This Article 
   
 Share 
   
 Bibliographic References 
   
 Add to: 
 
Digg
Furl
Spurl
Blink
Simpy
Google
Del.icio.us
Y!MyWeb
 
 Search 
   
Transparent Authentication and Confidentiality for Stream Sockets
June 1996 (vol. 16 no. 3)
pp. 34-41
PES, Privacy Enhanced Sockets, is a user-level subsystem providing network privacy for stream sockets. This document presents its design and implementation in UNIX and Microsoft Windows systems. PES provides secure channels on top of standard stream sockets, allowing existing client-server applications to transparently use secure channels instead of standard remote connections. PES is composed of two entities which can be almost transparently added to existing systems: a dynamic library and a trusted proxy server. All cryptographic details concerning the establishment of secure channels are solely handled by instances of these two entities using the Diffie-Hellman public-key algorithm. Man-in-the-Middle attacks are prevented using asymmetric cryptography for host authentication. Host's public keys are acquired and stored on a per-user basis such as for PGP, which does not require central management but only a reduced user intervention. PES has been tested with several applications -- telnet, ftp, several X11 and WWW applications -- in SunOS, Solaris and Microsoft Windows 3.1. Performance tests run in Sun SPARCstations show a low latency time and an acceptable throughput degradation.
Index Terms:
Public-key security, network privacy, client-servers, cryptography, Diffie-Hellman algorithm
Citation:
André Zúquete, Paulo Guedes, "Transparent Authentication and Confidentiality for Stream Sockets," IEEE Micro, vol. 16, no. 3, pp. 34-41, June 1996, doi:10.1109/40.502404
Usage of this product signifies your acceptance of the Terms of Use.