SIGMA: The 'SIGn-and-MAc' approach to authenticated Diffie-Hellman and its use in the IKE protocols

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

Volumn 2729, Issue , 2003, Pages 400-425

  Krawczyk, Hugo ^a,b  

^a TECHNION ISRAEL INSTITUTE OF TECHNOLOGY   (Israel)

^b IBM T J WATSON RESEARCH CENTER   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

CRYPTOGRAPHY; DESIGN; ECONOMIC AND SOCIAL EFFECTS; NETWORK SECURITY;

CRYPTOGRAPHIC KEY EXCHANGES; DESIGN RATIONALE; IDENTITY PROTECTION; INTERNET KEY EXCHANGE; KEY EXCHANGE PROTOCOLS; PERFECT FORWARD SECRECY; SECURE KEY EXCHANGES; SIGMA PROTOCOLS;

INTERNET PROTOCOLS;

EID: 35248816546     PISSN: 03029743     EISSN: 16113349     Source Type: Book Series    
DOI: 10.1007/978-3-540-45146-4_24     Document Type: Article

References (34)

1. ∼smb/papers/jfk-ccs.pdf
2. M. Bellare and P. Rogaway, "Entity authentication and key distribution", Advances in Cryptology, - CRYPTO'93, Lecture Notes in Computer Science Vol. 773, D. Stinson ed, Springer-Verlag, 1994, pp. 232-249.
3. S. M. Bellovin, "Problem Areas for the IP Security Protocols", Proceedings of the Sixth Usenix Unix Security Symposium, 1996.
4. S. Blake-Wilson and A. Menezes, "Unknown key-share attacks on the station-to-station (STS) protocol", Proceedings of PKC '99, Lecture Notes in Computer Science, 1560 (1999), 154-170.
5. M. Burrows, M. Abadi and R. Needham, "A logic for authentication," ACM Trans. Computer Systems Vol. 8 (Feb. 1990), pp. 18-36
6. Canetti, R., and Krawczyk, H., "Analysis of Key-Exchange Protocols and Their Use for Building Secure Channels", Eurocrypt'2001, LNCS Vol. 2045.
7. Full version in: Cryptology ePrint Archive (http://eprint.iacr.org/), Report 2001/040.
8. Canetti, R., and Krawczyk, H., "Security Analysis of IKE's Signature-based Key-Exchange Protocol", Crypto 2002. LNCS Vol. 2442.
9. Full version in: Cryptology ePrint Archive (http://eprint.iacr.org/), Report 2002/120.
10. ∼paulv/papers/sts-final.ps.
11. N. Ferguson and B. Schneier, "A Cryptographic Evaluation of IPSec", http://www.counterpane.com/ipsec.html, 1999.
12. O. Goldreich, "Foundations of Cryptography: Basic Tools", Cambridge Press, 2001.
13. D. Harkins and D. Carrel, ed., "The Internet Key Exchange (IKE)", RFC 2409, Nov. 1998.
14. ISO/IEC IS 9798-3, "Entity authentication mechanisms -Part 3: Entity authentication using asymmetric techniques", 1993.
15. C. Jutla, "Encryption Modes with Almost Free Message Integrity", Advances in Cryptology - EUROCRYPT 2001 Proceedings, Lecture Notes in Computer Science, Vol. 2045, Springer-Verlag, B. Pfitzmann, ed, 2001.
16. Karn, P., and Simpson W.A., "The Photuris Session Key Management Protocol", draft-ietf-ipsec-photuris-03.txt, Sept. 1995.
17. B. Kaliski, "An unknown key-share attack on the MQV key agreement protocol", ACM Transactions on Information and System Security (TISSEC). Vol. 4 No. 3, 2001, pp. 275-288.
18. C. Kaufman, "Internet Key Exchange (IKEv2) Protocol", draft-ietf-ipsec-ikev2-07.txt, April 2003 (to be published as an RFC).
19. S. Kent and R. Atkinson, "Security Architecture for the Internet Protocol", Request for Comments 2401, Nov. 1998.
20. S. Kent and R. Atkinson, "IP Encapsulating Security Payload (ESP)", Request for Comments 2406, Nov. 1998.
21. H. Krawczyk, Communication to IPsec WG, IPsec mailing list archives, April-October 1995. http://www.vpnc.org/ietf-ipsec/
22. ∼hugo/skeme-lncs.ps
23. Krawczyk, H., Bellare, M., and Canetti, R., "HMAC: Keyed-Hashing for Message Authentication", RFC 2104, February 1997.
24. Krawczyk, H., "Blinding of Credit Card Numbers in the SET Protocol", Proceedings of Financial Cryptography'99, LNCS Vol. 1648, 1999.
25. H. Krawczyk, "The order of encryption and authentication for protecting communications (Or: how secure is SSL?)", Crypto'2001, LNCS Vol. 2139.
26. Full version in: Cryptology ePrint Archive (http://eprint.iacr.org/), Report 2001/045.
27. ∼hugo/sigma.html
28. G. Lowe, "Some New Attacks upon Security Protocols", 9th JEEE Computer Security Foundations Workshop, IEEE Press 1996, pp. 162-169.
29. Meadows, C., "Analysis of the Internet Key Exchange Protocol Using the NRL Protocol Analyzer", Proc. of the 1999 IEEE Symposium on Security and Privacy, IEEE Computer Society Press, 1999.
30. A. Menezes, P. Van Oorschot and S. Vanstone, "Handbook of Applied Cryptography," CRC Press, 1996.
31. Orman, H., "The OAKLEY Key Determination Protocol", Request for Comments 2412, Nov. 1998.
32. Perlman, R., and Kaufman, C., "Analysis of the IPsec key exchange Standard", WET-ICE Security Conference, MIT, 2001.
33. V. Shoup, "On Formal Models for Secure Key Exchange", Theory of Cryptography Library, 1999. Available at: http://philby.ucsd.edu/cryptolib/1999/99-12.html.
34. P. van Oorschot, "Extending cryptographic logics of belief to key agreement protocols", Proceedings, 1st ACM Conference on Computer and Communications Security, Nov. 1993, Fairfax, Virginia, pp. 232-243,