Previous Page
Next Page

Bibliography

Aboba, B., Blunk, L. J., Vollbrecht, J. R., Carlson, J., and Levkowetz, H. 2004. "Extensible Authentication Protocol (EAP)," RFC 3748 (June).

Aboba, B. and Dixon, W. 2004. "IPsec-NAT Compatibility Requirements," RFC 3715 (Mar.).

Agarwal, P. and Akyol, B. 2003. "Time to Live (TTL) Processing in Multi-Protocol Label Switching (MPLS)," RFC 3443 (Jan.).

Alvestrand, H. T. 2001. "Tags for the Identification of Languages," RFC 3066 (Jan.).

Anderson, R. 1993. "The Classification of Hash Functions," Proceedings of the Fourth IMA Conference on Cryptography and Coding, pp. 8393. http://www.ftp.cl.cam.ac.uk/ftp/users/rja14/hash.ps.Z

Andersson, L., Doolan, P., Feldman, N., Fredette, A., and Thomas, B. 2001. "LDP Specification," RFC 3036 (Jan.).

Barrett, D. J. and Silverman, R. E. 2002. SSH, The Secure Shell: The Definitive Guide. O'Reilly & Associates, Sebastopol, Calf.

Baugher, M., Weis, B., Hardjono, T., and Harney, H. 2003. "The Group Domain of Interpretation," RFC 3547 (July).

Bellare, M., Canetti, R., and Krawczyk, H. 1996. "Keyed Hash Functions and Message Authentication," Advances in CryptologyCRYPTO '96, Lecture Notes in Computer Science, no. 1109, pp. 115, Springer-Verlag. http://www.research.ibm.com/security/keyed-md5.html

Bellare, M., Kohno, T., and Namprempre, C. 2002. "Authenticated Encryption in SSH: Provably Fixing the SSH Binary Packet Protocol," Proceedings of the 9th ACM Conference on Computer and Communications Security, pp. 111 (Nov.). http://www.cs.ucsd.edu/users/tkohno/papers/SSH/

Bellovin, S. M. 1996. "Problem Areas for the IP Security Protocols," Proceedings of the 6th USENIX Security Symposium, pp. 116 (July). http://www.research.att.com/~smb/papers/badesp.ps

Bellovin, S. M. 1997. "Probable Plaintext Cryptanalysis of the IP Security Protocols," Proceedings of the Symposium on Network and Distributed System Security, pp. 155160 (Feb.). http://www.research.att.com/~smb/papers/probtxt.ps

Bleichenbacher, D. 1998. "Chosen Ciphertext Attacks Against Protocols Based on the RSA Encryption Standard PKCS#1," Advances in Cryptology-CRYPTO '98, Lecture Notes in Computer Science, no. 1462, pp. 112, Springer-Verlag. http://www.bell-labs.com/user/bleichen/papers/pkcs.ps.gz

Bleichenbacher, D., Kalisky, B., and Staddon, J. 1998. "Recent Results on PKCS #1: RSA Encryption Standard," Bulletin 7, RSA Laboratories (June). ftp://ftp.rsasecurity.com/pub/pdfs/bulletn7.pdf

Braden, R. T., Borman, D., and Partridge, C. 1988. "Computing the Internet Checksum," RFC 1071 (Sept.).

Brumley, D. and Boneh, D. 2003. "Remote Timing Attacks Are Practical," Proceedings of the 12th USENIX Security Symposium, pp. 114 (Aug.). http://crypto.stanford.edu/~dabo/abstracts/ssl-timing.html

Canvel, B., Hiltgen, A., Vaudenay, S., and Vuagnoux, M. 2003. "Password Interception in a SSL/TLS Channel," Advances in Cryptology-CRYPTO '03, Lecture Notes in Computer Science, no. 2729, pp. 583599, Springer-Verlag. http://lasecwww.epfl.ch/pub/lasec/doc/CHVV03.ps

Carlson, J. 2000. PPP Design, Implementation, and Debugging, Second Edition. Addison-Wesley, Boston, Mass.

Comer, D. E. 2000. Internetworking with TCP/IP Volume I: Principles, Protocols, and Architecture, Fourth Edition. Prentice Hall, Englewood Cliffs, N.J.

Dai, W. 2002. "An Attack Against SSH2 Protocol," Message-ID <20020206134116.A24813@eskimo.com>, IETF Secsh Working Group Email List (Feb.). ftp://ftp.ietf.org/ietf-mail-archive/secsh/2002-02.mail

Davis, C. R. 2001. IPSec: Securing VPNs. McGraw-Hill, Berkeley, Calif.

Dawson, E. and Nielsen, L. 1996. "Automated Cryptanalysis of XOR Plaintext Strings," Cryptologia, vol. 20, no. 2, pp. 165181 (Apr.).

Deering, S. E. and Hinden, R. M. 1998. "Internet Protocol, Version 6 (IPv6) Specification," RFC 2460 (Dec.).

Dierks, T. and Allen, C. 1999. "The TLS Protocol: Version 1.0," RFC 2246 (Jan.).

Diffie, W. and Hellman, M. 1976. "New Directions in Cryptography," IEEE Transactions on Information Theory, vol. IT-22, no. 6, pp. 644654 (Nov.).

Dijkstra, E. W. 1959. "A Note on Two Problems in Connection with Graphs," Numerische Mathematic, vol. 1, pp. 269271.

Dommety, G. 2000. "Key and Sequence Number Extensions to GRE," RFC 2890 (Sept.).

Doraswamy, N. and Harkins, D. 1999. IPSec, The New Security Standard of the Internet, Intranets, and Virtual Private Networks. Prentice Hall PTR, Upper Saddle River, N.J.

Dreyfus, S. 1997. Underground: Tales of Hacking, Madness, and Obsession on the Electronic Frontier. Mandarin, Kew, Australia. http://onlinebooks.library.upenn.edu/webbin/gutbook/lookup?num=4686

Dworkin, M. 2001. "Recommendation for Block Cipher Modes of OperationMethods and Techniques," NIST Special Publication 800-38a, National Institute of Standards and Technology (Dec.). http://csrc.nist.gov/publications/nistpubs/800-38a/sp800-38a.pdf

Eastlake, D. E., 3rd, Crocker, S. D., and Schiller, J. I. 1994. "Randomness Recommendations for Security," RFC 1750 (Dec.).

Egevang, K. B. and Francis, P. 1994. "The IP Network Address Translator (NAT)," RFC 1631 (May).

Electronic Frontier Foundation 1998. Cracking DES. O'Reilly & Associates, Sebastopol, Calif.

ElGamal, T. 1985. "A Public Key Cryptosystem and a Signature Scheme Based on Discrete Logarithms," IEEE Transactions on Information Theory, vol. IT-31, no. 4, pp. 469472 (July).

Etienne, J. 2001. "Security Analysis of VTun," white paper (Dec.). http://www.netsys.com/library/papers/vtun_secu.pdf

Farinacci, D., Li, T., Hanks, S., Meyer, D., and Traina, P. 2000. "Generic Routing Encapsulation (GRE)," RFC 2784 (Mar.).

Faucheur, F. L., Wu, L., Davie, B., Davari, S., Vaananen, P., Krishnan, R., Cheval, P., and Heinanen, J. 2002. "Multi-Protocol Label Switching (MPLS) Support of Differentiated Services," RFC 3270 (May).

Ferguson, N. and Schneier, B. 1999. "A Cryptographic Evaluation of IPsec," white paper, Counterpane Internet Security. http://www.counterpane.com/ipsec.pdf

Ferguson, N. and Schneier, B. 2003. Practical Cryptography. John Wiley & Sons, N.Y.

Fluhrer, S., Mantin, I., and Shamir, A. 2001. "Weaknesses in the Key Scheduling Algorithm of RC4," Lecture Notes in Computer Science, vol. 2259, pp. 124, Springer-Verlag. http://www.crypto.com/papers/others/rc4_ksaproc.ps

Ford, L. R. and Fulkerson, D. R. 1962. Flows in Networks. Princeton University Press, Princeton, N.J.

Freier, A. O., Karlton, P., and Kocker, P. C. 1996. "The SSL Protocol: Version 3.0," RFC draftfreier-ssl-version3-02 (Nov.). http://wp.netscape.com/eng/ssl3/draft302.txt

Fuller, V., Li, T., Yu, J., and Varadhan, K. 1993. "Classless Inter-Domain Routing (CIDR): An Address Assignment," RFC 1519 (Sept.).

Futoransky, A., Kargieman, E., and Pacetti, A. M. 1998. "An Attack on CRC-32 Integrity Checks of Encrypted Channels Using CBC and CFB Modes," white paper, Core Security Technologies (Oct.). http://tinyurl.com/27ddk

Garman, J. 2003. Kerberos: The Definitive Guide. O'Reilly & Associates, Sebastopol, Calf.

Goldberg, I. and Wagner, D. 1996. "Randomness and the Netscape Browser," Dr. Dobb's Journal (Jan.). http://www.ddj.com/documents/s=965/ddj9601h/9601h.htm

Gutmann, P. 2000. "X.509 Style Guide," white paper (Oct.). http://www.cs.auckland.ac.nz/~pgut001/pubs/x509guide.txt

Gutmann, P. 2003a. "Everything You Never Wanted to Know About PKI but Have Been Forced to Find Out," white paper. http://www.cs.auckland.ac.nz/~pgut001/pubs/pkitutorial.pdf

Gutmann, P. 2003b. "Linux's Answer to MS-PPTP," white paper (Sept.). http://www.cs.auckland.ac.nz/~pgut001/pubs/linux_vpn.txt

Gutmann, P. 2005. Private communication.

Haller, N. M. 1994. "The S/KEY One-time Password System," Proceedings of the ISOC Symposium on Network and Distributed System Security (Feb.), San Diego, Calif. http://tinyurl.com/38vur

Haller, N. M. 1995. "The S/KEY One-Time Password System," RFC 1760 (Feb.).

Hamzeh, K., Pall, G. S., Verthein, W., Taarud, J., Little, W. A., and Zorn, G. 1999. "Point-to-Point Tunneling Protocol (PPTP)," RFC 2637 (July).

Hanks, S., Li, T., Farinacci, D., and Traina, P. 1994. "Generic Routing Encapsulation (GRE)," RFC 1701 (Oct.).

Harkins, D. and Carrel, D. 1998. "The Internet Key Exchange (IKE)," RFC 2409 (Nov.).

Hedrick, C. 1988. "Routing Information Protocol," RFC 1058 (June).

Herzog, J. 1999. "A Suggested Improvement to SSHv2," WN99B000041, The MITRE Corporation. http://www.mitre.org/work/tech_papers/tech_papers_00/herzog_improvement/herzog_improvement.pdf

Hickman, K. E.B. 1995. "The SSL Protocol," Unpublished RFC draft (Feb.). http://wp.netscape.com/eng/security/SSL_2.html

Hinden, R. and Deering, S. 2003. "Internet Protocol Version 6 (IPv6) Addressing Architecture," RFC 3513 (Apr.).

Hinden, R. M. 1993. "Applicability Statement for the Implementation of Classless Inter-Domain Routing (CIDR)," RFC 1517 (Sept.).

Hollenbeck, S. 2004. "Transport Layer Security Protocol Compression Methods," RFC 3749 (May).

Housley, R., Polk, T., Ford, W., and Solo, D. 2002. "Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile," RFC 3280 (Apr.).

Huitema, C. 2000. Routing in the Internet, Second Edition. Prentice Hall, Upper Saddle River, N.J.

Huttunen, A., Swander, B., Volpe, V., DiBurro, L., and Stenberg, M. 2005. "UDP Encapsulation of IPsec Packets," RFC 3948 (Jan.).

International Standards Organization 1984. "OSIBasic Reference Model," ISO 7498, International Standards Organization, Geneva.

International Telecommunication Union 2000. Recommendation X.509-The Directory: Public-key and Attribute Certificate Frameworks. International Telecommunication Union, Geneva http://www.itu.int/rec/recommendation.asp?type=items&lang=e&parent=TREC-X.509-200003-I

Ioannidis, J. and Blaze, M. 1993a. "Architecture and Implementation of Network-Layer Security under Unix," Proceedings of the USENIX Security Workshop (Oct.). http://www.crypto.com/papers/swipeusenix.ps

Ioannidis, J. and Blaze, M. 1993b. "The swIPe IP Security Protocol," Internet Draft (Dec.). http://www.crypto.com/papers/swipe.id

ISO 1992. "Network Layer Security Protocol," ISO/IEC DIS-11577, International Standards Organization (Nov.).

Jacobson, V. 1990. "Compressing TCP/IP Headers for Low-Speed Serial Links," RFC 1144 (Feb.).

Johnson, D. B., Perkins, C. E., and Arkko, J. 2004. "Mobility Support for IPv6," RFC 3775 (June).

Kaliski, B. and Robshaw, M. 1995. "The Secure Use of RSA," CryptoBytes, vol. 1, no. 3, pp. 713 (Autumn), RSA Laboratories. ftp://ftp.rsasecurity.com/pub/cryptobytes/crypto1n3.pdf

Kaufman, C., Perlman, R., and Speciner, M. 2002. Network Security: Private Communications in a Public World, Second Edition. Prentice Hall PTR, Upper Saddle River, N.J.

Kent, S. and Atkinson, R. 1998a. "IP Authentication Header," RFC 2402 (Nov.).

Kent, S. and Atkinson, R. 1998b. "IP Encapsulating Security Payload," RFC 2406 (Nov.).

Kent, S. and Atkinson, R. 1998c. "Security Architecture for the Internet Protocol," RFC 2401 (Nov.).

Kivinen, T., Swander, B., Huttunen, A., and Volpe, V. 2005. "Negotiation of NAT-Traversal in the IKE," RFC 3947 (Jan.).

Klima, V. 2005. "Finding MD5 Collisions on a Notebook Using Multi-Message Modifications," Preprint (Mar.). http://eprint.iacr.org/2005/102

Knuth, D. E. 1998. The Art of Computer Programming, Volume 2, Seminumerical Algorithms, Third Edition. Addison-Wesley, Reading, Mass.

Kolesnikov, O. and Hatch, B. 2002. Building Linux Virtual Private Networks (VPNs). New Riders Publishing, Indianapolis, Ind.

Krawczyk, H. 1996. "SKEME: A Versatile Secure Key Exchange Mechanism for Internet," in Proceedings of the 1996 Symposium on Network and Distributed System Security (SNDSS '96), pp. 114. IEEE Computer Society http://www.research.ibm.com/security/skeme.ps

Krawczyk, H. 2001. "The Order of Encryption and Authentication for Protecting Communications (Or: How Secure Is SSL?)," Proceedings on Crypto '01, Lecture Notes in Computer Science, no. 2139, pp. 310331 (Aug.), Springer-Verlag. http://eprint.iacr.org/2001/045.ps

Krawczyk, H., Bellare, M., and Canetti, R. 1997. "HMAC: Keyed-Hashing for Message Authentication," RFC 2104 (Feb.).

Lenstra, A., Wang, X., and Wegner, B. de 2005. "Colliding X.509 Certificates," Preprint (Mar.). http://eprint.iacr.org/2005/067

Lipmaa, H., Rogaway, P., and Wagner, D. 2000. "Comments to NIST Concerning AES Modes of Operations: CTR-Mode Encryption," First NIST Workshop on Modes of Operation for Symmetric Key Block Ciphers (Oct.). http://csrc.nist.gov/CryptoToolkit/modes/workshop1/papers/lipmaactr.pdf

Madson, C. and Doraswamy, N. 1998. "The ESP DES-CBC Cipher Algoritm with Explicit IV," RFC 2405 (Nov.).

Madson, C. and Glenn, R. 1998a. "The Use of HMAC-MD5-96 Within ESP and AH," RFC 2403 (Nov.).

Madson, C. and Glenn, R. 1998b. "The Use of HMAC-SHA-1-96 Within ESP and AH," RFC 2404 (Nov.).

Malkin, G. S. 1994. "RIP Version 2: Carrying Additional Information," RFC 1723 (Nov.).

Mamakos, L., Lidl, K., Evarts, J., Carrel, D., Simone, D., and Wheeler, R. 1999. "A Method for Transmitting PPP over Ethernet (PPPoE)," RFC 2516 (Feb.).

Maughan, D., Schertler, M., Schneider, M., and Turner, J. 1998. "Internet Security Association and Key Management Protocol (ISAKMP)," RFC 2408 (Nov.).

Menezes, A. J., Oorschot, P. C. van, and Vanstone, S. A. 1996. Handbook of Applied Cryptography. CRC Press, Boca Raton, Fla.

Merkle, R. 1978. "Secure Communications Over Insecure Channels," Communications of the ACM, vol. 21, no. 4, pp. 294299.

Messmer, E. 2000. "Win 2000 VPN Technology Causes Stir," Network World (Jan. 10). http://www.nwfusion.com/news/2000/0110vpn.html

Mister, S. and Tavares, S. E. 1999. "Cryptanalysis of RC4-like Ciphers," Lecture Notes in Computer Science, vol. 1556, pp. 131143, Springer-Verlag. http://www.cs.columbia.edu/~dcook/candexam/Y_23_rc4_cryptana.pdf

Mogul, J. and Deering, S. 1990. "Path MTU Discovery," RFC 1191 (Nov.).

Mogul, J. and Postel, J. B. 1985. "Internet Standard Subnetting Procedure," RFC 950 (Aug.).

Moy, J. T. 1998a. "OSPF Version 2," RFC 2328 (Apr.).

Moy, J. T. 1998b. OSPF: Anatomy of an Internet Routing Protocol. Addison-Wesley, Reading, Mass.

Narten, T., Nordmark, E., and Simpson, W. A. 1998. "Neighbor Discovery for IP Version 6 (IPv6)," RFC 2461 (Dec.).

NIST 1990. "Secure Data Network System (SDNS) Network, Transport, and Message Security Protocols," NISTIR 90-4250, National Institute of Standards and Technology (Feb.).

NIST 1999. "Data Encryption Standard (DES)," FIPS PUB 46-3, National Institutes of Standards and Technology (Oct.). http://csrc.nist.gov/publications/fips/fips46-3/fips46-3.pdf

NIST 2001. "Digital Signature Standard (DSS)," FIPS PUB 186-2 (+Change Notice), National Institute of Standards and Technology (Oct.). http://csrc.nist.gov/publications/fips/fips186-2/fips186-2-change1.pdf

NIST 2002a. "Advanced Encryption Standard (AES)," FIPS PUB 197, National Institute of Standards and Technology (Nov.). http://csrc.nist.gov/publications/fips/fips197/fips-197.pdf

NIST 2002b. "Secure Hash Standard," FIPS PUB 180-2, National Institute of Standards and Technology (Aug.). http://csrc.nist.gov/publications/fips/fips180-2/fips180-2.pdf

Orman, H. K. 1998. "The OAKLEY Key Determination Protocol," RFC 2412 (Nov.).

Pall, G. S. and Zorn, G. 2001. "Microsoft Point-to-Point Encryption (MPPE) Protocol," RFC 2118 (Mar.).

Patel, B. V., Aboba, B., Dixon, W., Zorn, G., and Booth, S. 2001. "Securing L2TP using IPsec," RFC 3193 (Nov.).

Pepelnjak, I. and Guichard, J. 2001. MPLS and VPN Architectures. Cisco Press, Indianapolis, Ind.

Pereira, R. and Adams, R. 1998. "The ESP CBC-Mode Cipher Algorithms," RFC 2451 (Nov.).

Perkins, C. 1996. "IP Encapsulation within IP," RFC 2003 (Oct.).

Perlman, R. 2000. Interconnecions: Bridges, Routers, Switches, and Internetworking Protocols, Second Edition. Addison-Wesley, Reading, Mass.

Piper, D. 1998. "The Internet IP Security Domain of Interpretation for ISAKMP," RFC 2407 (Nov.).

Plummer, D. C. 1982. "An Ethernet Address Resolution Protocol," RFC 826 (Nov.).

Postel, J. B. 1980. "User Datagram Protocol," RFC 768 (Aug.).

Postel, J. B. 1981. "Internet Control Message Protocol," RFC 777 (Apr.).

Postel, J. B., ed. 1981a. "Internet Protocol," RFC 791 (Sept.).

Postel, J. B., ed. 1981b. "Transmission Control Protocol," RFC 793 (Sept.).

Preneel, B. and Oorschot, P. C. van 1995. "MDx-MAC and Building Fast MACs from Hash Functions," Advances in Cryptology-CRYPTO '95, Lecture Notes in Computer Science, no. 963, pp. 114, Springer-Verlag. http://www.scs.carleton.ca/~paulv/papers/Crypto95.ps

Preneel, B. and Oorschot, P. C. van 1996. "On the Security of Two MAC Algorithms," Advances in Cryptology-EUROCRYPT '96, Lecture Notes in Computer Science, no. 1070, pp. 1932, Springer-Verlag. http://www.scs.carleton.ca/~paulv/papers/Euro96-2MACs.ps

Provan, D. 1991. "Tunneling IPX Traffic through IP Networks," RFC 1234 (June).

