The University (U) has developed a new protocol, called UAPP, that is used by a client application on computers in its different branches around the world to send students information to a central server in the U campus in Kuwait. The TCP/IP stack is used by the protocol. Based on your strong knowledge of OpenSSL libraries, you have been hired by the U to pertest and configure the client/server applications so that all sessions between client/servers are became secure. After securing the application, a secure session and connection has been established. The following information is stored by the client computer for this session/connection: Session ID: id Compression method: null Cipher Suite: TLS DHE RSA WITH AES 128 CBC SHA Master secret: s Server random: Client random: Server MAC secret: Client MAC secret: Server encrypt key: Client encrypt key: The following figure shows the general operation of SSL record protocol: Draw a protocol stack of a computer using Ethernet physical and data link layers, that illustrates the protocols in use by the secure client application. What algorithm/cipher is used for the client the authenticate the server? To generate the master secret s, a premaster secret is used. What algorithm is used for the client and server to share a premaster secret. The master secret s is used, in combination with the random values, identities of the client/server and hash functions, to create multiple keys. Explain a security advantage of having multiple secrets/keys. Write an equation that expresses the SSL record operation on a single fragment, F from the client application that produces the packet to be sent P. Use the variables above and || for the concatenate/append operator. For function names you must use the algorithm names (i.e. you cannot use E () for encrypt, H() for hash; refer to specific algorithms). Denote the SSL header as SSL.
The University (U) has developed a new protocol, called UAPP, that is used by a client application on computers in its different branches around the world to send students information to a central server in the U campus in Kuwait. The TCP/IP stack is used by the protocol. Based on your strong knowledge of OpenSSL libraries, you have been hired by the U to pertest and configure the client/server applications so that all sessions between client/servers are became secure. After securing the application, a secure session and connection has been established. The following information is stored by the client computer for this session/connection: Session ID: id Compression method: null Cipher Suite: TLS DHE RSA WITH AES 128 CBC SHA Master secret: s Server random: Client random: Server MAC secret: Client MAC secret: Server encrypt key: Client encrypt key: The following figure shows the general operation of SSL record protocol: Draw a protocol stack of a computer using Ethernet physical and data link layers, that illustrates the protocols in use by the secure client application. What algorithm/cipher is used for the client the authenticate the server? To generate the master secret s, a premaster secret is used. What algorithm is used for the client and server to share a premaster secret. The master secret s is used, in combination with the random values, identities of the client/server and hash functions, to create multiple keys. Explain a security advantage of having multiple secrets/keys. Write an equation that expresses the SSL record operation on a single fragment, F from the client application that produces the packet to be sent P. Use the variables above and || for the concatenate/append operator. For function names you must use the algorithm names (i.e. you cannot use E () for encrypt, H() for hash; refer to specific algorithms). Denote the SSL header as SSL.
Database System Concepts
7th Edition
ISBN:9780078022159
Author:Abraham Silberschatz Professor, Henry F. Korth, S. Sudarshan
Publisher:Abraham Silberschatz Professor, Henry F. Korth, S. Sudarshan
Chapter1: Introduction
Section: Chapter Questions
Problem 1PE
Related questions
Question
The University (U) has developed a new protocol, called UAPP, that is used by a client application on computers in its different branches around the world to send students information to a central server in the U campus in Kuwait. The TCP/IP stack is used by the protocol. Based on your strong knowledge of OpenSSL libraries, you have been hired by the U to pertest and configure the client/server applications so that all sessions between client/servers are became secure. After securing the application, a secure session and connection has been established. The following information is stored by the client computer for this session/connection:
|
Session ID: id |
|
Compression method: null |
|
Cipher Suite: TLS DHE RSA WITH AES 128 CBC SHA |
|
Master secret: s |
|
Server random: |
|
Client random: |
|
Server MAC secret: |
|
Client MAC secret: |
|
Server encrypt key: |
|
Client encrypt key: |
The following figure shows the general operation of SSL record protocol:
- Draw a protocol stack of a computer using Ethernet physical and data link layers, that illustrates the protocols in use by the secure client application.
- What
algorithm /cipher is used for the client the authenticate the server? - To generate the master secret s, a premaster secret is used. What algorithm is used for the client and server to share a premaster secret.
- The master secret s is used, in combination with the random values, identities of the client/server and hash functions, to create multiple keys. Explain a security advantage of having multiple secrets/keys.
- Write an equation that expresses the SSL record operation on a single fragment, F from the client application that produces the packet to be sent P. Use the variables above and || for the concatenate/append operator. For function names you must use the algorithm names (i.e. you cannot use E () for encrypt, H() for hash; refer to specific algorithms). Denote the SSL header as SSL.
Transcribed Image Text:Application
Data
Fragment
Fragment size at most 214 bytes
Compress
Compression is optional
Add MAC
MAC with shared-key
Encrypt
Encryption with shared-key
Add SSL
Header
SSL Packet
Expert Solution
This question has been solved!
Explore an expertly crafted, step-by-step solution for a thorough understanding of key concepts.
Step by step
Solved in 2 steps
Knowledge Booster
Learn more about
Need a deep-dive on the concept behind this application? Look no further. Learn more about this topic, computer-science and related others by exploring similar questions and additional content below.Recommended textbooks for you
Database System Concepts
Computer Science
ISBN:
9780078022159
Author:
Abraham Silberschatz Professor, Henry F. Korth, S. Sudarshan
Publisher:
McGraw-Hill Education
Starting Out with Python (4th Edition)
Computer Science
ISBN:
9780134444321
Author:
Tony Gaddis
Publisher:
PEARSON
Digital Fundamentals (11th Edition)
Computer Science
ISBN:
9780132737968
Author:
Thomas L. Floyd
Publisher:
PEARSON
Database System Concepts
Computer Science
ISBN:
9780078022159
Author:
Abraham Silberschatz Professor, Henry F. Korth, S. Sudarshan
Publisher:
McGraw-Hill Education
Starting Out with Python (4th Edition)
Computer Science
ISBN:
9780134444321
Author:
Tony Gaddis
Publisher:
PEARSON
Digital Fundamentals (11th Edition)
Computer Science
ISBN:
9780132737968
Author:
Thomas L. Floyd
Publisher:
PEARSON
C How to Program (8th Edition)
Computer Science
ISBN:
9780133976892
Author:
Paul J. Deitel, Harvey Deitel
Publisher:
PEARSON
Database Systems: Design, Implementation, & Manag…
Computer Science
ISBN:
9781337627900
Author:
Carlos Coronel, Steven Morris
Publisher:
Cengage Learning
Programmable Logic Controllers
Computer Science
ISBN:
9780073373843
Author:
Frank D. Petruzella
Publisher:
McGraw-Hill Education