Chinaunix首页 | 论坛 | 博客
  • 博客访问: 598911
  • 博文数量: 80
  • 博客积分: 3315
  • 博客等级: 中校
  • 技术积分: 697
  • 用 户 组: 普通用户
  • 注册时间: 2010-04-27 12:46
文章分类

全部博文(80)

文章存档

2014年(3)

2013年(3)

2012年(5)

2011年(19)

2010年(50)

我的朋友

分类: 网络与安全

2010-07-21 14:22:38

Master/Session

In cryptographyMaster/Session is a key management scheme in which a pre-shared Key Encrypting Key (called the "Master") is used to encrypt a randomly generated and insecurely communicated Working Key (called the "Session" key. The Working Key is then used for encrypting data to be exchanged.

The Master/Session technique was created in the days before asymmetric techniques, such as Diffie Hellman, were invented. This technique still finds widespread use in the financial industry. It is routinely used between corporate parties such as issuers, acquirers, switches. Its use in device communications (such as PIN pads) is in decline given the advantages of techniques such as DUKPT.

Its advantage is simplicity, but it suffers the disadvantage of having to communicate the pre-shared Key Exchange Key, which can be difficult to update in the event of compromise.

阅读(1035) | 评论(0) | 转发(0) |
给主人留下些什么吧!~~