CipherSuite Setting Problem of SSL Protocol and It`s Solutions

Yun Young Lee; Soon Haeng Hur; Sang Joo Park; Dong Hwi Shin; Dong Ho Won; Seung Joo Kim

CipherSuite Setting Problem of SSL Protocol and It`s Solutions

The KIPS Transactions:PartC, Vol. 15, No. 5, pp. 359-366, Oct. 2008

10.3745/KIPSTC.2008.15.5.359, PDF Download:

Abstract

As the use of Internet and information communication technology is being generalized, the SSL protocol is essential in Internet because the important data should be transferred securely. While the SSL protocol is designed to defend from active attack such as message forgery and message alteration, the cipher suite setting can be easily modified. If the attacker draw on a malfunction of the client system and modify the cipher suite setting to the symmetric key algorithm which has short key length, he should eavesdrop and cryptanalysis the encrypt data. In this paper, we examine the domestic web site whether they generate the security session through the symmetric key algorithm which has short key length and propose the solution of the cipher suite setting problem.

Statistics

Show / Hide Statistics

Statistics (Cumulative Counts from September 1st, 2017)
Multiple requests among the same browser session are counted as one view.
If you mouse over a chart, the values of data points will be shown.

Cite this article

[IEEE Style]

Y. Y. Lee, S. H. Hur, S. J. Park, D. H. Shin, D. H. Won, S. J. Kim, "CipherSuite Setting Problem of SSL Protocol and It`s Solutions," The KIPS Transactions:PartC, vol. 15, no. 5, pp. 359-366, 2008. DOI: 10.3745/KIPSTC.2008.15.5.359.

[ACM Style]

Yun Young Lee, Soon Haeng Hur, Sang Joo Park, Dong Hwi Shin, Dong Ho Won, and Seung Joo Kim. 2008. CipherSuite Setting Problem of SSL Protocol and It`s Solutions. The KIPS Transactions:PartC, 15, 5, (2008), 359-366. DOI: 10.3745/KIPSTC.2008.15.5.359.