The University (U) has developed a new protocol, called UAPP, that is used by a client application on computers in its different branches around the world to send students information to a central server in the U campus in Kuwait. The TCP/IP stack is used by the protocol. Based on your strong knowledge of OpenSSL libraries, you have been hired by the U to pertest and configure the client/server applications so that all sessions between client/servers are became secure. After securing the application, a secure session and connection has been established. The following information is stored by the client computer for this session/connection: Session ID: id Compression method: null Cipher Suite: TLS DHE RSA WITH AES 128 CBC SHA Master secret: s Server random: Client random: Server MAC secret: Client MAC secret: Server encrypt key: Client encrypt key: The following figure shows the general operation of SSL record protocol: Draw a protocol stack of a computer using Ethernet physical and data link layers, that illustrates the protocols in use by the secure client application. What algorithm/cipher is used for the client the authenticate the server? To generate the master secret s, a premaster secret is used. What algorithm is used for the client and server to share a premaster secret. The master secret s is used, in combination with the random values, identities of the client/server and hash functions, to create multiple keys. Explain a security advantage of having multiple secrets/keys. Write an equation that expresses the SSL record operation on a single fragment, F from the client application that produces the packet to be sent P. Use the variables above and || for the concatenate/append operator. For function names you must use the algorithm names (i.e. you cannot use E () for encrypt, H() for hash; refer to specific algorithms). Denote the SSL header as SSL.
The University (U) has developed a new protocol, called UAPP, that is used by a client application on computers in its different branches around the world to send students information to a central server in the U campus in Kuwait. The TCP/IP stack is used by the protocol. Based on your strong knowledge of OpenSSL libraries, you have been hired by the U to pertest and configure the client/server applications so that all sessions between client/servers are became secure. After securing the application, a secure session and connection has been established. The following information is stored by the client computer for this session/connection:
Session ID: id |
Compression method: null |
Cipher Suite: TLS DHE RSA WITH AES 128 CBC SHA |
Master secret: s |
Server random: |
Client random: |
Server MAC secret: |
Client MAC secret: |
Server encrypt key: |
Client encrypt key: |
The following figure shows the general operation of SSL record protocol:
- Draw a protocol stack of a computer using Ethernet physical and data link layers, that illustrates the protocols in use by the secure client application.
- What
algorithm /cipher is used for the client the authenticate the server? - To generate the master secret s, a premaster secret is used. What algorithm is used for the client and server to share a premaster secret.
- The master secret s is used, in combination with the random values, identities of the client/server and hash functions, to create multiple keys. Explain a security advantage of having multiple secrets/keys.
- Write an equation that expresses the SSL record operation on a single fragment, F from the client application that produces the packet to be sent P. Use the variables above and || for the concatenate/append operator. For function names you must use the algorithm names (i.e. you cannot use E () for encrypt, H() for hash; refer to specific algorithms). Denote the SSL header as SSL.
Step by step
Solved in 2 steps