| Along with the increasing requirement of security on Internet, the SSL is applied more widely. But the SSL has some security questions. Therefore, for increasing the security of SSL, the improvement strategy is put forward. The Kerberos is used to improve on the security of SSL handshake authentication protocol, which is applied in the virtual private network. It has good theoretical and actual meaning.By analyzing the SSL Handshake Protocol thoroughly, some security questions are discovered, such as the key commutation method, the key commutation calculate way, conversation repeat, etc. Through the further research on the Kerberos authentication protocol, the Kerberos authentication protocol can improve the security of the SSL Handshake Protocol. The corresponding improvement measure—the two-factor Kerberos method which combines customer password with USB encrypt card. Besides the improved Kerberos protocol is applied in the SSL protocol, which can resolve the agent attack, overturn of the password clan, distorting in session parameters, etc.Through introducing above proposed approach, the two-factor Kerberos authentication protocol is adopted to amend the design of SSL VPN, and then a reasonable and effective authentication module is achieved, which can be applied to SSL VPN successfully. In the application, the SSL protocol which uses the improved Kerberos authentication enhances the security of applications successfully and effectively. |
PDF Full Text Request