The trusted cloud transfer protocol

Proceedings of the International Conference on Cloud Computing Technology and Science, CloudCom

Volumn 2, Issue , 2013, Pages 203-208

  Slawik, Mathias ^a  

^a TECHNISCHE UNIVERSITÄT BERLIN   (Germany)

Author keywords

cloud computing; entity body encryption

Indexed keywords

CLOUD COMPUTING; CRYPTOGRAPHY; SECURITY SYSTEMS; SEEBECK EFFECT;

COMPUTING SOLUTIONS; ENCRYPTION TECHNOLOGIES; END-TO-END SECURITY; HTTP APPLICATIONS; INTRUSION PREVENTION SYSTEMS; RELATIVE EFFICIENCY; SECURITY THREATS; TRANSFER PROTOCOL;

HTTP;

EID: 84899731351     PISSN: 23302194     EISSN: 23302186     Source Type: Conference Proceeding    
DOI: 10.1109/CloudCom.2013.126     Document Type: Conference Paper

References (31)

1. A. Freier, P. Karlton, and P. Kocher, "The Secure Sockets Layer (SSL) Protocol Version 3.0," RFC 6101, IETF, 2011.
2. T. Dierks and E. Rescorla, "The Transport Layer Security (TLS) Protocol Version 1.2," RFC 5246, IETF, 2008.
3. R. Fielding, J. Gettys, J. Mogul, H. Frystyk, L. Masinter, P. Leach, and T. Berners-Lee, "Hypertext Transfer Protocol-HTTP/1.1," RFC 2616, IETF, 1999.
4. Amazon Web Services, Inc., "Elastic Load Balancing," 2013. [Online]. Available: http://aws.amazon.com/elasticloadbalancing/
5. W. Tarreau, "HAProxy-The Reliable, High Performance TCP/HTTP Load Balancer," 2013. [Online]. Available: http://haproxy.1wt.eu/
6. D. Thatmann, M. Slawik, S. Zickau, and A. Küpper, "Deriving a distributed cloud proxy architecture for managed cloud service consumption," in Proceedings of the 6th Intl. Conference on Cloud Computing (CLOUD 2013). Santa Clara, California, USA: IEEE, Jun 2013, pp. 614-620. [Online]. Available: http://dx.doi.org/10.1109/CLOUD.2013.56
7. E. Rescorla, "HTTP Over TLS," RFC 2818, IETF, 2000.
8. A. Luotonen, "Tunneling TCP based protocols through Web proxy servers," IETF, 1998. [Online]. Available: http://tools.ietf.org/html/ draft-luotonen-web-proxy-tunneling-01
9. German Federal Ministry of Justice, "StGB 203 Verletzung von Privatgeheimnissen," http://www.gesetze-im-internet.de/stgb/203.html, 2013, german.
10. B. Ramsdell and S. Turner, "Secure/Multipurpose Internet Mail Extensions (S/MIME) Version 3.2 Message Specification," RFC 5751, IETF, 2010.
11. T. Imamura, B. Dillaway, and E. Simon, "XML Encryption Syntax and Processing," 2002. [Online]. Available: http://www.w3.org/TR/2002/REC- xmlenc-core-20021210/
12. M. Bartel, J. Boyer, B. Fox, B. LaMacchia, and E. Simon, "XML-Signature Syntax and Processing," 2001. [Online]. Available: http://www.w3.org/TR/2001/PR-xmldsig-core-20010820/
13. M. Gudgin, M. Hadley, N. Mendelsohn, J.-J. Moreau, H. F. Nielsen, A. Karmarkar, and Y. Lafon, "SOAP Version 1.2 Part 1: Messaging Framework (Second Edition)," 2007. [Online]. Available: http://www.w3.org/TR/soap12- part1
14. A. Nadalin, C. Kaler, R. Monzillo, and P. Hallam-Baker, "Web Services Security: SOAP Message Security 1.1 (WS-Security 2004)," 2006. [Online]. Available: https://www.oasis-open.org/committees/download. php/21257
15. Koordinierungsstelle für IT-Standards, "OSCI-Startseite," 2013. [Online]. Available: http://www.osci.de
16. S. Fowler, "Public key authentication for HTTP," 2010.
17. [Online]. Available: http://web.archive.org/web/20100926084623/http:// www.httpsec.org/
18. E. Rescorla and A. Schiffman, "The Secure HyperText Transfer Protocol," RFC 2660, IETF, 1999.
19. M. Bellare, R. Canetti, and H. Krawczyk, "Keying hash functions for message authentication," in Advances in Cryptology CRYPTO '96, ser. Lecture Notes in Computer Science, N. Koblitz, Ed. Springer Berlin Heidelberg, 1996, vol. 1109, pp. 1-15. [Online]. Available: http://dx.doi.org/10.1007/3-540-68697- 5 1
20. The OpenSSL project, "OpenSSL: The Open Source toolkit for SSL/TLS," 2013. [Online]. Available: http://www.openssl.org
21. Microsoft, Inc., "Transport Layer Security Protocol (Windows)," 2013. [Online]. Available: http://msdn.microsoft.com/en-us/library/aa380516(v= vs.85).aspx
22. Oracle, "Java Secure Socket Extension (JSSE) Reference Guide for Java Platform Standard Edition 7," 2013.
23. [Online]. Available: http://docs.oracle.com/javase/7/docs/technotes/ guides/security/jsse/JSSERefGuide.htmljBoss.org
24. Body Encryption and Signing via SMIME-RESTEasy JAX-RS," 2013. [Online]. Available: http://docs.jboss.org/resteasy/docs/2.3.6.Final/userguide/ html/ch38.html
25. S. Souders, "The HTTP archive," 2013. [Online]. Available: http://httparchive.org
26. M. Georgiev, S. Iyengar, S. Jana, R. Anubhai, D. Boneh, and V. Shmatikov, "The most dangerous code in the world: validating SSL certificates in non-browser software," in Proceedings of the 2012 ACM conference on Computer and communications security, ser. CCS '12. New York, NY, USA: ACM, 2012, pp. 38-49.
27. Electronic Frontier Foundation, "HTTPS Everywhere," 2013. [Online]. Available: https://www.eff.org/https-everywhere
28. M. Belshe and R. Peon, "SPDY Protocol-Draft 1," 2012. [Online]. Available: http://www.chromium.org/spdy/spdy-protocol/spdy-protocol-draft1
29. M. Belshe, R. Peon, M. Thomson, and A. Melnikov, "Hypertext Transfer Protocol version 2.0," 2013. [Online]. Available: http://http2.github.io/ http2-spec
30. TRESOR consortium, "TRESOR project website," http://www.cloud-tresor.com/, 2012.
31. [Online]. Available: http://www.cloud-tresor.com/