IMPLEMENTING MULTIPLE CHANNELS OVER SSL

Yong Song, Victor C. M. Leung, Konstantin Beznosov

Abstract

Multiple-Channel SSL (MC-SSL) is our model and protocol for the security of client-server communication. In contrast to SSL, MC-SSL can securely provide applications with multiple channels, and each of them can have a specific cipher suite and a various number of application proxies; meanwhile, the channel negotiation and operation in MC-SSL are still based on SSL, which needs a small change in order to support multiple cipher suites. In this paper, we first introduce the multiple-channel model of MC-SSL, and then focus on the design and implementation of multiple channels over SSL, especially multi-hop proxy channels and secondary channels.

References

  1. Blake-Wilson, S., Nystrom, M., Hopwood, D., Mikkelsen J., and Wright, T., 2003. Transport Layer Security (TLS) Extensions. RFC 3546.
  2. Dierks, T. and Allen, C., 1999. The TLS Protocol Version 1.0. RFC 2246.
  3. IBM Corp. and Microsoft Corp., 2002. Security in a Web Services World: A Proposed Architecture and Roadmap. http://www-106.ibm.com/developerworks /webservices/library/ws-secmap/
  4. Kwon, E.K., Cho, Y.G., and Chae, K.J., 2001. Integrated Transport Layer Security: End-to-End Security Model between WTLS and TLS. Proc. IEEE 15th Int. Conf. on Information Networking
  5. Kennedy, D. J., 2000. An Architecture for Secure, ClientDriven Deployment of Application-Specific Proxies. Master's Thesis, University of Waterloo.
  6. OASIS Open, 2003. Web Services Security: SOAP Message Security. http://www.oasis-open.org/
  7. OpenSSL, 2004. http://www.openssl.org/
  8. Portmann M. and Seneviratne A., 2001. Selective Security for TLS, Proc. IEEE 9th Int. Conf. on Networks, pp. 216-221
  9. Song, Y., Leung, V., and Beznosov, K., 2004. Supporting End-to-end Security Across Proxies with MultipleChannel SSL. Proc. IFIP 18th World Computer Congress, submitted paper.
  10. W3C, 2002. XML Signature Recommendations, http://www.w3.org/Signature/
  11. W3C, 2002. XML Encryption Recommendations, http://www.w3.org/Encryption/
Download


Paper Citation


in Harvard Style

Song Y., C. M. Leung V. and Beznosov K. (2004). IMPLEMENTING MULTIPLE CHANNELS OVER SSL . In Proceedings of the First International Conference on E-Business and Telecommunication Networks - Volume 1: SVoIPNet, (ICETE 2004) ISBN 972-8865-15-5, pages 246-253. DOI: 10.5220/0001406302460253


in Bibtex Style

@conference{svoipnet04,
author={Yong Song and Victor C. M. Leung and Konstantin Beznosov},
title={IMPLEMENTING MULTIPLE CHANNELS OVER SSL},
booktitle={Proceedings of the First International Conference on E-Business and Telecommunication Networks - Volume 1: SVoIPNet, (ICETE 2004)},
year={2004},
pages={246-253},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0001406302460253},
isbn={972-8865-15-5},
}


in EndNote Style

TY - CONF
JO - Proceedings of the First International Conference on E-Business and Telecommunication Networks - Volume 1: SVoIPNet, (ICETE 2004)
TI - IMPLEMENTING MULTIPLE CHANNELS OVER SSL
SN - 972-8865-15-5
AU - Song Y.
AU - C. M. Leung V.
AU - Beznosov K.
PY - 2004
SP - 246
EP - 253
DO - 10.5220/0001406302460253