SPKI Certificate Integration with Transport Layer Security (TLS) for Client Authentication and Authorization

机译：SPKI证书与传输层安全性（TLS）集成，用于客户端身份验证和授权

获取原文

页面导航

摘要
著录项
相似文献
相关主题

摘要

This document extends version 1.0 of the TLS specification [TLS] tosupport client SPKI certificates and associated public keyalgorithms, symmetric ciphers, hash algorithms and the appropriatetrust model. The server is required to possess a X.509 certificatefor authentication. The credentials of both the server's certificateand the client's SPKI certificate are used to achieve mutualauthentication and to establish a master secret, which is in turnused to secure client-server communications. Integrating SPKIauthorization framework with TLS authentication framework allowsaccessing of resources or services granted in a SPKI certificate,using a TLS connection to the server. This document uses the samenotation as used in the TLS Protocol draft [TLS].

机译：本文档扩展了TLS规范[TLS]的1.0版，以支持客户端SPKI证书和关联的公共密钥算法，对称密码，哈希算法和适当的信任模型。服务器必须具有X.509证书才能进行身份验证。服务器证书和客户端SPKI证书的凭据都用于实现相互身份验证和建立主密钥，进而将其用于保护客户端-服务器通信。将SPKIauthorization框架与TLS身份验证框架集成在一起，可以使用与服务器的TLS连接来访问SPKI证书中授予的资源或服务。本文档使用与TLS协议草稿[TLS]中使用的相同的注释。

著录项

来源
《Meeting of the internet engineering task force;IETF》|2001年|p.1-6|共6页
会议地点 Salt Lake City, UT(US);Salt Lake City, UT(US)
作者
H. S. Madhusudhana; V. R. Ramachandran;
展开▼
作者单位

展开▼
会议组织
原文格式 PDF
正文语种
中图分类
关键词
'must'; ; 'must not'; ; 'required'; ; 'shall'; ; 'shall not'; ; 'should'; ; 'should not'; ; 'recommended'; ; 'may'; ; and 'optional';

机译：'必须'; ; '禁止'; ; '需要'; ; “应”； ; '最好不要'; ; '应该'; ; '不应该'; ; '推荐的'; ; '可以'; ;和“可选”;

相似文献

外文文献
中文文献
专利

1. Web-Proxy-Based Authentication and Authorization Mechanism Against Client-Based HTTP Attacks [J] . Mohd. Shafi Pathan, Mrunali Bukkawar International journal of synthetic emotions . 2017,第1期

机译：基于Web代理的身份验证和授权机制可抵抗基于客户端的HTTP攻击
2. Embedding X.509 Digital Certificates in Three- Dimensional Models for Authentication, Authorization, and Traceability of Product Data [J] . Thomas D. Hedberg Jr., Sylvere Krima, Jaime A. Camelio Journal of Computing and Information Science in Engineering . 2017,第1期

机译：在三维模型中嵌入X.509数字证书，以进行产品数据的身份验证，授权和可追溯性
3. An Efficient Password-Based Authenticated Key Exchange Protocol with Provable Security for Mobile Client-Client Networks [J] . Heydari Mohammad, Sadough S. Mohammad Sajad, Farash Mohammad Sabzinejad, Wireless personal communications: An Internaional Journal . 2016,第2期

机译：针对移动客户端-客户端网络的有效的，基于密码的，经过身份验证的密钥交换协议，具有可证明的安全性
4. BA-TLS: Blockchain Authentication for Transport Layer Security in Internet of Things [C] . Erin Beckwith, Geethapriya Thamilarasu International Conference on Internet of Things: Systems, Management and Security . 2020

机译：BA-TLS：SlockChain身份验证用于Internet Internet中的传输层安全
5. A study of security threat modeling and its use in evaluation of the certificate authority client certificate authority system. [D] . Tai, Wai Yan Elsa. 2007

机译：安全威胁建模及其在证书颁发机构客户证书颁发机构系统评估中的应用的研究。
6. Embedding X.509 Digital Certificates in Three-Dimensional Models for Authentication Authorization and Traceability of Product Data [O] . Thomas D. Hedberg Jr., Sylvere Krima, Jaime A. Camelio -1

机译：在三维模型中嵌入X.509数字证书以进行产品数据的身份验证授权和可追溯性
7. Transport Layer Security (TLS) Authorization Using Digital Transmission Content Protection (DTCP) Certificates [O] . 2015

机译：使用数字传输内容保护（DTCp）证书的传输层安全性（TLs）授权

SPKI Certificate Integration with Transport Layer Security (TLS) for Client Authentication and Authorization

摘要

著录项

相似文献

相关主题

期刊订阅