Authentication without elision: Partially specified protocols, associated data, and cryptographic models described by code

Proceedings - IEEE Computer Security Foundations Symposium

Volumn , Issue , 2009, Pages 26-39

  Rogaway, Phillip ^a   Stegers, Till ^a  

^a University of California   (United States)

Author keywords

Associated data; Authentication; Needham schroeder lowe protocol; Provable security; Security models

Indexed keywords

ASSOCIATED DATA; AUTHENTICATION PROTOCOLS; CRYPTOGRAPHIC COMMUNITY; MUTUAL AUTHENTICATION; NEEDHAM-SCHROEDER; NEEDHAM-SCHROEDER-LOWE PROTOCOL; PROTOCOL FUNCTIONALITY; PROVABLE SECURITY; PSEUDO-CODE; PUBLIC KEYS; PUBLIC-KEY PROTOCOL; REAL-WORLD; SECURITY MODELS;

AUTHENTICATION; CRYPTOGRAPHY; NETWORK PROTOCOLS; SECURITY SYSTEMS;

NETWORK SECURITY;

EID: 70350536583     PISSN: 19401434     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/CSF.2009.23     Document Type: Conference Paper

References (47)

1. M. Backes, M. Berg, and D. Unruh. A formal language for cryptographic pseudocode. Logic for Programming, Artificial Intelligence, and Reasoning, LNCS vol. 5330, Springer, pp. 353-373, 2008.
2. M. Backes and P. Laud. Computationally sound secrecy proofs by mechanized flow analysis. ACM Conference on Computer and Communications Security (CCS 2006). ACM Press, pp. 370-379, 2006.
3. M. Backes and B. Pfitzmann. A cryptographically sound security proof of the Needham-Schroeder-Lowe public-key protocol. IEEE Journal on Selected Areas in Communications 22(10), pp. 2075-2086, 2004.
4. M. Backes, B. Pfitzmann, and M. Waidner. Symmetric authentication in a simulatable Dolev-Yao-style cryptographic library. International Journal of Information Security, 4(3), pp. 135-154, 2005.
5. G. Barthe, B. Grégoire, and S. Zanella. Formal certification of code-based cryptographic proofs. ACM SIGPLAN-SIGACT Symposium on Principles of Programming Languages (POPL 2009), pp. 90-101, ACM Press, 2009.
6. M. Bellare, A. Desai, D. Pointcheval, P. Rogaway. Relations among notions of security for public-key encryption schemes. Advances in Cryptology-CRYPTO '98, LNCS vol. 1462, Springer, pp. 26-45, 1998.
7. M. Bellare, D. Pointcheval, and P. Rogaway. Authenticated key exchange secure against dictionary attacks. Advances in Cryptology-EUROCRYPT 2000, LNCS vol. 1807, Springer, pp. 139-155, 2000.
8. M. Bellare and P. Rogaway. Entity authentication and key distribution. Advances in Cryptology - CRYPTO '93, LNCS vol. 773, Springer, pp. 232-249, 1994.
9. M. Bellare and P. Rogaway. The security of triple encryption and a framework for code-based game-playing proofs. Advances in Cryptology-EUROCRYPT 2006. LNCS vol. 4004, Springer, pp. 409-426, 2006.
10. S. Blake-Wilson and A. Menezes. Entity authentication and authenticated key transport protocols employing asymmetric techniques. Security Protocols Workshop 1997, LNCS vol. 1361, Springer, pp. 137-158, 1997.
11. B. Blanchet. A computationally sound mechanized prover for security protocols. IEEE Transactions on Dependable and Secure Computing, 5(4), pp. 193-207, 2008.
12. S. Bradner. Key words for use in RFCs to indicate requirement levels. RFC 2119. March 1997.
13. R. Canetti. Universally composable security: a new paradigm for cryptographic protocols. Cryptology ePrint Report 2000/067. Last revised 13 Dec 2005. Extended abstract in FOCS2001.
14. R. Canetti and J. Herzog. Universally composable symbolic analysis of mutual authentication and key-exchange protocols. TCC 2006, LNCS vol. 3876, pp. 380-403, 2006.
15. R. Canetti and H. Krawczyk. Security analysis of IKE's signature-based key-exchange protocol. Advances in Cryptology - CRYPTO 2002. LNCS vol. 2442, Springer, pp. 143-161, 2002.
16. V. Cortier and B. Warinschi. Computationally sound, automated proofs for security protocols. European Symposium on Programming (ESOP 2005). LNCS vol. 3444, Springer, pp. 157-171, 2005.
17. A. Datta, A. Derek, J. C. Mitchell, and A. Roy. Protocol Composition Logic (PCL). Computation, Meaning, and Logic: Articles dedicated to Gordon Plotkin, ENTCS vol. 172, Elsevier, pp. 311-358, 2007.
18. M. Dworkin. Recommendation for block cipher modes of operation: the CCM mode for authentication and confidentiality. NIST Special Publication 800-38C. May 2004.
19. S. Connor. IEEE P802.11s draft 1.08. January 2008.
20. T. Dierks and E. Rescorla. The transport layer security (TLS) protocol: version 1.2. RFC 5246. August 2008.
