Chapter 7: The OpenSSL Library - Building.Open.Source.Network.Security.Tools.Components.And.Techniques [Electronic resources] نسخه متنی

This is a Digital Library

With over 100,000 free electronic resource in Persian, Arabic and English

جستجو بر اساس ... همه عنوان پدیدآور موضوع یادداشت تمام متن
اصطلاحنامه مجموعه ها مرورالفبایی لغت نامه دهخدا
جستجو در لغت نامه
بیشتر
کتابخانه شخصی پرسش از کتابدار ارسال منبع

Building.Open.Source.Network.Security.Tools.Components.And.Techniques [Electronic resources] - نسخه متنی

Mike D. Schiffman

| نمايش فراداده ، افزودن یک نقد و بررسی
افزودن به کتابخانه شخصی
میخواهم بخوانم
درحال خواندن
خوانده شده
ارسال به دوستان

آدرس پست الکترونیک گیرنده :

آدرس پست الکترونیک فرستنده :

نام و نام خانوارگی فرستنده :

پیغام برای گیرنده ( حداکثر 250 حرف ) :

کد امنیتی را وارد نمایید

ارسال
جستجو در متن کتاب
بیشتر
تنظیمات قلم

فونت

اندازه قلم

+ - پیش فرض

حالت نمایش

روز نیمروز شب
جستجو در لغت نامه
بیشتر
لیست موضوعات

Sitemap

Table of Contents

BackCover

Building Open Source Network Security Tools Components and Techniques--Components and Techniques

Introduction

Components Legend

Who Should Read This Book

Language, Platform, and Compiler

C Programming Concepts

Conventions Used in This Book

Chapter 1: The Network Security Tool Paradigm

A Modular Model

Network Security Tool Taxonomy

Software Development Lifecycle

Conclusion

Chapter 2: The Libpcap Library

Installation Notes

Native Datatypes

Initialization Functions

Capture Functions

Filter Functions

Savefile (Dump) Functions

Ancillary Functions

Error Functions

Sample Program--Stroke

Sample Code--Stroke

Chapter 3: The Libnet Library

Installation Notes

Design Considerations

Native Datatypes

Framework Functions

Address Resolution Functions

Packet Builder Functions

Port List Functions

Ancillary Functions

Advanced-Mode Functions

Psuedo-Random Number Functions

Sample Program--Punch

Sample Code--Punch

Chapter 4: The Libnids Library

Installation Notes

Native Datatypes

Initialization and Execution Functions

Callback Registration Functions

TCP-Specific Functions

Sample Program-Lilt

Sample Code-Lilt

Chapter 5: The Libsf Library

Installation Notes

Design Considerations

Native Datatypes

Framework Functions

Fingerprint Functions

Results Functions

Sample Program-Legerdemain

Sample Code-Legerdemain

Chapter 6: The Libdnet Library

Installation Notes

Native Datatypes

Addressing Functions

ARP Cache Functions

Route Table Functions

Interface Functions

Firewall Functions

Ethernet and IP Functions

Binary Buffers

Random Number Generation

Sample Program-Clutch

Sample Code-Clutch

Chapter 7: The OpenSSL Library

Installation Notes

The EVP Interface

Native Datatypes

Top-level Functions

Symmetric Functions and Macros

Asymmetric Functions

Message Digest Functions and Macros

Digital Signature Functions

Sample Program-Roil

Sample Code-Roil

Chapter 8: Passive Reconnaissance Techniques

Sample Program-Scoop

Sample Code-Scoop

Chapter 9: Active Reconnaissance Techniques

IP Expiry

Sample Program-Knock

Sample Code-Knock

Chapter 10: Attack and Penetration Techniques

Vulnerability Testing

Sample Program-Sift

Sample Code-Sift

Chapter 11: Defensive Techniques

Encryption

Firewalling

Network Intrusion Detection

Sample Program-Descry

Sample Code-Descry

Chapter 12: Tying Everything Together--Firewalk

Firewalk in Practice

Firewalxsxsk Code Walkthrough

Firewalk Complete Code Listing

References

Chapter 1

Chapter 2

Chapter 3

Chapter 4

Chapter 5

Chapter 6

Chapter 7

Chapter 8

Chapter 9

Chapter 10

Chapter 11

Chapter 12

Index

Index_B

Index_C

Index_D

Index_E

Index_F

Index_G-H

Index_I

Index_J-L

Index_M

Index_N

Index_O

Index_P

Index_Q-R

Index_S

Index_T

Index_U

Index_V

Index_W-Z

List of Figures

List of Tables
توضیحات
افزودن یادداشت جدید







Chapter 7: The OpenSSL Library


Overview


























URL:


http://www.openssl.org


Primary authors:


Various;originally Eric Young and Tim Hudson


Component type:


C language library, cryptography toolkit including SSL and TLS


License:


OpenSSL, SSLeay


Version profiled:


0.9.7


Dependencies:


None


The OpenSSL Project is a collaborative effort to develop a robust, commercial-grade, fully featured, and Open-Source toolkit implementing the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols as well as a full-strength, general-purpose cryptography (crypto) library. A worldwide community of volunteers that use the Internet to communicate, plan, and develop the OpenSSL toolkit and its related documentation manage the project. OpenSSL's functionality breaks down into two libraries: the SSL/TLS library (libssl.a) and the crypto library (libcrypto.a).

Developers most often use the SSL/TLS library, implementing versions 2 and 3 of SSL and version 1 of TLS, to build secure Web transactions via the https protocol. OpenSSL provides a wide range of functionality, including the following:



SSL/TLS protocols



Symmetric cryptographic operations (ciphers, message digests)



Asymmetric cryptographic operations (digital signatures, enveloping)



Public Key Infrastructure (PKI), including OCSP, rich X509 certificate support, certificate verification, certificate requests, and CRLs



Due to the overwhelming size of scope of the SSL/TLS library (more than 200 exported functions), this chapter only focuses on the EVP interface of the crypto library. The crypto library is itself large and includes support for ASN.l, PRNG, big numbers, elliptical curves, and more—none of which we will cover in depth here.

The crypto library is extremely useful for building cryptography into applications, and mainstay tools such as ssh, sshd, and isakmpd use it. It offers a wide array of cryptographic functionality in the following key areas:



Symmetric ciphers via the EVP_Cipher () interface



Asymmetric ciphers via the EVP_Seal () and EVP_Open () interfaces



Authentication and hashing via the EVP_Digest() interface



Digital signatures via the EVP_Sign () and EVP_Verify () interfaces



Table 7.1 summarizes the supported algorithms that the crypto library supports.






































































Table 7.1: OpenSSL crypto Library Supported Algorithms

SYMMETRIC CIPHERS


ASYMMETRIC CIPHERS


MESSAGE DIGESTS




Blowfish


DSA


HMAC




CAST


DH


MD2




DES


RSA


MD4




IDEA

MD5




RC2

MPC2




RC4

RIPEMD




RC5

SHA




SHA1











Note

It is important to note that OpenSSL implements strong cryptography and is therefore subject to import and export restrictions in certain parts of the world, such as those specified by the International Traffic in Aims Regulations (ITAR) restrictions in the United States.


/ 135