Next: , Previous: , Up: Top   [Contents][Index]



Bodo Moeller, "Security of CBC Ciphersuites in SSL/TLS: Problems and Countermeasures", 2002, available from


Mike Ashley, "The GNU Privacy Handbook", 2002, available from


Peter Gutmann, "Everything you never wanted to know about PKI but were forced to find out", Available from


John Kelsey and Bruce Schneier, "Cryptanalytic Attacks on Pseudorandom Number Generators", Available from


Chris Evans and Chris Palmer, "Public Key Pinning Extension for HTTP", Available from


NIST Special Publication 800-57, "Recommendation for Key Management - Part 1: General (Revised)", March 2007, available from


Y. Cheng and J. Chu and S. Radhakrishnan and A. Jain, "TCP Fast Open", December 2014, Available from


Peter Saint-Andre and Jeff Hodges, "Representation and Verification of Domain-Based Application Service Identity within Internet Public Key Infrastructure Using X.509 (PKIX) Certificates in the Context of Transport Layer Security (TLS)", March 2011, Available from


Adam Langley, "A Transport Layer Security (TLS) ClientHello Padding Extension", October 2015, Available from


Peter Saint-Andre and Alexey Melnikov, "Preparation, Enforcement, and Comparison of Internationalized Strings Representing Usernames and Passwords", August 2015, Available from


Tim Dierks and Christopher Allen, "The TLS Protocol Version 1.0", January 1999, Available from


M. Tuexen and R. Seggelmann and E. Rescorla, "Datagram Transport Layer Security (DTLS) for Stream Control Transmission Protocol (SCTP)", January 2011, Available from


Ted Krovetz, "UMAC: Message Authentication Code using Universal Hashing", March 2006, Available from


S. Santesson, "TLS Handshake Message for Supplemental Data", September 2006, Available from


P. Hallam-Baker, "X.509v3 Transport Layer Security (TLS) Feature Extension", October 2015, Available from


D. Gillmor, "Negotiated Finite Field Diffie-Hellman Ephemeral Parameters for Transport Layer Security (TLS)", August 2016, Available from


Kurt D. Zeilenga, "Lightweight Directory Access Protocol (LDAP): String Representation of Distinguished Names", June 2006, Available from


Tim Dierks and Eric Rescorla, "The TLS Protocol Version 1.1", Match 2006, Available from


Eric Rescorla and Nagendra Modadugu, "Datagram Transport Layer Security", April 2006, Available from


Tim Dierks and Eric Rescorla, "The TLS Protocol Version 1.2", August 2008, Available from


Jon Callas, Lutz Donnerhacke, Hal Finney and Rodney Thayer, "OpenPGP Message Format", November 1998, Available from


Jon Callas, Lutz Donnerhacke, Hal Finney, David Shaw and Rodney Thayer, "OpenPGP Message Format", November 2007, Available from


J. Schaad, "Internet X.509 Public Key Infrastructure Certificate Request Message Format (CRMF)", September 2005, Available from


Rohit Khare and Scott Lawrence, "Upgrading to TLS Within HTTP/1.1", May 2000, Available from


Eric Rescorla, "HTTP Over TLS", May 2000, Available from http://www.ietf/rfc/rfc2818.txt.


Tom Wu, "The SRP Authentication and Key Exchange System", September 2000, Available from


S. Friedl, A. Popov, A. Langley, E. Stephan, "Transport Layer Security (TLS) Application-Layer Protocol Negotiation Extension", July 2014, Available from


Magnus Nystrom and Burt Kaliski, "PKCS 10 v1.7: Certification Request Syntax Specification", November 2000, Available from


D. Cooper, S. Santesson, S. Farrel, S. Boeyen, R. Housley, W. Polk, "Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile", May 2008, available from


Scott Hollenbeck, "Transport Layer Security Protocol Compression Methods", May 2004, available from


Steven Tuecke, Von Welch, Doug Engert, Laura Pearlman, and Mary Thompson, "Internet X.509 Public Key Infrastructure (PKI) Proxy Certificate Profile", June 2004, available from


R. Seggelmann, M. Tuexen, and M. Williams, "Transport Layer Security (TLS) and Datagram Transport Layer Security (DTLS) Heartbeat Extension", February 2012, available from


E. Rescorla, M. Ray, S. Dispensa, and N. Oskov, "Transport Layer Security (TLS) Renegotiation Indication Extension", February 2010, available from


D. Cooper, S. Santesson, S. Farrell, S. Boeyen, R. Housley, and W. Polk, "Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile", May 2008, available from


Joseph Salowey, Hao Zhou, Pasi Eronen, Hannes Tschofenig, "Transport Layer Security (TLS) Session Resumption without Server-Side State", January 2008, available from


RSA Laboratories, "PKCS 12 v1.0: Personal Information Exchange Syntax", June 1999, Available from


RSA Laboratories, "PKCS #11 Base Functionality v2.30: Cryptoki – Draft 4", July 2009, Available from


Eric Rescorla, "SSL and TLS: Designing and Building Secure Systems", 2001


Arjen Lenstra and Eric Verheul, "Selecting Cryptographic Key Sizes", 2003, available from


Alan Freier, Philip Karlton and Paul Kocher, "The Secure Sockets Layer (SSL) Protocol Version 3.0", August 2011, Available from


Richard Stevens, "UNIX Network Programming, Volume 1", Prentice Hall PTR, January 1998


Simon Blake-Wilson, Magnus Nystrom, David Hopwood, Jan Mikkelsen and Tim Wright, "Transport Layer Security (TLS) Extensions", June 2003, Available from


Nikos Mavrogiannopoulos, "Using OpenPGP keys for TLS authentication", January 2011. Available from


David Taylor, Trevor Perrin, Tom Wu and Nikos Mavrogiannopoulos, "Using SRP for TLS Authentication", November 2007. Available from


Pasi Eronen and Hannes Tschofenig, "Pre-shared key Ciphersuites for TLS", December 2005, Available from


Tom Wu, "The Stanford SRP Authentication Project", Available at


Arjen Lenstra and Xiaoyun Wang and Benne de Weger, "Colliding X.509 Certificates", Cryptology ePrint Archive, Report 2005/067, Available at


European Network of Excellence in Cryptology II, "ECRYPT II Yearly Report on Algorithms and Keysizes (2009-2010)", Available at


N. Williams, "On the Use of Channel Bindings to Secure Channels", November 2007, available from


J. Altman, N. Williams, L. Zhu, "Channel Bindings for TLS", July 2010, available from


J. Pechanec, D. Moffat, "The PKCS#11 URI Scheme", April 2015, available from


C. Latze, N. Mavrogiannopoulos, "The TPMKEY URI Scheme", January 2013, Work in progress, available from


R. J. Anderson, "Security Engineering: A Guide to Building Dependable Distributed Systems", John Wiley \& Sons, Inc., 2001.


M. Mathis, J. Heffner, "Packetization Layer Path MTU Discovery", March 2007, available from


M. Myers et al, "X.509 Internet Public Key Infrastructure Online Certificate Status Protocol - OCSP", June 1999, Available from


R. L. Rivest, "Can We Eliminate Certificate Revocation Lists?", Proceedings of Financial Cryptography ’98; Springer Lecture Notes in Computer Science No. 1465 (Rafael Hirschfeld, ed.), February 1998), pages 178–183, available from

Next: , Previous: , Up: Top   [Contents][Index]