节点文献
基于SSL的数据安全传输系统的设计与实现
Design and Implementation of SSL Based Secure Transmission System
【摘要】 安全套接层协议SSL(SecureSocketLayer)是用来保障数据安全传输的协议 ,目前已经成为工业标准 .首先简要介绍了SSL协议 ,设计并实现了基于SSL的数据安全传输系统 ,它由两部分组成 :SSL客户方安全通信代理CSP(ClientSecureProxy)和服务器方安全通信网关SSG(ServerSecureGateway) ,二者可以在Internet上建立一个安全通道 ,从而能够保障敏感数据的安全传输 .讨论了系统的整体结构 ,并详细分析了实现中的若干关键技术 ,主要包括握手协议的实现、密钥的协商、记录层数据的分段与填充、会话重用等
【Abstract】 SSL protocol is a de facto standard to protect data transferred securely on the Internet. According to the SSL protocol, we design and implement a SSL based secure transmission system. It includes two parts: Client Secure Proxy(CSP) and Server Secure Gateway(SSG) through which a secure tunnel can be established between peers to protect sensitive data from being eavesdropped, altered and faked. This paper presents a detailed structure of this system and key techniques such as the implementation of handshake protocol, the negotiation of secret keys, the fragmentation and padding of record layer, session reuse etc. Our SSL Secure Proxy can establish an secure tunnel.
【Key words】 electric networks; safety; Secure Socket Layer(SSL); secret negotiation;
- 【文献出处】 北京航空航天大学学报 ,Journal of Beijing University of Aeronautics and Astronautics , 编辑部邮箱 ,2001年04期
- 【分类号】TP393.08
- 【被引频次】88
- 【下载频次】698