AND SCHNEIER, B. 1996. Analysis of the SSL 3.0 protocol. In Proceedings of 2nd USENIX Workshop on Electronic Commerce, D. Tygar, Ed. USENIX.
27. WIRELESS APPLICATION FORUM. 2000. Wireless Transport Layer Security Specification. Available at http://www.wapforum.org/.
28. WOLVERTON, T. 2000. Amazon reports wider loss, but book business profits. CNET. Available at http://news.com.com/2100-1017-236436.html?legacy=cnet.