论文信息 - SSL/TLS Servers Status Survey about Enabling Forward Secrecy

SSL/TLS Servers Status Survey about Enabling Forward Secrecy

This paper discusses forward secrecy functionality, which has come into the spotlight due to a series of news reports regarding the NSA. SSL/TLS server support for forward secrecy was introduced at major sites such as SNS at the end of last year, so servers enabling forward secrecy are increasing. This paper shows SSL/TLS servers status survey about enabling forward secrecy by crawling with SSLyze 0.8.

Yuji Suga

[1] Bodo Möller,et al. Network Working Group Elliptic Curve Cryptography (ecc) Cipher Suites for Transport Layer Security (tls) , 2006 .

[2] Arjen K. Lenstra,et al. Public Keys , 2012, CRYPTO.

[3] Eric Wustrow,et al. Mining Your Ps and Qs: Detection of Widespread Weak Keys in Network Devices , 2012, USENIX Security Symposium.

[4] Abhijit Das,et al. Elliptic-Curve Cryptography (ECC) , 2015 .

[5] Yuji Suga. SSL/TLS Status Survey in Japan - Transitioning against the Renegotiation Vulnerability and Short RSA Key Length Problem , 2012, 2012 Seventh Asia Joint Conference on Information Security.

[6] Michael Naehrig,et al. Elliptic Curve Cryptography in Practice , 2014, Financial Cryptography.

[7] Suga Yuji. Are measures against SSL/TLS sites dependent on the category which that site belongs? -- obtained by crawling of renegotiation functions and RSA key lengths , 2012 .