ssl3.0协议的英文版

ssl3.0协议的英文版这篇是我很久以前的论文的材料，当时很忙，过后实际上是很失落，没心情整理他，当时候放到网上是自己论文需要，现在只求安定！再来看看，很惭愧！..........我再看着它，看着看着，泪如雨下。我想把它写下来作为过去的一个纪念。－－－－－－－－－－－－证明存在的分割线－－－TransportLayerSecurityWorkingGroupAlanO.FreierINTERNET-DRAFTNetscapeCommunicationsExpireinsixmonthsPhilipKarltonNetscapeCommunicationsPaulC.KocherIndependentConsultantNovember18,1996TheSSLProtocolVersion3.0draft-freier-ssl-version3-02.txtStatusofthismemoThisdocumentisanInternet-Draft.Internet-DraftsareworkingdocumentsoftheInternetEngineeringTaskForce(IETF),itsareas,anditsworkinggroups.NotethatothergroupsmayalsodistributeworkingdocumentsasInternet-Drafts.Internet-Draftsaredraftdocumentsvalidforamaximumofsixmonthsandmaybeupdated,replaced,ormadeobsoletebyotherdocumentsatanytime.ItisinappropriatetouseInternet-Draftsasreferencematerialortocitethemotherthanasworkinprogress.TolearnthecurrentstatusofanyInternet-Draft,pleasecheckthe1id-abstracts.txtlistingcontainedintheInternetDraftsShadowDirectoriesonds.internic.net(USEastCoast),nic.nordu.net(Europe),ftp.isi.edu(USWestCoast),ormunnari.oz.au(PacificRim).AbstractThisdocumentspecifiesVersion3.0oftheSecureSocketsLayer(SSLV3.0)protocol,asecurityprotocolthatprovidescommunicationsprivacyovertheInternet.Theprotocolallowsclient/serverapplicationstocommunicateinawaythatisdesignedtopreventeavesdropping,tampering,ormessageforgery.TransportLayerSecurityWorkingGroupAlanO.FreierINTERNET-DRAFTNetscapeCommunicationsExpireinsixmonthsPhilipKarltonNetscapeCommunicationsPaulC.KocherIndependentConsultantNovember18,1996TheSSLProtocolVersion3.0draft-freier-ssl-version3-02.txtStatusofthismemoThisdocumentisanInternet-Draft.Internet-DraftsareworkingdocumentsoftheInternetEngineeringTaskForce(IETF),itsareas,anditsworkinggroups.NotethatothergroupsmayalsodistributeworkingdocumentsasInternet-Drafts.Internet-Draftsaredraftdocumentsvalidforamaximumofsixmonthsandmaybeupdated,replaced,ormadeobsoletebyotherdocumentsatanytime.ItisinappropriatetouseInternet-Draftsasreferencematerialortocitethemotherthanasworkinprogress.TolearnthecurrentstatusofanyInternet-Draft,pleasecheckthe1id-abstracts.txtlistingcontainedintheInternetDraftsShadowDirectoriesonds.internic.net(USEastCoast),nic.nordu.net(Europe),ftp.isi.edu(USWestCoast),ormunnari.oz.au(PacificRim).AbstractThisdocumentspecifiesVersion3.0oftheSecureSocketsLayer(SSLV3.0)protocol,asecurityprotocolthatprovidescommunicationsprivacyovertheInternet.Theprotocolallowsclient/serverapplicationstocommunicateinawaythatisdesignedtopreventeavesdropping,tampering,ormessageforgery.Freier,Karlton,Kocher[Page1].INTERNET-DRAFTSSL3.0November18,1996TableofContentsStatusofthismemo1Abstract1TableofContents21.Introduction42.Goals43.Goalsofthisdocument54.Presentationlanguage54.1Basicblocksize54.2Miscellaneous64.3Vectors64.4Numbers74.5Enumerateds74.6Constructedtypes84.6.1Variants84.7Cryptographicattributes94.8Constants105.SSLprotocol105.1Sessionandconnectionstates105.2Recordlayer125.2.1Fragmentation125.2.2Recordcompressionanddecompression135.2.3RecordpayloadprotectionandtheCipherSpec135.2.3.1Nullorstandardstreamcipher145.2.3.2CBCblockcipher155.3Changecipherspecprotocol165.4Alertprotocol165.4.1Closurealerts175.4.2Erroralerts175.5Handshakeprotocoloverview185.6Handshakeprotocol205.6.1Hellomessages215.6.1.1Hellorequest215.6.1.2Clienthello215.6.1.3Serverhello245.6.2Servercertificate255.6.3Serverkeyexchangemessage255.6.4Certificaterequest275.6.5Serverhellodone275.6.6Clientcertificate285.6.7Clientkeyexchangemessage285.6.7.1RSAencryptedpremastersecretmessage285.6.7.2FORTEZZAkeyexchangemessage295.6.7.3ClientDiffie-Hellmanpublicvalue305.6.8Certificateverify305.6.9Finished315.7Applicationdataprotocol326.Cryptographiccomputations326.1Asymmetriccryptographiccomputations326.1.1RSA326.1.2Diffie-Hellman336.1.3FORTEZZA33Freier,Karlton,Kocher[Page2].INTERNET-DRAFTSSL3.0November18,19966.2SymmetriccryptographiccalculationsandtheCipherSpec336.2.1Themastersecret336.2.2ConvertingthemastersecretintokeysandMAC336.2.2.1Exportkeygenerationexample35A.Protocolconstantvalues36A.1Reservedportassignments36A.1.1Recordlayer36A.2Changecipherspecsmessage37A.3Alertmessages37A.4Handshakeprotocol37A.4.1Hellomessages38A.4.2Serverauthenticationandkeyexchangemessages39A.5Clientauthenticationandkeyexchangemessages40A.5.1Handshakefinalizationmessage41A.6TheCipherSuite41A.7TheCipherSpec42B.Glossary44C.CipherSuitedefinitions47D.ImplementationNotes49D.1TemporaryRSAkeys49D.2RandomNumberGenerationandSeeding49D.3Certificatesandauthentication50D.4CipherSuites50D.5FORTEZZA50D.5.1NotesonuseofFORTEZZAhardware50D.5.2FORTEZZACiphersuites51D.5.3FORTEZZASessionresumption51E.Version2.0BackwardCompatibility52E.1Version2clienthello52E.2Avoidingman-in-the-middleversionrollback53F.Securityanalysis55F.1Handshakeprotocol55F.1.1Authenticationandkeyexchange55F.1.1.1Anonymouskeyexchange55F.1.1.2RSAkeyexchangeandauthentication56F.1.1.3Diffie-Hellmankeyexchangewithauthentication57F.1.1.4FORTEZZA57F.1.2Versionrollbackattacks57F.1.3Detectingattacksagainstthehandshakeprotocol58F.1.4Resumingsessions58F.1.5M