北京邮电大学学报

  • EI核心期刊

北京邮电大学学报 ›› 2007, Vol. 30 ›› Issue (6): 89-93.doi: 10.13190/jbupt.200706.89.024

• 论文 • 上一篇    下一篇

改进安全套接层协议性能的安全系统设计

辛 阳1, 高雪松2, 高 程1, 杨义先1   

  1. (1. 北京邮电大学 网络与交换技术国家重点实验室,北京 100876; 2.华为技术有限公司,北京 100085 )
  • 收稿日期:2007-03-05 修回日期:2007-04-06 出版日期:2007-12-31 发布日期:2007-12-31
  • 通讯作者: 辛阳

Design of Safety System to Improve the Qualitative Performance of SSL Protocol

XIN Yang, GAO Xue-song, GAO Cheng, YANG Yi-xian   

  1. (1. State Key Laboratory of Networking and Switching Technology, Beijing University of Posts and Telecommunications, Beijing 100876, China; 2. Huawei Technologies Limited Company, Beijing 100085, China)
  • Received:2007-03-05 Revised:2007-04-06 Online:2007-12-31 Published:2007-12-31
  • Contact: XIN Yang

摘要:

针对安全套阶层/传输层安全(SSL/TLS)协议在速度方面的性能缺陷,提出了一个改进型的SSL/TLS系统。在经典的安全套阶层连接模型的基础上,通过使用安全套阶层代理服务器和基于辅助客户road safety authority (RSA)算法的改进的SSL/TLS握手协议,就算法和整体系统模型这两方面进行了具体改进。实验结果表明,相对于经典的安全套阶层连接方法,本模型在保证安全套阶层连接安全性的基础上,一方面在处理速度上有较大提升外;另一方面随着RSA密钥长度的增加,系统的性能提升也越明显。

关键词: 网络安全, 传输层安全, 安全套阶层代理

Abstract:

For the weakness of qualitative performance at the speed in secure sockets layer/ transport layer security(SSL/TLS)protocol, an improved SSL/TLS safety system was proposed. Based on the typical SSL connection model, the system was indeed improved on algorithm and whole system model by using the SSL proxy and the improved SSL/TLS handshake protocol based on client-aided road safety authority(RSA)algorithm. Compared with the typical SSL connection method, the test result shows that the new safety system model can greatly increase the processing speed, meanwhile, it can clearly improve the systematic quality with the the enhancement of RSA secret key length.

Key words: network security, transport layer security, secure sockets layer proxy

中图分类号: