Multiple-channel security architecture and its implementation over SSL

被引:1
作者
Song, Yong [1 ]
Beznosov, Konstantin [1 ]
Leung, Victor C. M. [1 ]
机构
[1] Univ British Columbia, Fac Sci Appl, Dept Elect & Comp Engn, Vancouver, BC V6T 1Z4, Canada
来源
EURASIP JOURNAL ON WIRELESS COMMUNICATIONS AND NETWORKING | 2006年 / 2006卷 / 1期
关键词
Information System; System Application; Computational Efficiency; Data Protection; Multiple Channel;
D O I
10.1155/WCN/2006/85495
中图分类号
TM [电工技术]; TN [电子技术、通信技术];
学科分类号
0808 ; 0809 ;
摘要
This paper presents multiple-channel SSL (MC-SSL), an architecture and protocol for protecting client-server communications. In contrast to SSL, which provides a single end-to-end secure channel, MC-SSL enables applications to employ multiple channels, each with its own cipher suite and data-flow direction. Our approach also allows for several partially trusted application proxies. The main advantages of MC-SSL over SSL are ( a) support for end-to-end security in the presence of partially trusted proxies, and (b) selective data protection for achieving computational efficiency important to resource-constrained clients and heavily loaded servers.
引用
收藏
页数:14
相关论文
共 21 条
[1]  
Allen C., 1999, RFC, DOI [DOI 10.17487/RFC2246, 10.17487/RFC2246]
[2]  
KENNEDY DJ, 2000, THESIS U WATERLOO WA
[3]  
Kiczales G, 1997, LECT NOTES COMPUT SC, V1241, P220, DOI 10.1007/BFb0053381
[4]   Integrated transport layer security: End-to-end security model between WTLS and TLS [J].
Kwon, EK ;
Cho, YG ;
Chae, KJ .
15TH INTERNATIONAL CONFERENCE ON INFORMATION NETWORKING, PROCEEDINGS, 2001, :65-71
[5]  
LEE J, 2005, LERSSETR200502 U BRI
[6]  
Lesniewski-Laas C, 2003, USENIX ASSOCIATION PROCEEDINGS OF THE 12TH USENIX SECURITY SYMPOSIUM, P187
[7]  
*OASIS OP, 2003, 04 OASIS OP
[8]  
*OASIS OP, 2003, WEB SERV SEC SOAP ME
[9]  
*OASIS OP, 2003, 11 OASIS OP
[10]  
*OASIS OP, 2003, 03 OASIS OP
123