Hickman, Kipp: The SSL Protocol, Netscape Communications Corp., 9 February 1995.  Home/Search   Document Not in Database   Summary   Related Articles   Check

....one might implement it) Key Management In the current version of this report, the key management to obtain keys to protect the integrity of the fmicro DESC, coupong pair and the delivery are considered orthogonal to the technical problem described . This task is delegated, for example, to SSL [17] or SHTTP [18] If a future iKP coupon based micro payment system experiences wide spread use, significant efficiency gains might be realizable if the pertinent key management is integrated into the protocols. 7 Conclusion This report has shown that iKP is well amenable to support micro payments ....

Kipp E.B. Hickman. The SSL protocol. RFC draft, Netscape Communications Corp., November 1994. Version 1.0.

....and subtraction are implemented for the Pentium assembler, this package performs better on Pentium than in other microprocessors. Weusedversion 3.1 developed in May1999. ffl OpenSSL[12] A successor of SSLeay[8] OpenSSL is a cryptographic toolkit implementing Secure Socket Layer(SSL v. 2 3)[7]. Implements some basic operations in assembler on various platforms. We used version 0.9.3a developed in May 1999. We measured the performance of modular exponentiation y = g x (mod p) where p is a random 512 bit prime, g a 512 bit generator for GF(p)oforderq(160 bit) and x a random 160 ....

K. E. Hickman and T. Elgamal. The SSL protocol. RFC draft, Netscape Communications Corp., June 1995. Version 3.0, expires 12/95.

....output. On error, the script returns an appropriate diagnostic. Executing scripts on a remote server poses several security problems concerning message security and authentication of users and applications. These security issues are addressed by several teams (see for instance [23] 1] 18] [19] [35] 36] and the solutions they propose should be integrated into Alliance. In order to cope with the specific constraints of the Internet, each instance of Alliance is now divided into two processes (see Fig. 9) All editing functions for which the user is expecting an immediate feedback, ....

K. Hickman, The SSL Protocol, Netscape Communications Corp., November 1994, http://home.mcom.com/info/SSL.html.

....reader should postpone its reading until after Sections 3 and 4. We now turn to the description of a major building block that we use in this paper. 1 What we have in mind is Web implementations of our design. In such environments, authenticated communication can be realized through, e.g. SSL [27]. Similarly, point to point communication can be realized in various ways, and not necessarily through a direct connection. 2 Again, this is for simplicity of exposition, as the only thing we need is a reliable time out mechanism, and a means to guarantee the freshness of authentication. ....

K.Hickman. Secure Socket Library. Netscape Communications Corp. !http://www.mcom.com/ info/SSL.html.

....security in the WWW framework could be achieved by several known techniques. Employing standard cryptographic methods to keep self authenticating records of interactions on the WWW would be secure, and is enabled by some existing extensions to the WWW protocols, such as S HTTP [16] and SSL [11]. These methods are clearly advantageous in offering a high level of auditability and non repudiability. However, authenticating all clients has the drawback that all clients must register to obtain authentication keys. Not only is this a heavy administrative burden, but it leads to solutions that ....

K. E. B. Hickman. The SSL Protocol. Technical report, Netscape Communications Corp, 1995. 18

....security in the WWW framework could be achieved by several known techniques. Employing standard cryptographic methods to keep self authenticating records of interactions on the WWW would be secure, and is enabled by some existing extensions to the WWW protocols, such as S HTTP [10] and SSL [8]. These methods are clearly advantageous in offering a high level of auditability and non repudiability. However, authenticating all clients has the drawback that all clients must register to obtain authentication keys. Not only is this a heavy administrative burden, but it leads to solutions that ....

K. E. B. Hickman. The SSL Protocol. Technical report, Netscape Communications Corp, 1995.

....security in the WWW framework could be achieved by several known techniques. Employing standard cryptographic methods to keep self authenticating records of interactions on the WWW would be secure, and is enabled by some existing extensions to the WWW protocols, such as S HTTP [10] and SSL [8]. These methods are clearly advantageous in offering a high level of auditability and non repudiability. However, authenticating all clients has the drawback that all clients must register to obtain authentication keys. Not only is this a heavy administrative burden, but it leads to solutions that ....

....real visits made at the meter. A meter can verify the origin of a visit at the network level to some extent. One method of achieving a high degree of assurance is to use cryptographically secure authentication codes, as supported in various extensions to the WWW protocols (e.g. S HTTP [10] SSL [8]) to authenticate origins. Another, more manageable way, is to position the meter on the gateway entering an organization s network and filter out visits generated from within the network. Most known routing tricks can be prevented by a meter thus positioned (see [5] These types of network ....

K. E. B. Hickman. The SSL Protocol. Technical report, Netscape Communications Corp, 1995.

....outsideworld ecommerce.html . iKP A Family of Secure Electronic Payment Protocols and anonymity against the payment system [3, 5, 6, 4, 8, 14] Finally, there are some general security schemes for the World Wide Web, most notably, SHTTP [16] and SSL [12]. Both have been suggested as a basis for secure electronic payments. SHTTP is a possible platform for implementing iKP. SSL is more thought to secure the link between WWW client and WWW server, and is therefore less suited for multi party protocols like iKP. Moreover, SSL does not support ....

