摘要
针对传输层安全(TLS)协议1.3版本在握手消息的第1个flight中传输应用数据的0-RTT握手方案,传输的早期数据由于不存在身份认证,容易遭受重放、伪造以及中间人的攻击,并且不满足前向安全的问题,提出一种具有前向安全的0-RTT优化握手方案,使用Tamarin安全协议形式化分析工具对改进前、后的协议进行形式化验证,结果表明:改进方案的早期数据在原方案之上具有了前向保密的安全性质。
Aiming at 0-RTT handshake scheme of transport layer security(TLS)protocol version 1.3 that transmits application data in the first flight of handshake message,the early data transmitted is vulnerable to replay,forgery and man-in-the-middle attacks due to the lack of identity authentication and it doesn’t meet forward security.In this paper,an optimized 0-RTT handshake scheme with forward security was proposed,which has Tamarin security protocol’s formal analysis tool adopted to formally verify the protocol before and after improvement.The results show that,the early data of the improved scheme has the forward secrecy property over the original scheme.
作者
蒲鹳雄
缪祥华
袁梅宇
PU Guan-xiong;MIAO Xiang-hua;YUAN Mei-yu(Faculty of Information Engineering and Automation,Kunming University of Science and Technology;Yunnan Key Laboratory of Computer Technology Applications,Kunming University of Science and Technology)
出处
《化工自动化及仪表》
CAS
2023年第6期813-819,832,共8页
Control and Instruments in Chemical Industry
基金
云南省计算机技术应用重点实验室开放基金(批准号:2021207)资助的课题。
