Multiple-channel security architecture and its implementation over SSL

Authors:
Yong Song;Konstantin Beznosov;Victor C. M. Leung
Affiliations:
Department of Electrical and Computer Engineering, Faculty of Applied Sciences, University of British Columbia, Vancouver, BC, Canada;Department of Electrical and Computer Engineering, Faculty of Applied Sciences, University of British Columbia, Vancouver, BC, Canada;Department of Electrical and Computer Engineering, Faculty of Applied Sciences, University of British Columbia, Vancouver, BC, Canada
Venue:
EURASIP Journal on Wireless Communications and Networking
Year:
2006

Citing 5
Cited 0

Securing wireless data: system architecture challenges

Proceedings of the 15th international symposium on System Synthesis
Integrated Transport Layer Security: End-to-End Security Model between WTLS and TLS

ICOIN '01 Proceedings of the The 15th International Conference on Information Networking
Selective Security for TLS

ICON '01 Proceedings of the 9th IEEE International Conference on Networks
Internet Security: Cryptographic Principles, Algorithms and Protocols

Internet Security: Cryptographic Principles, Algorithms and Protocols
SSL splitting: securely serving data from untrusted caches

SSYM'03 Proceedings of the 12th conference on USENIX Security Symposium - Volume 12

Quantified Score

Hi-index	0.00

Visualization

Abstract

This paper presents multiple-channel SSL (MC-SSL), an architecture and protocol for protecting client-server communications. In contrast to SSL, which provides a single end-to-end secure channel, MC-SSL enables applications to employ multiple channels, each with its own cipher suite and data-flow direction. Our approach also allows for several partially trusted application proxies. The main advantages of MC-SSL over SSL are (a) support for end-to-end security in the presence of partially trusted proxies, and (b) selective data protection for achieving computational efficiency important to resource-constrained clients and heavily loaded servers.