Scribd Logo
Upload

Welcome to Scribd!

  • SSL

    Uploaded by

    No Comman
    55 views6 pages
    Answer and question

    Original Title

    Ssl

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    Answer and question

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    55 views6 pages

    SSL

    Uploaded by

    No Comman
    Answer and question

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 6

    CSE

    434 Name: Bing Hao Computer Networks (2014 Spring)

    2014

    Home Page: http://uniteng.com

    Lab7
    1.For each ofthe first 8Ethernetframes,specify thesourceof theframe (clientor server),
    determinethenumberofSSLrecordsthatareincludedintheframe,andlisttheSSLrecord
    typesthatareincludedintheframe.Drawatimingdiagrambetweenclientandserver,with
    onearrowforeachSSLrecord.
    Answer

    Figure1
    No.
    1
    2
    3
    4
    5
    6
    7
    8

    Frame
    106
    108
    111
    112
    113
    114
    122
    127

    Source
    128.238.38.162
    216.75.194.220
    216.75.194.220
    128.238.38.162
    216.75.194.220
    128.238.38.162
    216.75.194.220
    216.75.194.220

    Destination
    216.75.194.220
    128.238.38.162
    128.238.38.162
    216.75.194.220
    128.238.38.162
    216.75.194.220
    128.238.38.162
    128.238.38.162

    SSLCount
    1
    1
    2
    3
    2
    1
    1
    1

    SSLType
    ClientHello
    ServerHello
    ServerHelloDone
    ClientKeyExchange
    ChangeCipherSpec
    ApplicationData
    ApplicationData
    ApplicationData

    CSE 434 Name: Bing Hao Computer Networks (2014 Spring)

    2014

    Home Page: http://uniteng.com

    2.EachoftheSSLrecordsbeginswiththesamethreefields(withpossiblydifferentvalues).
    Oneofthesefieldsiscontenttypeandhaslengthofonebyte.Listallthreefieldsandtheir
    lengths.
    Answer
    ContentType=1byte
    Version=2bytes
    Length=2bytes

    CSE 434 Name: Bing Hao Computer Networks (2014 Spring)

    2014

    Home Page: http://uniteng.com

    3.ExpandtheClientHellorecord.(IfyourtracecontainsmultipleClientHellorecords,expand
    theframethatcontainsthefirstone.)Whatisthevalueofthecontenttype?
    Answer

    Thecontenttypeis22

    4.DoestheClientHellorecordcontainanonce(alsoknownasachallenge)?Ifso,whatisthe
    valueofthechallengeinhexadecimalnotation?
    Answer
    66df784c048cd60435dc448989469909

    CSE 434 Name: Bing Hao Computer Networks (2014 Spring)

    2014

    Home Page: http://uniteng.com


    5.DoestheClientHellorecordadvertisethecybersuitesitsupports?Ifso,inthefirstlisted
    suite,whatarethepublickeyalgorithm,thesymmetrickeyalgorithm,andthehashalgorithm?
    Answer
    Publickeyalgorithm:RSA
    Symmetrickeyalgorithm:RC4
    Hashalgorithm:MD5
    6.LocatetheServerHelloSSLrecord.Doesthisrecordspecifyachosenciphersuite?Whatare
    thealgorithmsinthechosenciphersuite?
    Answer

    Sameasabovequestion,
    Publickeyalgorithm:RSA
    Symmetrickeyalgorithm:RC4
    Hashalgorithm:MD5

    7.Doesthisrecordincludeanonce?Ifso,howlongisit?Whatisthepurposeoftheclientand
    servernoncesinSSL?
    Answer
    Yes,itis32bitslong(28bitsdata+4bitstime),itisusedforattackpreventing.

    CSE 434 Name: Bing Hao Computer Networks (2014 Spring)

    2014

    Home Page: http://uniteng.com


    8.DoesthisrecordincludeasessionID?WhatisthepurposeofthesessionID?
    Answer
    Yes, the session ID in the record is an identifier for SSL session. This ID could let the client to
    resumethesessionlaterbyusingthesessionID.

    9. Does this record contain a certificate, or is the certificate included in a separate record.
    DoesthecertificatefitintoasingleEthernetframe?
    Answer
    No, there is no certificate in this record. The certificate is in the separate record. Yes, the
    certificatefitintoasingleEthernetframe.

    10.Locatetheclientkeyexchangerecord.Doesthisrecordcontainapremastersecret?What
    isthissecretusedfor?Isthesecretencrypted?Ifso,how?Howlongistheencryptedsecret?
    Answer

    Yes,thisrecordcontainsapremastersecret.Themastersecretiscreatedusingthispremaster
    secret.Themasterkeyisusedtocreatesessionkey.Thesecretisencryptedbypublickey,the
    encryptedsecretis120bytes.

    11.WhatisthepurposeoftheChangeCipherSpecrecord?Howmanybytesistherecordin
    yourtrace?
    Answer

    CSE 434 Name: Bing Hao Computer Networks (2014 Spring)

    2014

    Home Page: http://uniteng.com


    TheChangeCipherSpecrecordisusedtoindicatethecontentofthenextSSLrecordswillbe
    encrypted.Itis6bytes.

    12.Intheencryptedhandshakerecord,whatisbeingencrypted?How?
    Answer
    AllhandshakemessagesandMACaddressesareconcatenatedandencrypted.Theyaresentto
    theserver.

    13.Doestheserveralsosendachangecipherrecordandanencryptedhandshakerecordto
    theclient?Howarethoserecordsdifferentfromthosesentbytheclient?
    Answer
    Yes, the servers encrypted handshake contains all the handshake messages sent from the
    server.Othercontainsmessagessentfromclient.

    14.Howistheapplicationdatabeingencrypted?Dotherecordscontainingapplicationdata
    includeaMAC?DoesWiresharkdistinguishbetweentheencryptedapplicationdataandthe
    MAC?
    Answer
    The symmetric encryption algorithm is used to encrypt the application data. Yes, the records
    containing application data include a MAC. No, Wireshark did not distinguish between the
    encryptedapplicationdataandtheMAC.

    15.Commentonandexplainanythingelsethatyoufoundinterestinginthetrace.
    Answer
    Nomorecomment,everythingasexpected.

    You might also like