A way to enhance random numbers in the SSL/TLS protocol

A random number and randomness technology, which is applied in the field of enhancing the randomness of random numbers in the SSL/TLS protocol, can solve the problems of insufficient randomness of random numbers, easy leakage of the master key, security risks of the SSL/TLS protocol, etc., to achieve improved randomness performance, low implementation cost, and improved security

Active Publication Date: 2022-08-05
WUHAN ARGUSEC TECH
View PDF14 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0005] In view of the above defects or improvement needs of the prior art, the present invention provides a method for enhancing the randomness of random numbers in the SSL / TLS protocol. Insufficient randomness of the number leads to easy disclosure of the master key, which in turn leads to technical problems of major security risks in the SSL / TLS protocol

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A way to enhance random numbers in the SSL/TLS protocol
  • A way to enhance random numbers in the SSL/TLS protocol
  • A way to enhance random numbers in the SSL/TLS protocol

Examples

Experimental program
Comparison scheme
Effect test

Embodiment approach

[0074] like figure 1 As shown, according to the first embodiment of the present invention, a method for enhancing the randomness of a random number of an SSL / TLS client is provided, including the following steps:

[0075] (1) The SSL / TLS client uses a pseudo-random number generator to generate a random number CR, and encapsulates the random number CR in a first handshake message and sends it to the SSL / TLS server.

[0076] Specifically, the first handshake message in this step is a Client Hello message, and the random number CR is embedded in a random number (Random) field in the Client Hello message for transmission.

[0077] (2) After receiving the second handshake message sent by the SSL / TLS server in response to the first handshake message from the SSL / TLS server, the SSL / TLS client parses the second handshake message to obtain the server random number SR;

[0078] Specifically, the second handshake message in this step is a Server Hello message.

[0079] In this step, t...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a method for enhancing the randomness of a random number of an SSL / TLS client, comprising the following steps: the SSL / TLS client uses a pseudo-random number generator to generate a random number CR, and encapsulates the random number CR in a first handshake message After receiving the second handshake message sent by the SSL / TLS server in response to the first handshake message, the SSL / TLS client parses the second handshake message to obtain The server random number SR, the SSL / TLS client uses the obtained server random number SR to update the random number CR to the client random number CR'. The invention solves the technical problem that the master key is easily leaked due to insufficient randomness of the client random number generated by the SSL / TLS client in the existing method, and further leads to the significant security risk of the SSL / TLS protocol.

Description

technical field [0001] The invention belongs to the field of information security, and more particularly, relates to a method for enhancing the randomness of random numbers in the SSL / TLS protocol. Background technique [0002] Secure Sockets Layer (SSL) and its successor, Transport Layer Security (TLS), are a security protocol that provides security and data integrity for network communications. [0003] The SSL / TLS protocol uses an asymmetric cryptographic algorithm for identity authentication and key exchange. After the identity authentication is passed, the SSL / TLS server and the SSL / TLS client calculate and generate the master secret according to the pre-master key generated by the SSL / TLS client. key, and then derive the working key from the master key, and finally use the working key for encryption, decryption and integrity verification. Among them, the pre-master key is generated by the SSL / TLS client and contains a random number of 46 bytes, and the master key is g...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Patents(China)
IPC IPC(8): H04L9/08H04L9/40G06F7/58
CPCH04L9/0869H04L9/0838H04L63/061G06F7/582H04L63/166H04L63/168
Inventor 胡进
Owner WUHAN ARGUSEC TECH
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap