Provable-security analysis of authenticated encryption in Kerberos

Proceedings - IEEE Symposium on Security and Privacy

Volumn , Issue , 2007, Pages 92-97

  Boldyreva, Alexandra ^a   Kumar, Virendra ^a  

^a Georgia Institute of Technology   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

AUTHENTICATION; COMPUTATIONAL METHODS; DATA PRIVACY; NETWORK PROTOCOLS; STANDARDIZATION; VERIFICATION;

COMPUTATIONAL SETTING; SECURITY ANALYSIS;

CRYPTOGRAPHY;

EID: 34548797158     PISSN: 10816011     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/SP.2007.19     Document Type: Conference Paper

References (27)

1. M. Backes, I. Cervesato, A. D. Jaggard, A. Scedrov, and J.-K. Tsay. Cryptographically sound security proofs for basic and public-key Kerberos. In ESORICS '06. Springer, 2006.
2. M. Backes and B. Pfitzmann. Symmetric encryption in a simulatable Dolev-Yao style cryptographic library. In CSFW '04. IEEE, 2004.
3. M. Backes, B. Pfitzmann, and M. Waidner. A composable cryptographic library with nested operations. In CCS '03. ACM, 2003.
4. M. Backes, B. Pfitzmann, and M. Waidner. Symmetric authentication within a simulatable cryptographic library. In ESORICS '03. Springer, 2003.
5. G. Bella and L. C. Paulson. Kerberos version 4: Inductive analysis of the secrecy goals. In ESORICS '98. Springer, 1998.
6. G. Bella and E. Riccobene. Formal analysis of the Kerberos authentication system. Journal of Universal Computer Science, 3(12):1337-1381, 1997.
7. M. Bellare. New proofs for NMAC and HMAC: Security without collision-resistance. In CRYPTO, 2006.
8. M. Bellare, R. Canetti, and H. Krawczyk. Keying hash functions for message authentication. In CRYPTO '96. Springer, 1996.
9. M. Bellare, A. Desai, E. Jokipii, and P. Rogaway. A concrete security treatment of symmetric encryption. In FOCS '97. IEEE, 1997.
10. M. Bellare, J. Kilian, and P. Rogaway. The security of the cipher block chaining message authentication code. In CRYPTO '04. Springer, 2004.
11. M. Bellare, T. Kohno, and C. Namprempre. Authenticated encryption in SSH: provably fixing the SSH binary packet protocol. In CCS '02. ACM, 2002.
12. M. Bellare and C. Namprempre. Authenticated encryption: Relations among notions and analysis of the generic composition paradigm. In ASIACRYPT '00. Springer, 2000.
13. M. Bellare and P. Rogaway. Encode-then-encipher encryption: How to exploit nonces or redundancy in plaintexts for efficient cryptography. In ASIACRYPT '00. Springer, 2000.
14. S. M. Bellovin and M. Merritt. Limitations of the Kerberos authentication system. SIGCOMM Comput. Commun. Rev., 20(5):119-132, 1990.
15. A. Boldyreva and V. Kumar. Provable-security analysis of authenticated encryption in Kerberos. Full version of this paper. Available at http://www-static.cc.gatech.edu/~aboldyre/publications.html, 2007.
16. F. Butler, I. Cervesato, A. D. Jaggard, and A. Scedrov. A Formal Analysis of Some Properties of Kerberos 5 Using MSR. In CSFW '02. IEEE, 2002.
17. F. Butler, I. Cervesato, A. D. Jaggard, A. Scedrov, and C. Walstad. Formal Analysis of Kerberos 5 Using. In Theoretical Computer Science, 2006.
18. J. T. Kohl. The use of encryption in Kerberos for network authentication (invited). In CRYPTO '89. Springer, 1989.
19. T. Kohno. Searchable symmetric encryption: Improved definitions and efficient constructions. UCSD Dissertation, 2006.
20. C. Neuman, T. Yu, S. Hartman, and K. Raeburn. The Kerberos network authentication service (v5). Network Working Group. Request for Comments: 4120. Available at http://www.ietf.org/rfc/rfc4120.txt, 2005.
21. K. Raeburn. Advanced encryption standard (AES) encryption for Kerberos 5. Network Working Group. Request for Comments: 3962. Available at http://www.ietf.org/rfc/rfc3962.txt, 2005.
22. K. Raeburn. Encryption and checksum specifications for Kerberos 5. Network Working Group. Request for Comments: 3961. Available at http://www.ietf.org/rfc/rfc3961.txt, 2005.
23. S. G. Stubblebine and V. D. Gligor. On message integrity in cryptographic protocols. In Symposium on Security and Privacy '92. IEEE, 1992.
24. X. Wang, D. Feng, X. Lai, and H. Yu. Collisions for hash functions MD4, MD5, HAVAL-128 and RIPEMD. ePrint Archive: Report 2004/199, 2004. Available at http://eprint.iacr.org/.
25. T. D. Wu. A real-world analysis of Kerberos password security. In NDSS '99. The Internet Society, 1999.
26. T. Yu. The Kerberos network authentication service (version 5). IETF Internet draft. Request for Comments: 1510, 2006.
27. T. Yu, S. Hartman, and K. Raeburn. The perils of unauthenticated encryption: Kerberos version 4. In NDSS '04. The Internet Society, 2004.