21. IEEE Standard 802.11i, Part 11: Wireless LAN medium access control (MAC) and physical layer (PHY) specifications: Amendment 6: Medium Access Control (MAC) security enhancements. IEEE Computer Society, 2004.
22. S. Gajek, M. Manulis, O. Pereira, A Sadeghi, and J. Schwenk. Universally composable security analysis of TLS - secure sessions with handshake and record layer protocols. ProvSec 2008, LNCS 5324, Springer, pp. 313-327, 2008.
23. R. Gennaro and Y. Lindell. A framework for password-based authenticated key exchange. ACM TISSEC, 9(2), pp. 181-234, 2006.
24. S. Goldwasser, S. Micali. Probabilistic Encryption. Journal of Computer and System Sciences, 28(2), pp. 270-299, 1984.
25. C. He, M. Sundararajan, A. Datta, A. Derek, J. C. Mitchell. A modular correctness proof of IEEE 802.11i and TLS. ACM Conference on Computer and Communications Security (CCS '05), pp. 2-15, ACM, 2005.
26. C. A. R. Hoare. Communicating Sequential Processes. Prentice Hall International, 1985. www.usingcsp.com
27. M. L. Hui and G. Lowe. Fault-preserving simplifying transformations for security protocols or Not just the Needham Schroeder Public Key Protocol. Journal of Computer Security, vol. 9, pp. 3-46, 2001.
28. C. Kaufman. Internet key exchange (IKEv2) protocol. RFC 4306. December 2005.
29. See also RFC 2409, The Internet key exchange, by D. Harkins and D. Carrel, November 1998.
30. H. Krawczyk. SIGMA: The 'SIGn-and-MAc' approach to authenticated Diffie-Hellman and its use in the IKE-protocols. Advances in Cryptology - CRYPTO 2003. LNCS vol. 2729, Springer, pp. 400-425, 2003.
31. D. Kuhlman, R. Moriarty, T. Braskich, S. Emeott, and M. Tripunitara. A correctness proof of a mesh security architecture. IEEE Computer Security Foundations Symposium 2008 (CSF 2008), IEEE Press, pp. 315-330, 2008.
32. B. LaMacchia, K. Lauter, and A. Mityagin. Stronger security of authenticated key exchange. ProvSec 2007. LNCS vol. 4784, Springer, pp. 1-16, 2007.
33. G. Lowe. An attack on the Needham-Schroeder public key authentication protocol. Information Processing Letters, 56(3), pp. 131-136, 1995.
34. G. Lowe. Breaking and fixing the Needham-Schroeder public-key protocol using FDR. Tools and Algorithms for Construction and Analysis of Systems (TACAS 1996), LNCS vol. 1055, Springer, pp. 147-166, 1996.
35. D. Micciancio and B. Warinschi. Soundness of formal encryption in the presence of active adversaries. Theory of Cryptography Conference (TCC 2004), LNCS vol. 2951, Springer, pp. 133-151, 2004.
36. A. Menezes and B. Ustaoglu. Comparing the pre- and post-specified peer models for key agreement. ACISP2008. LNCS vol. 5107, Springer, pp. 53-68, 2008.
37. P. Morrissey, N. Smart, and B. Warinschi. A modular security analysis of the TLS handshake protocol. Advances in Cryptology - ASIACRYPT 2008. LNCS vol. 5350, Springer, pp. 55-73, 2008.
38. R. Needham and M. Schroeder. Using encryption for authentication in large networks of computers. Communications of the ACM, 21(12), pp. 993-999, 1978.
39. C. Neuman, T. Yu, S. Hartman, and K. Raeburn. The Kerberos network authentication service (V5). RFC 4120. July 2005.
40. C. Rackoff and D. Simon. Non-interactive zero-knowledge proof of knowledge and chosen ciphertext attack. Advances in Cryptology - CRYPTO 1991, LNCS vol. 576, Springer, pp. 433-444, 1991.
41. P. Rogaway. Authenticated-encryption with associated-data. ACM Conference on Computer and Communications Security (CCS 2002), ACM Press, pp. 98-107, 2002.
42. V. Shoup. On formal models for secure key exchange. Manuscript, 1999.
43. C. Sprenger, M. Backes, D. Basin, B. Pfitzmann, and M. Waidner. Cryptographically sound theorem proving. Computer Security Foundations Workshop (CSFW 19), IEEE Press, pp. 153-166, 2006.
44. V. Shoup and A. Rubin. Session key distribution using smart cards. Advances in Cryptology - EUROCRYPT 1996, LNCS vol. 1070, Springer, pp. 321-331, 1996.
45. B. Warinschi. A computational analysis of the Needham-Schroeder-(Lowe) protocol. Journal of Computer Security, 13(3), pp. 565-591, 2005.
46. Earlier version in Computer Security Foundations Workshop (CSFW 16), IEEE Press, pp. 248-262, 2003.
47. M. Zhao, J. Walker, S. Conner, H. Suzuki, and J. Kruys. Abbreviated handshake for authenticated peer link establishment. Document IEEE 802.11-07/1999r4. Proposal to the to IEEE 802.11s Task Group, September 2007.