Rekhter, Y. and Gross, P. 1995. "Application of the Border Gateway Protocol in the Internet," RFC 1772 (Mar.).

Rekhter, Y. and Li, T. 1993. "An Architecture for IP Address Allocation with CIDR," RFC 1518 (Sept.).

Rekhter, Y. and Li, T. 1995. "A Border Gateway Protocol 4 (BGP-4)," RFC 1771 (Mar.).

Rekhter, Y., Moskowitz, R. G., Karrenberg, D., Groot, G. J. de, and Lear, E. 1996. "Address Allocation of Private Internets," RFC 1918 (Feb.).

Rekhter, Y. and Rosen, E. 2001. "Carrying Label Information in BGP-4," RFC 3107 (May).

Rescorla, E. 2001. SSL and TLS: Designing and Building Secure Systems. Addison-Wesley, Boston, Mass.

Reynolds, J. K. and Postel, J. B. 1985. "File Transfer Protocol (FTP)," RFC 959 (Oct.).

Rivest, R. 1992a. "The MD4 Message-Digest Algorithm," RFC 1320 (Apr.).

Rivest, R. 1992b. "The MD5 Message-Digest Algoritm," RFC 1321 (Apr.).

Rivest, R. L., Shamir, A., and Adleman, L. M. 1978. "A Method for Obtaining Digital Signatures and Public-Key Cryptosystems," Communications of the ACM, vol. 21, no. 2, pp. 120126 (Feb.).

Robshaw, M. J. B. 1995. "Stream Ciphers," Technical Report TR-701, Version 2.0, RSA Laboratories (July). ftp://ftp.rsasecurity.com/pub/pdfs/tr701.pdf

Romkey, J. L. 1988. "A Nonstandard for Transmission of IP Datagrams Over Serial Lines: SLIP," RFC 1055 (June).

Roos, A. 1995. "A Class of Weak Keys in the RC4 Stream Cipher (Preliminary Draft)," Message-ID: <43vf2e$sr8@net.auckland.ac.nz>, Usenet, Sci.Crypt.Research (Sept.). http://groups.google.com/groups?selm=43vf2e%24sr8%40net.auckland.ac.nz&oe=UTF-8&output=gplain

Rosen, E. C. and Rekhter, Y. 1999. "BGP/MPLS VPNs," RFC 2547 (Mar.).

Rosen, E. C., Tappan, D., Fedorkow, G., Rekhter, Y., Farinacci, D., Li, T., and Conta, A. 2001. "MPLS Label Stack Encoding," RFC 3032 (Jan.).

Rosen, E. C., Viswanathan, A., and Callon, R. 2001. "Multiprotocol Label Switching Architecture," RFC 3031 (Jan.).

RSA Laboratories 2002. PKCS #1 v2.1: RSA Cryptography Standard. RSA Laboratories ftp://ftp.rsasecurity.com/pub/pkcs/pkcs-1/pkcs-1v2-1.pdf

Schneier, B. 1996. Applied Cryptography Second Edition: Protocols, Algorithms, and Source Code in C. John Wiley & Sons, N.Y.

Schneier, B. 2003. "SSL Flaw," Crypto-Gram Newsletter, Counterpane Internet Security, Inc. (Mar.). http://www.schneier.com/crypto-gram-0303.html

Schneier, B. and Mudge 1998. "Cryptanalysis of Microsoft's Point-to-Point Tunneling Protocol (PPTP)," Proceeding of the 5th ACM Conference on Communications and Computer Security, pp. 132141, ACM Press. http://www.counterpane.com/pptp-paper.html

Schneier, B., Mudge, and Wagner, D. 1999. "Cryptanalysis of Microsoft's PPTP Authentication Extensions (MS-CHAPv2)," white paper. http://www.counterpane.com/pptpv2-paper.html

Shea, R. 2000. L2TP Implementation and Operation. Addison-Wesley, Reading, Mass.

Simpson, W. A. 1996. "PPP Challenge Handshake Authentication Protocol (CHAP)," RFC 1994 (Aug.).

Snader, J. C. 2000. Effective TCP/IP Programming. Addison-Wesley, Boston, Mass.

