对结合TLS的TNC IF-T协议的安全性分析与改进(英文) 被引量：1

Security Analysis and Improvement of TNC IF-T Protocol Binding to TLS

下载PDF

导出

摘要 The TNC IF-T Protocol Binding to TLS(TIPBT) is specified by Trusted Computing Group(TCG) for TNC assessment exchanges.However,the TIPBT cannot be analysed by current Strand Space Model(SSM) because of the different requirements from the traditional security protocols.In order to solve this problem,first,we give an extension of the SSM and point out the TIPBT cannot prevent Man-in-the-Middle(MITM) attacks in some cases based on the extended SSM.Then,we improve the TIPBT and show that the improved TIPBT can resist MITM attacks in the extended SSM. The TNC IF-T Protocol Binding to TLS （TIPBT） is specified by Trusted Computing Group （TCG） for TNC assessment exchanges. However, the TIPBT cannot be ana- lysed by current Strand Space Model （SSM） because of the different requirements from the traditional security protocols. In order to solve this problem, first, we give an extension of the SSM and point out the TIPBT cannot prevent Man-in-the-Middle （MITM） attacks in some cases based on the extended SSM. Then, we improve the TIPBT and show that the improved TIPBT can resist MITM attacks in the extended SSM.

作者肖跃雷王育民庞辽军

机构地区 State Key Laboratory of Integrated Service Networks

出处《China Communications》 SCIE CSCD 2013年第7期85-92,共8页 中国通信（英文版）

基金 supported in part by the National Natural Science Foundation of China under Grants No.60473072,No.60803151 the Joint Fund of Natural Science Foundation of China with the Guangdong Provincial Government under Grant No.U0632004

关键词安全协议 TLS 安全性分析跨国公司绑定中间人攻击串空间模型 SSM computer application MITM attacks SSM TIPBT

分类号 TN915.04 [电子电信—通信与信息系统]

引文网络
相关文献

参考文献12

1Trusted Computing Group. TCG TNC Archi- tecture for Interoperability Specification Ver- sion 1.4[S/OL]. [2009-5-18]. http://www.trusted- computinggroup.org/resources/tnc_architec- tu re_for j nteroperability _specification.pdf.
2Trusted Computing Group. TCG TNC IF-T: Pro- tocol Binding for Tunnelled EAP Methods Specification Version 1.1[S/Ol]. [2007-5-21]. http://www.trustedcom puti ngg rou p.orq/reso urces/tncjft_protocol_bindings_foUunneled_ eap_methods_specification.pdf.
3Trusted Computing Group. TCG TNC IF-T: Bin- ding to TlS Specification Version 1.0[S/Ol]. [2009-5-18]. http://www.trustedcomputinggroup. org/resources/tncjft_binding_to_tls.pdf.
4FABREGA F J T, HERZOG J C, GUTTMAN J D. Strand Spaces: Why is Security Protocol Cor- rect- [C]// Proceedings of the 1998 IEEE Sym- posium on Security and Privacy: May 3-6, 1998. Oakland, CA, USA, 1998: 160-171.
5FABREGA F J T. HERZOG J C, GUTTMAN J D. Str- and Spaces: Proving Security Protocols Cor- rect[J]. Journal of Computer Security, 1999, 7(2/3): 191-230.
6HERZOG J C. The Diffie-Hellman Key-Agree- ment Scheme in the Strand Space Model[C]// Proceedings of the 16th IEEE Computer Sec- urity Foundations Workshop: June 30-July 2, 2003. Pacific Grove, CA, USA, 2003: 234-247.
7RFC 5246. The Transport layer Security (TlS) Protocol Version 1.2[S]. 2008.
8SAllER R, JAEGER T, ZHANG Xiaolan, et al. Design and Implementation of a TCG-Based Integrity Measurement Architecture[C]I/ Pro- ceedings of 13th Conference on USENIX Secu- rity Symposium (SYYM'04): August 9-13. 2004. San Diego, CA, USA, 2004: 223-238.
9Trusted Computing Group. TCG Specification Architecture Overview Specification Revision l.4[S/OL]. [2007-8-2]. http://www.trustedcompu- tinggroup.org/- e=search.list&keyword= TCG+ Specification + Architecture+ Overview+ Speci- fication + Revision + 1.4.pdf.
10ASOKAN N, NIEMI V, NYBERG K. Man-in-the- Middle in Tunnelled Authentication Protocols [C]// Proceedings of the 11th International Wor- kshop on Security Protocols: April 2-4, 2003. Cambridge, UK, 2003: 172-194.

