欢迎访问中国科学院大学学报,今天是

中国科学院大学学报 ›› 2008, Vol. 25 ›› Issue (1): 110-116.DOI: 10.7523/j.issn.2095-6134.2008.1.015

• 论文 • 上一篇    下一篇

TLS握手协议的计算模型分析*

倪阳, 张玉清   

  1. 中国科学院研究生院,国家计算机网络入侵防范中心,北京 100043
  • 收稿日期:1900-01-01 修回日期:1900-01-01 发布日期:2008-01-15

Computational Analysis of TLS Handshake Protocol

NI Yang, ZHANG Yu-Qing   

  1. Graduate University, Chinese Academy of Science,
    National Computer Network Intrusion Protection Center, Beijing 100043,China
  • Received:1900-01-01 Revised:1900-01-01 Published:2008-01-15

摘要: 本文用BR模型对TLS握手协议进行了计算分析与安全性证明. TLS握手协议作为典型的认证密钥交换协议,可以自然结合到BR认证协议计算模型分析框架当中. 本文对该协议主要通信过程进行了总结、建模和分析,证明当协议所采用的公钥加密函数和消息认证函数均满足计算模型安全性要求时,TLS握手协议在BR计算模型下是安全的.

关键词: 认证密钥交换协议, 可证安全, TLS握手协议, 伪随机函数

Abstract: As a typical authentication and key exchange protocol, TLS handshake protocol could be analyzed under the framework of BR computational model. We provide computational analysis of this protocol and prove that, when implemented with pseudorandom function as message authentication algorithm and encryption scheme which satisfies IND-CCA standard, the TLS handshake protocol is indeed secure under computational model. The technicalities of our proof reveal insights regarding the relationship between formal and computational models of security protocol.

中图分类号: