A proposal for a new block encryption standard
EUROCRYPT '90 Proceedings of the workshop on the theory and application of cryptographic techniques on Advances in cryptology
A cryptographic file system for UNIX
CCS '93 Proceedings of the 1st ACM conference on Computer and communications security
SSYM'95 Proceedings of the 5th conference on USENIX UNIX Security Symposium - Volume 5
| Hi-index | 0.00 |
PES, Privacy Enhanced Sockets, is a user-level subsystem providing network privacy for stream sockets. This document presents its design and implementation in UNIX and Microsoft Windows systems. PES provides secure channels on top of standard stream sockets, allowing existing client-server applications to transparently use secure channels instead of standard remote connections. PES is composed of two entities which can be almost transparently added to existing systems: a dynamic library and a trusted proxy server. All cryptographic details concerning the establishment of secure channels are solely handled by instances of these two entities using the Diffie-Hellman public-key algorithm. Man-in-the-Middle attacks are prevented using asymmetric cryptography for host authentication. Host's public keys are acquired and stored on a per-user basis such as for PGP, which does not require central management but only a reduced user intervention. PES has been tested with several applications -- telnet, ftp, several X11 and WWW applications -- in SunOS, Solaris and Microsoft Windows 3.1. Performance tests run in Sun SPARCstations show a low latency time and an acceptable throughput degradation.