Abstract
In this paper we use extended NCP logic to formally analyze SSL 3.0, and show two important weak points of the protocol, which are the server’s not assured of the freshness and the origin of the pre-master secret when RSA is used for key exchange. We only give specification and analysis of one authentication mode of SSL 3.0 in detail, but all authentication modes have the two weak points. Especially, the flaw of the freshness of the pre-master secret may result in reuse of the pre-master secret, and we properly remedy it by introducing a nonce.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
References
A. Frier, P. Karlton, P. Kocher: The SSL Protocol Version 3.0. Netscape Communications Corp. March 1996. Internet Draft, work in progress.
T. Dierks, C. Allen. RFC2246: The TLS Protocol Version 1.0. January 1999.
Aviel David Rubin: Nonmonotonic Cryptographic Protocols. PhD thesis, University of Michigan, Ann Arbor. 1994.
Sven Dietrich: A Formal Analysis of the Secure Sockets Layer Protocol. PhD thesis, Adelphi University. 1997.
Daniel Bleichenbacher: Chosen Ciphertext Attacks Against Protocols Based on the RSA Encryption Standard PKCS#1. Advances in Cryptology-Crypto’98, LNCS vol. 1462, pages 1–12, Springer-Verlag, 1998.
Roger M. Needham, M. D. Schroeder: Using Encryption for Authentication in Large Networks. Communication of the ACM, 21(12):993–999, December 1978.
Dorothy E. Denning, Giovanni Maria Sacco: Timestamps in Key Distribution Protocols. Communication of the ACM, 24(8):533–536, August 1981.
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2001 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Song, Z., Qing, S. (2001). Applying NCP Logic to the Analysis of SSL 3.0. In: Qing, S., Okamoto, T., Zhou, J. (eds) Information and Communications Security. ICICS 2001. Lecture Notes in Computer Science, vol 2229. Springer, Berlin, Heidelberg. https://doi.org/10.1007/3-540-45600-7_18
Download citation
DOI: https://doi.org/10.1007/3-540-45600-7_18
Published:
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-42880-0
Online ISBN: 978-3-540-45600-1
eBook Packages: Springer Book Archive