Performance improvements on the network security protocols

International Journal of Network Security

Volumn 6, Issue 1, 2008, Pages 103-115

  Sobh, Tarek S ^a   Elgohary, Ashraf ^a   Zaki, M ^b  

^a Information System Department   (Egypt)

^b AL AZHAR UNIVERSITY   (Egypt)

Author keywords

Certificate authority; Client side caching; Se curity protocols; Session management; Session sharing; SSL TLS

Indexed keywords

CERTIFICATE AUTHORITY; CLIENT SIDES; SESSION MANAGEMENT; SESSION SHARING; SSL/TLS;

MANAGEMENT; MANAGERS;

NETWORK SECURITY;

EID: 67349230998     PISSN: 1816353X     EISSN: 18163548     Source Type: Journal    
DOI: None     Document Type: Article

References (30)

1. A. V. Aho, R. Sethi, and T. D. Ulman, Compilers: Principals Techniqes and Tools, A disown Wesley, 1986.
2. R. Alfieri, R. Cecchini, V. Ciaschini, L. Dell'agnello, A. Frohner, A. Gianoli, K. Lorentey, and F. Spataro, VOMS, "An authorization system for virtual organi-zations," in 1st European Across Grids Conference, Feb. 2003.
3. C. Allen and T. Dierks, The TLS Protocol Version 1.0, IETF RFC 2246, 1999.
4. C. Baliello, A. Basso, and C. D. Giusto, Kerberos Protocol: an Overview, Distributed Systems, Italy, Fall 2002.
5. M. Blaze, J. Ioannidis, and A. D. Keromytis, "Trust management for IPsec," ACM Transactions on Infor-mation and System Security (TISSEC), vol. 5, no. 2, pp. 95-118, 2002.
6. W. Chou, "Inside SSL: Accelerating secure transac-tions," IEEE, IT Professional, vol. 4, no. 5, pp. 37-41, Sep./Oct. 2002.
7. D. Clark, Vulnerability's of IPSEC, SANS Institute, as part of the Information Security Reading Room, Mar. 14, 2002.
8. G. Diaz, F. Cuartero, V. Valero, and F. Pelayo, "Au-tomatic verification of the TLS handshake protocol," in Proceedings of the 2004 ACM symposium on Ap-plied computing, pp. 789-794, 2004.
9. T. Dierks and C. Allen, The TLS Pro-tocol, version 1, IETF RFC 2246, 1999. (http://www.ietf.org/rfc/rfc2246.txt)
10. I. Foster and C. Kesselman, The Grid: Blueprint for a New Computing Infrastructure, Morgan Kauf-mann, San Mateo, CA, 1999.
11. A. Godber and P. Dasgupta, "Secure wireless gate-way," in Proceedings of the ACM workshop on Wire-less security, pp. 41-46, 2002.
12. S. Hada and H. Maruyama, Session Authentication Protocol for Web Services, IBM Research, Tokyo Re-search Laboratory, 2002.
13. R. Housley, W. Polk, W. Ford, and D. Solo, Internet X.509 Public Key Infras-tructure Certificate and CRL Profile, 2001. (http://www.ietf.org/internetdrafts/draft-ietf-pkix-new-part1-12.txt)
14. H. M. Levy, Capability-Based Computer Sys-tems, Digital Press, Bedford, MA, 1984. (http://www.cs.washington.edu/homes/levy/capabook/)
15. H. Moser, S/MIME, Dec. 2001-Jan. 2002, mail@heinz.at
16. Nortel Networks, Alteon 8661 SSL Acceler-ation Module for the Passport 8600, 2003. (http://www.nortelnetworks.com)
17. L. Pearlman, V. Welch, I. Foster, C. Kesselman, and S. Tuecke, "A community authorization ser-vice for group collaboration," in Proceedings of the IEEE 3rd International Workshop on Poli-cies for Distributed Systems and Networks, 2002. (http://www.globus.org/research/papers.html#CAS-2002)
18. A. A. Pirzada and C. McDonald, "Kerberos assisted Authentication in Mobile Ad-hoc Networks," in Pro-ceedings of the 27th conference on Australasian com-puter science, vol. 26, pp. 41-46, 2004.
19. A. Raghunathan, N. Potlapally, and S. Ravi, "Secur-ing wireless Data: System architecture challenges," in Proceedings of the 15th international symposium on System Synthesis (ISSS'02), pp. 195-200, Oct. 2002.
20. S. Ravi, A. Raghunathan, N. Potlapally, and M. Sankaradass, "System design methodologies for a wireless security processing platform," in 39th Design Automation Conference (DAC'02), pp. 777, Jun. 2002.
21. E. Rescorla and Addison-Wesley, SSL and TLS De-signing and Building Secure Systems, IEEE Cipher, E40, Dec. 19, 2000.
22. RSA, RSA BSAFE, RC2, RC4, RC5, and MD5 are trademarks or registered trademarks of RSA Data Security, Inc., 1999.
23. H. Shacham and D. Boneh, "Improving SSL hand-shake performance via batching." in proceedings of the RSA Conference 2001, Lecture Notes in Com-puter Science, Vol. 2020, Springer-Verlag, pp. 28-43,Apr. 2001.
24. H. Shacham, D. Boneh, and E. Rescorla, "Client Side Caching for TLS," in Proceedings of the Sym-posium on Network and Distributed System Security (SNDSS'02), pp. 195-202, 2002.
25. SonicWALL, SSL-R and SonicWALL SSL-RX, High Performance Commer-cial Application Accelerators, 2002. (http://www.sonicwall.com/products/trans.asp)
26. P. Todaro, An Overview of the Kerberos Authentica-tion Protocol, SANS Institute, as part of GIAC prac-tical repository, Oct. 2003.
27. M. R. Thompson, A. Essiari, and S. Mudumbai, "Certificate-based authorization policy in a PKI en-vironment," ACM Transactions on Information and System Security, vol. 6, no. 4, pp. 566-588, Nov. 2003.
28. S. Tuecke, D. Engert, I. Foster, V.Welch, M. Thomp-son, L. Pearlman, and C. Kesselman, Internet X.509 Public Key Infrastructure Proxy Certificate Pro-file, IETF draft, 2002. (http://ww.ietf.org/internet-drafts/draft-ietf-pkix-proxy-03.txt)
29. B. R. Wetmore, Java Secure Socket Extension (JSSE) API, JavaOne, Sun'2000 worldwide java de-veloper conference, 2000.
30. A. Yasinsac and J. Childs, "Analyzing internet se-curity protocol" in Proceedings of the 6th IEEE In-ternational Symposium on High Assurance Systems Engineering (HASE'01), pp. 149-159, 2001.