Академический Документы
Профессиональный Документы
Культура Документы
API’s API’s
TCP/UDP/… TCP/UDP/…
Network Network
Device Drivers Device Drivers
Encapsulated
ESP Encrypted
IP HDR HDR MAC Security
Payload
Payload (ESP)
ESP
IP HDR HDR
Payload MAC ESP MAC-only
Diffie-Hellman (PFS)
Signature-based authentication
Optional identity protection
A B
A, gx
B, gy
B, gy, SIGB(gx,gy)
SIGA(gy,gx)
Each party signs its own DH value to prevent m-i-t-m attack (and
the peer’s DH value as a freshness guarantee against replay )
A A, gx E E, gx B
SIGA(gy,gx) SIGE(gy,gx)
B, gy, SIGB(gx,gy,A)
SIGA(gy,gx,B)
A A, gx E E, gx B
B, gy, {SIGB(gx,gy)}K
{SIGA(gy,gx )}K
03Crypto - Hugo Krawczyk 28
STS Pro’s and Con’s
Pro: STS can protect identities
Peer’s id not needed for your own authentication
Can extend encryption to cover identities (or cert’s)
A gx B
A E gx B
gy, B, {SIGB(gx,gy)}K
E
A,
/ {SIGA(gy,gx )}K
A E gx B
E
A,
/ SIGA(gy,gx ), MACK(SIGA)
A, SIGA(gy,gx) , MACKm(A)
A gx B
A gx B
gy
A gx B
gy
ThAnKs