SSL on TELIT modules.

Slides:



Advertisements
Similar presentations
The Dog’s Biggest Bite. Overview History Start Communication Protocol Weakness POODLE Issues.
Advertisements

McGraw-Hill©The McGraw-Hill Companies, Inc., 2000 Ferry Astika Saputra Workshop Administrasi Jaringan TELNET & SSH.
1 Lecture 17: SSL/TLS history, architecture basic handshake session initiation/resumption key computation negotiating cipher suites application: SET.
TLS Introduction 14.2 TLS Record Protocol 14.3 TLS Handshake Protocol 14.4 Summary.
Secure Socket Layer.
SSL CS772 Fall Secure Socket layer Design Goals: SSLv2) SSL should work well with the main web protocols such as HTTP. Confidentiality is the top.
Transport Layer Security (TLS) Bill Burr November 2, 2001.
Socket Layer Security. In this Presentation: need for web security SSL/TLS transport layer security protocols HTTPS secure shell (SSH)
Internet Security Protocols
Working Connection Computer and Network Security - SSL, IPsec, Firewalls – (Chapter 17, 18, 19, and 23)
An Introduction to Secure Sockets Layer (SSL). Overview Types of encryption SSL History Design Goals Protocol Problems Competing Technologies.
CCNA – Network Fundamentals
Module 5: TLS and SSL 1. Overview Transport Layer Security Overview Secure Socket Layer Overview SSL Termination SSL in the Hosted Environment Load Balanced.
Transport Layer Security (TLS) Protocol Introduction to networks and communications(CS555) Prof : Dr Kurt maly Student:Abhinav y.
Mar 19, 2002Mårten Trolin1 This lecture On the assignment Certificates and key management SSL/TLS –Introduction –Phases –Commands.
Apr 2, 2002Mårten Trolin1 Previous lecture On the assignment Certificates and key management –Obtaining a certificate –Verifying a certificate –Certificate.
CSCE 515: Computer Network Programming Chin-Tser Huang University of South Carolina.
Chapter 8 Web Security.
Cs490ns-cotter1 SSH / SSL Supplementary material.
JSSE API University of Palestine Eng. Wisam Zaqoot April 2010.
CSCI 6962: Server-side Design and Programming
Wireless and Security CSCI 5857: Encoding and Encryption.
SSL and https for Secure Web Communication CSCI 5857: Encoding and Encryption.
32.1 Chapter 32 Security in the Internet: IPSec, SSL/TLS, PGP, VPN, and Firewalls Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction.
© 2007 Cisco Systems, Inc. All rights reserved.ISCW-Mod9_L8 1 Network Security 2 Module 6 – Configure Remote Access VPN.
MCSE Guide to Microsoft Exchange Server 2003 Administration Chapter Four Configuring Outlook and Outlook Web Access.
Secure Socket Layer (SSL)
SSL / TLS in ITDS Arun Vishwanathan 23 rd Dec 2003.
Cosc 4765 SSL/TLS and VPN. SSL and TLS We can apply this generally, but also from a prospective of web services. Multi-layered: –S-http (secure http),
Introduction to Secure Sockets Layer (SSL) Protocol Based on:
Cryptography and Network Security (CS435) Part Fourteen (Web Security)
Web Security : Secure Socket Layer Secure Electronic Transaction.
Web Application Security Presented by Ben Lake. How the Web Works Hypertext Transfer Protocol (HTTP)  Application-level  Stateless Example  Web Browser.
Digital Envelopes, Secure Socket Layer and Digital Certificates By: Anthony and James.
CSCE 815 Network Security Lecture 26 SSH and SSH Implementation April 24, 2003.
1 DCS 835 – Computer Networking and the Internet Digital Certificate and SSL (rev ) Team 1 Rasal Mowla (project leader) Alvaro Restrepo, Carlos.
Building Security into Your System Bill Major Gregory Ponto.
1 SSL - Secure Sockets Layer The Internet Engineering Task Force (IETF) standard called Transport Layer Security (TLS) is based on SSL.
1 Security Protocols in the Internet Source: Chapter 31 Data Communications & Networking Forouzan Third Edition.
Computer Networking From LANs to WANs: Hardware, Software, and Security Chapter 13 FTP and Telnet.
1 SSH / SSL Supplementary material. 2 Secure Shell (SSH) One of the primary goals of the ARPANET was remote access Several different connections allowed.
P.O.P. A presentation brought to you by Thomas. Topics Introduction General Information Area of use Functionality The alternative way POP3 vs. IMAP Conclusion.
© 2003, Cisco Systems, Inc. All rights reserved. 1 TTS Functionality Via IMAP Unity Connection 1.1 Andrew Biggs UCBU.
1 Understanding Secure Socket Layer (SSL) Advisor Advisor Prof. Tzonelih Hwang Presenter Prosanta Gope.
SMUCSE 5349/7349 SSL/TLS. SMUCSE 5349/7349 Layers of Security.
Typical M²M applications InduBox GPRS sample applications.
Encryption protocols Monil Adhikari. What is SSL / TLS? Transport Layer Security protocol, ver 1.0 De facto standard for Internet security “The primary.
1 Chapter 7 WEB Security. 2 Outline Web Security Considerations Secure Socket Layer (SSL) and Transport Layer Security (TLS) Secure Electronic Transaction.
Secure Socket Layer SSL and TLS. SSL Protocol Peer negotiation for algorithm support Public key encryptionPublic key encryption -based key exchange and.
Mar 28, 2003Mårten Trolin1 This lecture Certificates and key management Non-interactive protocols –PGP SSL/TLS –Introduction –Phases –Commands.
Secure Socket Layer Protocol Dr. John P. Abraham Professor, UTRGV.
@Yuan Xue CS 285 Network Security Secure Socket Layer Yuan Xue Fall 2013.
Lecture 10 Page 1 CS 236 Online SSL and TLS SSL – Secure Socket Layer TLS – Transport Layer Security The common standards for securing network applications.
Henric Johnson1 Chapter 7 WEB Security Henric Johnson Blekinge Institute of Technology, Sweden
Visit for more Learning Resources
Working at a Small-to-Medium Business or ISP – Chapter 7
Originally by Yu Yang and Lilly Wang Modified by T. A. Yang
Working at a Small-to-Medium Business or ISP – Chapter 7
Working at a Small-to-Medium Business or ISP – Chapter 7
The Secure Sockets Layer (SSL) Protocol
Transport Layer Security (TLS)
Presentation transcript:

