Title :
ISAKMP handshake for SSL/TLS
Author :
Hajjeh, Ibrahim ; Serhrouchni, Ahmed ; Tastet, Frédérique
Author_Institution :
Ecole Nat. Superieure des Telecommun., Paris, France
Abstract :
SSL/TLS protocol is without any doubt the most used security protocol. It presents nevertheless some limitations regarding the weakness of the handshake protocol and the absence of an authorization mechanism. In this paper, we give a new dimension to SSL/TLS by integrating the Internet security association and key management protocol (ISAKMP) in its session establishment phase. ISAKMP defines a framework for security association management and cryptographic key establishment for the Internet. This protocol opens a new perspective for secure sessions for all network layers. We then define an SSL/TLS security domain of interpretation (TLS DOI) which instantiates ISAKMP for use with SSL/TLS. This makes it possible to extend the work of SSL/TLS to support new services.
Keywords :
Internet; authorisation; computer network management; public key cryptography; telecommunication security; transport protocols; Internet security association management; authorization mechanism; cryptographic key establishment; key management protocol handshake; network layer; secure session; secure socket layer; security domain interpretation; security protocol; transport layer secure protocol; Authentication; Authorization; Cryptographic protocols; Cryptography; Data security; Information security; Internet; Protection; Sockets; Transport protocols;
Conference_Titel :
Global Telecommunications Conference, 2003. GLOBECOM '03. IEEE
Print_ISBN :
0-7803-7974-8
DOI :
10.1109/GLOCOM.2003.1258484