....may be purchasing the latest information on certain stocks and may not want competitors to know which stocks he is interested in. a. Privacy. The privacy of order information and amount of payment should be implemented independently of the payment protocol, e.g. based on SHTTP [16] or SSL [12]. iKP does not reveal order information to any other party than the merchant, at least as long as there is no dispute, but does not include encryption of these data. Obviously, credit card number and PIN must be protected carefully, which is achieved within iKP by encrypting them with the ....

[Article contains additional citation context not shown here]

K. E. B. Hickman. Secure Socket Library. Netscape Communications Corp., Feb. 9th, 1995 !http://www.mcom.com/info/SSL.html?

....make hold with high probability. We assume the availability of a global clock, which allows the network computation to evolve as a series of rounds. 2 1 What we have in mind is Web implementations of our design. In such environments, authenticated communication can be realized through, e.g. SSL [26]. Similarly, point to point communication can be realized in various ways, and not necessarily through a direct connection. 2 Again, this is for simplicity of exposition, as the only thing we need is a reliable time out mechanism, and a means to guarantee the freshness of authentication. ....

K. E. B. Hickman. Secure Socket Library. Netscape Communications Corp.,http://www.mcom.com/info/SSL.html.

....can protect the PIN and in case of 3KP the secret key of the customer. Note on the privacy of customer s orders: The iKP protocols do not explicitly provide encryption of the order information. Such protection is assumed to be provided by other existing mechanisms, e.g. SHTTP [18] or SSL [14]. The decoupling of order encryption from the electronic payment protocol is an important design principle of iKP which supports compatibility with different underlying browsing and privacy protecting mechanisms. It also adds to the simplicity, modularity, and ease of analysis of the protocols. ....

....cryptographically similar to 2KP. The most cryptographically advanced electronic payment systems emphasize untraceability and anonymity against the payment system [3, 5, 6, 4, 10, 16] Finally, there are some general security schemes for the World Wide Web, most notably, SHTTP [18] and SSL [14]. Both have been suggested as a basis for secure electronic payments. SHTTP is a possible platform for implementing iKP. SSL is more thought to secure the link between WWW client and server, and is therefore less suited for multi party protocols like iKP. Moreover, SSL does not support ....

[Article contains additional citation context not shown here]

K. E. B. Hickman. Secure Socket Library. Netscape Communications Corp., Feb. 9th, 1995 !http://www.mcom.com/info/SSL.html?

....to support secure communication within a dynamic group of processes belonging to the same computation (or even the same user) 6. 2 Support for Public Key Technology in GSI The GSI implementation currently uses the authentication protocols defined by the Secure Socket Library (SSL) protocol [10]. At first glance, this may seem like an odd choice, since SSL defines a communication layer while GSS explicitly does not. However, in principle, it is possible to separate the authentication and communication components of SSL. To avoid confusion between the SSL authentication protocol and the ....

K. Hickman and T. Elgamal. The SSL protocol. Internet draft, Netscape Communications Corp., June 1995. Version 3.0.

....one might implement it) Key Management In the current version of this report, the key management to obtain keys to protect the integrity of the fmicro DESC, coupong pair and the delivery are considered orthogonal to the technical problem described . This task is delegated, for example, to SSL [17] or SHTTP [18] If a future iKP coupon based micro payment system experiences wide spread use, significant efficiency gains might be realizable if the pertinent key management is integrated into the protocols. 7 Conclusion This report has shown that iKP is well amenable to support micro payments ....

Kipp E.B. Hickman. The SSL protocol. RFC draft, Netscape Communications Corp., November 1994. Version 1.0.

....of the order; it assumes that the order, including price, have already been decided on between customer and merchant. The iKP protocols do not explicitly provide encryption of the order information. Such protection is assumed to be provided by other existing mechanisms, e.g. SHTTP [18] or SSL [14]. The decoupling of order encryption from the electronic payment protocol is an important design principle of iKP which supports compatibility with different underlying browsing and privacy protecting mechanisms. It also adds to the simplicity, modularity, and ease of analysis of the protocols. ....

....cryptographically similar to 2KP. The most cryptographically advanced electronic payment systems emphasize untraceability and anonymity against the payment system [3, 5, 6, 4, 10, 16] Finally, there are some general security schemes for the World Wide Web, most notably, SHTTP [18] and SSL [14]. Both have been suggested as a basis for secure electronic payments. SHTTP is a possible platform for implementing iKP. SSL is more thought to secure the link between WWW client and server, and is therefore less suited for multi party protocols like iKP. Moreover, SSL does not support ....

[Article contains additional citation context not shown here]

K. E. B. Hickman. Secure Socket Library. Netscape Communications Corp., Feb. 9th, 1995 !http://www.mcom.com/info/SSL.html?.

....we rely on the object system to provide authentication of message senders. With this underlying capability, method implementations can take into account the caller, providing different access levels for trusted users or agents. We are also investigating other encryption capabilities, such as SSL [6]. 5.3 Performance One potential disadvantage of a layered architecture is its performance overhead. In addition, the distributed object machinery (e.g. ILU) can add more overhead, as compared to compiled function calls. However, a preliminary performance study indicates that the costs may be ....

Kipp E.B. Hickman. The SSL protocol. Technical report, Netscape Communications Corp., kipp@netscape.com, February 1995. Available at http://home.netscape.com/info/SSL.html.

No context found.

Hickman, Kipp: The SSL Protocol, Netscape Communications Corp., 9 February 1995.

Online articles have much greater impact   More about CiteSeer.IST   Add search form to your site   Submit documents   Feedback  

CiteSeer.IST - Copyright Penn State and NEC