Song, D. X., Wagner, D., and Tian, X. 2001. "Timing Analysis of Keystrokes and Timing Attacks on SSH," 10th USENIX Security Symposium (Aug.). http://www.usenix.org/events/sec01/full_papers/song/song.pdf

Srisuresh, P. and Holdrege, M. 1999. "IP Network Address Translator (NAT) Terminology and Consideration," RFC 2663 (Aug.).

Stevens, W. R. 1992. Advanced Programming in the UNIX Environment. Addison-Wesley Pub. Co., Reading, Mass.

Stevens, W. R. 1994. TCP/IP Illustrated, Volume 1: The Protocols. Addison-Wesley Pub. Co., Reading, Mass.

Stevens, W. R. 1996. TCP/IP Illustrated, Volume 3: TCP for Transactions, HTTP, NNTP, and the UNIX Domain Protocols. Addison-Wesley Pub. Co., Reading, Mass.

Stevens, W. R. 1998. UNIX Network Programming, Volume 1, Second Edition, Networking APIs: Sockets and XTI. Prentice Hall PTR, Upper Saddle River, N.J.

Stevenson, F. A. 1995. "Cracked: WINDOWS.PWL," Message-ID: <Pine.SGI.3.91.951204174641. 2847A-100000@odin>, Cypherpunks Mail List (Dec.). http://groups.google.com/groups?selm=Pine.SGI.3.91.951204174641.2847A-100000%40odin&oe=UTF-8&output=gplain

Townsley, W. M., Valencia, A. J., Rubens, A., Pall, G. S., Zorn, G., and Palter, B. 1999. "Layer Two Tunneling Protocol "L2TP"," RFC 2661 (Aug.).

Varghese, G. 2005. Network Algorithmics : An Interdisciplinary Approach to Designing Fast Networked Devices. Morgan Kaufmann, San Francisco

Vaudenay, S. 2002. "Security Flaws Induced by CBC Padding-Applications to SSL, IPSEC, WTLS. . .," Advances in Cryptology-EUROCRYPT '02, Lecture Notes in Computer Science, no. 2332, pp. 534545, Springer-Verlag. http://lasecwww.epfl.ch/pub/lasec/doc/Vau02a.ps

Viega, J., Messier, M., and Chandra, P. 2002. Network Security with OpenSSL. O'Reilly & Associates, Sebastopol, Calif.

Voydock, V. L. and Kent, S. T. 1983. "Security Mechanisms in High-Level Network Protocols," ACM Computing Surveys, vol. 15, no. 2, pp. 135171 (June).

Wagner, D. and Schneier, B. 1996. "Analysis of the SSL 3.0 protocol," The Second USENIX Workshop on Electronic Commerce Proceedings, pp. 2940 (Nov.). http://www.counterpane.com/ssl.html

Waissbein, A. and Friedman, A. A. 2001. "SSH Protocol 1.5 Session Key Recovery Vulnerability," Advisory CORE-20010116, Core Security Technologies (Feb.). http://tinyurl.com/yrzub

Wang, X., Feng, D., Lai, X., and Yu, H. 2004. "Collisions for Hash Functions MD4, MD5, HAVAL-128 and RIPEMD," white paper. http://eprint.iacr.org/2004/199.pdf

Wang, X., Yin, Y. L., and Yu, H. 2005. "Collision Search Attacks on SHA1," white paper. http://s17.yousendit.com/d.aspx?id=0MZULY5IBDAU130DK0RKV3GTIB

Wang, X. and Yu, H. 2005. "How to Break MD5 and Other Hash Functions," Preprint (Mar.). http://www.infosec.sdu.edu.cn/paper/md5-attack.pdf

Wilson, S. 2003. "Rethinking PKI," SC Magazine (June). http://www.scmagazine.com/scmagazine/2003_06/feature_2/index.html

Wright, G. R. and Stevens, W. R. 1995. TCP/IP Illustrated, Volume 2: The Implementation. Addison-Wesley Pub. Co., Reading, Mass.

Zheng, P. 2003. "Tradeoffs in Certificate Revocation Schemes," Computer Communication Review, vol. 33, no. No. 2, pp. 103112 (Apr.).

Zorn, G. and Cobb, S. 1998. "Microsoft PPP CHAP Extensions," RFC 2433 (Oct.).


Previous Page
Next Page