Second USENIX Workshop on Electronic Commerce
Analysis of the SSL 3.0 Protocol
David Wagner, University of California, Berkeley
Bruce Schneier, Counterpane Systems
Abstract
The SSL protocol is intended to provide a practical,
application-layer, widely applicable connection-oriented mechanism for
Internet client/server communications security. This note gives a
detailed technical analysis of the cryptographic strength of the SSL
3.0 Protocol. A number of minor flaws in the protocol and several new
active attacks on SSL are presented; however, these can be easily
corrected without overhauling the basic structure of the protocol. We
conclude that, while there are still a few technical wrinkles to iron
out, on the whole SSL 3.0 is a valuable contribution towards practical
communications security.
View the full text of this paper in PDF, and
POSTSCRIPT (267,316 Bytes) form.
To Become a USENIX Member, please see our
Membership Information.
|