Analysis And Research Of SSLv3.0 Protocol And ECC

In order to solve the open as a result of Internet transmission of information caused by security problems,Netscape Corporation proposed Secure Sockets Layer protocol. Its main goal is to provide information confidentiality,information integrity and mutual authentication and other services between the client and server,with which prevent communication of information to be tapped,destructed and fabricated.The current version is SSLv3.0,based on this and has formed the TLS general standard,applies to almost all of the communications software.The basic concept of the SSL protocol,Elliptic Curve,X.509 and security protocol analysis were introduced at the beginning of the paper,and then from the start with mechanisms of SSLv3.0 protocol,combined with the formal method,the safety of their protocol made analysis,and then summarizes the literature on the SSL protocol analysis of the conclusions and put forward SSLv3.0 security attack that may exist.This thesis under the protocol does not change the situation,for the transmission of information in SSLv3.0 not to be able to prevent the validated users the disavowal the problem,proposed that prevent disavowal with digital signature's plan,and the efficiency of digital signature in the protocol to be improved.Communication framework's improvement of the SSLv3.0 protocol are discussed in this paper and has studied one kind based on Elliptic Curve Cryptography(ECC) and X.509 digital signature scheme as the SSL authentication method improvements opinion.Its goal enhanced the SSL protocol in the information transmission capacity aspect protection ability and the efficiency.During SSLv3.0 protocol is improved,elliptic curve encryption and signature mechanisms which are part of to public-key mechanisms are used,and provide the same functionality as the RSA mechanisms.Security of Elliptic Curve Cryptography is based on hardness of a different problem,namely the elliptic curve discrete logarithm problem (ECDLP),and so far has not found the subexponential-time algorithm.Therefore,in the same degree of safety expectations,it is more advantages than the RSA in key short, fast encryption and decryption,saving bandwidth and storage space saving,etc.In this paper,the mechanisms of ECC encryption and signature have been studied. Encryption algorithm methods of plain text embedding,the encipherment scheme and ECDSA signature scheme is discussed and improved.Using the LibTomMath open source libraries and existing ellipse double of points,sum of point,the remaining square algorithm,ECC algorithm and ECDSA algorithms have realized and carried on to its improvement algorithm also does has realized.