SSL on TELIT modules

SSL implementation status SSL in TELIT modules: Is based developing SSL protocol on existing Telit protocol stack Available from SW version 10.00.x05 A new set of AT commands to support SSL connections has been introduced ONLINE mode and COMMAND mode are supported Only one SSL socket is supported For protocol details refer to [RFC 2246; The TLS Protocol Version 1]. 2

SSL implementation status 3

SSL Client Client SSL features: Security data storage for authentication (Maximum size 1535 bytes): to remote server (Server CA certificate)   to be authenticated from remote server (Client private key, Client certificate) Security level supported: no authentication authentication from remote server authentication of remote server authentication of client and remote server Connection to remote server using supported cipher suites or following request coming from server. Cipher suite: SSL_RSA_WITH_RC4_128_MD5 SSL_RSA_WITH_RC4_128_SHA TLS_RSA_WITH_AES_256_CBC_SHA 4

SSL socket preliminary settings Common GPRS preliminary operations: Configuring and Activating the context AT+CGDCONT=<cid>,IP,<APN>,… AT#SGACT= <Cntx Id>,<Status>, [<Username>],[<Password>] Specific SSL settings: Enabling a SSL channel AT#SSLEN= <SSId>,<Enable> Configuring SSL security AT#SSLSECCFG= <SSId>,<cipher_suite>,<auth_mode> Storing security data AT#SSLSECDATA=<SSId>,<Action=1>,<DataType> Performing the general configuration AT#SSLCFG=<SSId>,<cid>,<pktSize>,<maxTo>,<defTo>,<txTo> 5

Working with SSL sockets (1/6) Open a secure socket: AT#SSLD= <SSId>,<remotePort>,<remoteHost>,<closureType>, <mode>,<timeout> Exchange data in ONLINE mode (<mode> = 0) After the CONNECT message, the user can send data to the AT port which will be encrypted and sent to the server through the secure socket. It is possible to suspend the connection (without closing it) by sending the escape sequence (+++). Data mode can be restored at any time by sending the AT#SSLO command. AT#SSLO=<SSId> 6

Working with SSL sockets (2/6) Exchange data in COMMAND mode (<mode> = 1) Data can be exchanged in command mode through a SSL socket by means of the commands AT#SSLSEND and AT#SSLRECV. Send data: AT#SSLSEND=<SSId>,<Timeout> The data to be sent can be written to the AT port after the ‘>’ prompt; the user can confirm by writing the 0x1A character (CTRL+Z) and the data will be forwarded through the secure socket. Receive data: AT#SSLRECV=<SSId>,<MaxNumByte>,<Timeout> On success, the data is printed in the following format: #SSLRECV: <numBytesRead> <DATA>   OK   7

Working with SSL sockets (3/6) Close a secure socket: AT#SSLH=<SSId>,<closureType> Perform a fast dial: SSL protocol allows to restore the previous session; this makes possible to avoid full handshake and perform a fast dial. In Telit Module this is done using AT#SSLFASTD that can be sent if #SSLD or #SSLH command have been executed setting <closureType>=1. AT#SSLFASTD=<SSId>,<connMode>,<Timeout> 8

Working with SSL sockets (4/6) Example of ONLINE mode communication: AT#SSLD=1,443,123.124.125.126,0,0 CONNECT …[bidirectional data exchange] [send +++] OK AT#SSLS=1  Query status #SSLS: 1,2,<cipher_suite> AT#SSLO=1 … [more bidirectional data exchange] AT#SSLH=1   9

Working with SSL sockets (5/6) Example of COMMAND mode communication:   AT#SSLD=1,443,123.124.125.126,0,1 OK AT#SSLS=1  Query status #SSLS: 1,2,<cipher_suite> Send data: AT#SSLSEND=1 >Send this string to the SSL server<CTRL+Z> 10

Working with SSL sockets (6/6) Receive data: AT#SSLRECV=1,15 #SSLRECV: 0 TIMEOUT  The server has not sent a response within the timeout OK #SSLRECV: 15 Response of the #SSLRECV: 6 server AT#SSLH=1 DISCONNECTED 11

Contact us >> www.telit.com EMEA Telit Communications S.p.A. Via Stazione di Prosecco, 5/B, 34010 Sgonico (Trieste), Italy Phone: +39 040 4192 200 Email: EMEA@telit.com North America Telit Wireless Solutions Inc. 3131 RDU Center Drive, Suite 135, Morrisville, NC 27560, USA Phone: +1 888 846 9773 Email: NORTHAMERICA@telit.com APAC Telit Wireless Solutions Co. Ltd., APAC 12th floor, Shinyoung Securities Building, 34-12, Yeouido-dong, Yeongdeungpo-gu Seoul, 150-884, Korea Phone: +82 2 368 4600 Email: APAC@telit.com Latin America Telit Wireless Solutions Inc. Rua Cunha Gago, 700 – cj 81, Pinheiros, São Paulo – SP, 05421001, Brazil Phone: +55 11 2679 4654 Email: LATINAMERICA@telit.com >> www.telit.com

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.