Presentation 2010-11-18
Sample Investigation and the Consideration to Compromising Cryptosystems in SSL
Seiji TAKANO, Ryota SATO, Kenichiro MUTO, Sakae CHIKARA, Masayuki KANDA, Yoshiaki SEKI,
PDF Download Page PDF download Page Link
Abstract(in Japanese) (See Japanese page)
Abstract(in English) In the information society, the encryption technology is indispensable. The improvement of computer performance causes the decrease of the cipher strength, because the safety of the cipher is based on the difficulty of the decipherment calculation. Therefore, shifting to next generation's code is important. Japanese government also will aim at the shift of the cipher in GPKI by 2013, like the cipher shift problem 2010 of the United States. In this paper, we focused SSL that a lot of people are using, and have investigated web servers of finance and government organizations, for which high security are expected. Comparing with the previous investigation, the cipher used for the certificate has been changed. However, it turned out not to have changed the cipher selected by the negotiation on the server side and the browser side. Moreover, it was able to be confirmed that the server side might selected the code disregarding the priority level of the cipher list that the browser side presented. This comparative verification is considered from both the server side and the browser side aspects. And, the problem that both the server side and the browser side measures are necessary for the generation change of the cipher is instituted.
Keyword(in Japanese) (See Japanese page)
Keyword(in English) Compromising Cryptosystems / SSL / Cryptographic algorithm / Browser / Server
Paper # ISEC2010-59,LOIS2010-38
Date of Issue

Conference Information
Committee ISEC
Conference Date 2010/11/10(1days)
Place (in Japanese) (See Japanese page)
Place (in English)
Topics (in Japanese) (See Japanese page)
Topics (in English)
Chair
Vice Chair
Secretary
Assistant

Paper Information
Registration To Information Security (ISEC)
Language JPN
Title (in Japanese) (See Japanese page)
Sub Title (in Japanese) (See Japanese page)
Title (in English) Sample Investigation and the Consideration to Compromising Cryptosystems in SSL
Sub Title (in English)
Keyword(1) Compromising Cryptosystems
Keyword(2) SSL
Keyword(3) Cryptographic algorithm
Keyword(4) Browser
Keyword(5) Server
1st Author's Name Seiji TAKANO
1st Author's Affiliation University of Electro-Communications()
2nd Author's Name Ryota SATO
2nd Author's Affiliation Nippon Telegraph and Telephone Corporation
3rd Author's Name Kenichiro MUTO
3rd Author's Affiliation Nippon Telegraph and Telephone Corporation
4th Author's Name Sakae CHIKARA
4th Author's Affiliation Nippon Telegraph and Telephone Corporation
5th Author's Name Masayuki KANDA
5th Author's Affiliation Nippon Telegraph and Telephone Corporation
6th Author's Name Yoshiaki SEKI
6th Author's Affiliation Nippon Telegraph and Telephone Corporation
Date 2010-11-18
Paper # ISEC2010-59,LOIS2010-38
Volume (vol) vol.110
Number (no) 281
Page pp.pp.-
#Pages 8
Date of Issue