论文信息 - TLS protocol: Secure protocol with Client Puzzles

TLS protocol: Secure protocol with Client Puzzles

Client puzzles are commonly proposed as a solution to denial-of-service attacks. We analyzed the TLS protocol and implement Client Puzzles algorithm. We pursued the following objectives: analyze TLS handshake protocol and implement Client Puzzles algorithm using Hash Functions, Diffie-Hellman Base Puzzle Scheme and Threshold Puzzles. The originality of the paper is due to a comparative study of methods used to create the Client Puzzle solution. We also present measurements of execution time when our modified protocol is under attack.

Catargiu Raluca | Borda Monica

[1] Adam Stubblefield,et al. Using Client Puzzles to Protect TLS , 2001, USENIX Security Symposium.

[2] Moni Naor,et al. Pricing via Processing or Combatting Junk Mail , 1992, CRYPTO.

[3] Tuomas Aura. DOS-Resistant Authentication with Client Puzzles (Transcript of Discussion) , 2000, Security Protocols Workshop.

[4] Yi Gao,et al. Efficient trapdoor-based client puzzle system against DoS attacks , 2005 .

[5] Pekka Nikander,et al. DOS-resistant authentication with client puzzles. Discussion , 2001 .

[6] Ari Juels,et al. $evwu Dfw , 1998 .

[7] Brent Waters,et al. New client puzzle outsourcing techniques for DoS resistance , 2004, CCS '04.

[8] Ralph C. Merkle,et al. Secure communications over insecure channels , 1978, CACM.

[9] Abdulmotaleb El-Saddik,et al. Requirements for Client Puzzles to Defeat the Denial of Service and the Distributed Denial of Service Attacks , 2006, Int. Arab J. Inf. Technol..

[10] Ronald L. Rivest,et al. Time-lock Puzzles and Timed-release Crypto , 1996 .