Title
Extending TLS with KMIP protocol for cloud computing
Source of Publication
2016 8th IFIP International Conference on New Technologies, Mobility and Security, NTMS 2016
Abstract
© 2016 IEEE. Any information system using encryption tends to have its own key management infrastructure. In practice, we find a separate key management systems dedicated to application encryption, or database encryption, or file encryption etc. This emergent needs to several key management systems and multiple cryptographic algorithms are resolved by the new Key Management Interoperability Protocol (KMIP). This work specifies how the Key Management Interoperability Protocol (KMIP) can be included in Transport Layer Security (TLS) protocol in order to provide additional security features, flexibility, interoperability and authentication specially in distributed systems like Cloud Computing. Till now, authentication in TLS is limited to digital certificate and Kerberos. In this paper, we use the Key Management Interoperability Protocol to make an additional authentication option for TLS and we reduce handshake latency to 0-RTT for repeated handshakes and 1-RTT for full handshakes. We specify also the KMIP-TLS extension and its formal validation with AVISPA tool.
Document Type
Conference Proceeding
ISBN
['9781509029143']
Publication Date
12-20-2016
DOI
10.1109/NTMS.2016.7792452
Recommended Citation
Msahli, Mounira; Serhrouchni, Ahmed; and Badra, Mohamad, "Extending TLS with KMIP protocol for cloud computing" (2016). Scopus Indexed Articles. 1458.
https://zuscholars.zu.ac.ae/scopus-indexed-articles/1458