同被引文献4

1沈昌祥,张焕国,王怀民,王戟,赵波,严飞,余发江,张立强,徐明迪.可信计算的研究与发展[J].中国科学：信息科学,2010,40(2):139-166. 被引量：251
2赵波,张焕国,李晶,陈璐,文松.可信PDA计算平台系统结构与安全机制[J].计算机学报,2010,33(1):82-92. 被引量：49
3马卓,马建峰,李兴华,姜奇.可证明安全的可信网络连接协议模型[J].计算机学报,2011,34(9):1669-1678. 被引量：19
4庞飞,冷冰,谭平嶂,周楝淞.基于TNC的可信接入控制技术研究[J].信息安全与通信保密,2013,11(9):84-86. 被引量：3

引证文献1

1赵波,朱向玉,向騻,杨冰.C-TNC:适用于Openstack的可信云接入协议[J].华中科技大学学报（自然科学版）,2016,44(3):83-88. 被引量：2

二级引证文献2

1邓劲生,韩丹,胡慧俐.虚拟桌面环境双向认证网盘设计与实现[J].华中科技大学学报（自然科学版）,2016,44(11):92-96. 被引量：2
2赖英旭,刘岩,刘静.一种网络间可信连接协议[J].软件学报,2019,30(12):3730-3749. 被引量：4

1SHI JianHong,ZHANG ShengLi,CHANG ZhengGang.The security analysis of a threshold proxy quantum signature scheme[J].Science China Chemistry,2013,56(3):519-523. 被引量：5
2Jie Yang Tian Yang.BB84 Protocol and Its Security Analysis[J].通讯和计算机（中英文版）,2005,2(11):38-42.
3DAI Guang-ming,WANG Mao-cai,HU Han-ping.Security analysis on WEP protocol[J].通讯和计算机（中英文版）,2008,5(2):25-27.
4XUE Haifeng,QING Sihan,ZHANG Huanguo.XEN Virtual Machine Technology and Its Security Analysis[J].Wuhan University Journal of Natural Sciences,2007,12(1):159-162. 被引量：4
5CHANG Yinlong,HU Huaping.Security Analysis of an Electronic Commerce Protocol Using Casper/FDR2[J].Wuhan University Journal of Natural Sciences,2012,17(6):499-503. 被引量：1
6XUE Qingshui,CAO Zhenfu.Security Analysis and Improvement of Some Threshold Proxy Signature Schemes[J].通讯和计算机（中英文版）,2005,2(1):17-25. 被引量：2
7LI Chao YANG Yi-xian NIU Xin-xin.Biometric-based personal identity-authentication system and security analysis[J].The Journal of China Universities of Posts and Telecommunications,2006,13(4):43-47. 被引量：2
8Chao LV,Hui LI,Jianfeng MA,Meng ZHAO.Security analysis of two recently proposed RFID authentication protocols[J].Frontiers of Materials Science,2011,5(3):335-340.
9车天伟,Ma Jianfeng,Li Na,Wang Chao.Security analysis of access control model in hybrid cloud based on security entropy[J].High Technology Letters,2015,21(2):200-204. 被引量：2
10李剑,孙风琪,潘泽世,聂金瑞,陈彦桦,袁开国.The Security Analysis of Two-Step Quantum Direct Communication Protocol in Collective-Rotation Noise Channel[J].Chinese Physics Letters,2015,32(8):1-5. 被引量：2

China Communications

2013年第7期

浏览历史

内容加载中请稍等...

对结合TLS的TNC IF-T协议的安全性分析与改进(英文) 被引量：1

参考文献12

同被引文献4

引证文献1

二级引证文献2

相关作者

相关机构

相关主题

浏览历史