Parsing ambiguities in authentication and key establishment protocols

International Journal of Electronic Security and Digital Forensics

Volumn 3, Issue 1, 2010, Pages 82-94

  Chen, Liqun ^a   Mitchell, Chris J ^b  

^a HEWLETT PACKARD LABORATORIES   (United Kingdom)

^b UNIVERSITY OF LONDON   (United Kingdom)

Author keywords

Attack; Authentication; Key establishment; Security protocol.

Indexed keywords

COMPUTER NETWORKS; ELECTRONIC CRIME COUNTERMEASURES;

ATTACK; AUTHENTICATED KEY ESTABLISHMENT PROTOCOLS; INTERNATIONAL STANDARDS; KEY ESTABLISHMENT PROTOCOL; KEY ESTABLISHMENTS; SECURITY PROTOCOLS;

AUTHENTICATION;

EID: 77950669596     PISSN: 1751911X     EISSN: 17519128     Source Type: Journal    
DOI: 10.1504/IJESDF.2010.032333     Document Type: Article

References (25)

1. Bellare, M. and Rogaway, P. (1993) 'Entity authentication and key distribution', in D.R. Stinson (Ed.), Advances in Cryptology-CRYPTO '93, 13th Annual International Cryptology Conference, Santa Barbara, California, USA, 22-26 August 1993, Proceedings, Vol.773 of Lecture Notes in Computer Science. Berlin: Springer-Verlag, pp.232-249. (Pubitemid 24771256)
2. Bellare, M. and Rogaway, P. (1995) 'Provably secure session key distribution: the three party case', Proceedings of the Twenty-Seventh Annual ACM Symposium on Theory of Computing, 29 May-1 June 1995, Las Vegas, Nevada, USA, ACM Press, pp.57-66.
3. Bellare, M., Rogaway, P. and Wagner, D. (2004) 'The EAX mode of operation', in B. Roy and W. Meier (Eds.), Fast Software Encryption, 11th International Workshop, FSE 2004, Delhi, India, 5-7 February 2004, Revised Papers, Vol.3017 of Lecture Notes in Computer Science. Berlin: Springer-Verlag, pp.389-407.
4. Boyd, C.A. and Mathuria, A. (2003) Protocols for Key Establishment and Authentication. Berlin Heidelberg: Springer-Verlag.
5. Cheng, Z. and Comley, R. (2004) 'Attacks on an ISO/IEC 11770-11772 key establishment protocol', Cryptology ePrint Archive: Report 2004/249, September.
6. Cheng, Z. and Comley, R. (2006) 'Attacks on an ISO/IEC 11770-2 key establishment protocol', Int. J. Network Security, Vol.3, pp.290-295.
7. Degabriele, J.P. and Paterson, K.G. (2007) 'Attacking the IPsec standards in encryption-only configurations', Proceedings: 2007 IEEE Symposium on Security and Privacy (S&P 2007), 20-23 May 2007, Oakland, California, USA, IEEE Computer Society Press, Los Alamitos, California, pp.335-349.
8. International Organization for Standardization, Genève, Switzerland (1996) ISO/IEC,1770-11772: 1996, Information Technology-Security Techniques-Key Management-Part 2: Mechanisms using Symmetric Techniques.
9. International Organization for Standardization, Genève, Switzerland (1998) ISO/IEC, 9798-9803: 1998, Information Technology-Security Techniques-Entity authentication-Part 3: Mechanisms using Digital Signature Algorithms (2nd ed.).
10. International Organization for Standardization, Genève, Switzerland (1999) ISO/IEC, 9797-9801, Information Technology-Security Techniques-Message Authentication Codes (MACs)-Part 1: Mechanisms using a Block Cipher.
11. International Organization for Standardization, Genève, Switzerland (1999) ISO/IEC 9798-9804: 1999, Information Technology-Security Techniques-Entity Authentication-Part 4: Mechanisms using a Cryptographic Check Function,(2nd ed.).
12. International Organization for Standardization, Genève, Switzerland (1999) ISO/IEC, 9798-9802: 1999, Information Technology-Security Techniques-Entity Authentication-Part 2: Mechanisms using Symmetric Emccipherment Algorithms (2nd Ed.).
13. International Organization for Standardization, Genève, Switzerland (2000) ISO/IEC 9797-9802, Information Technology-Security Techniques-Message Authentication Codes (MACs)-Part 2: Mechanisms using a Hash-Function.
14. International Organization for Standardization, Genève, Switzerland (2005) ISO/IEC 11770-11772:1996/Cor.1: 2005, Information Technology-Security Techniques-Key Management-Part 2: Mechanisms using Symmetric Techniques: Technical Corrigendum 1, April.
15. International Organization for Standardization, Genève, Switzerland (2008) ISO/IEC 11770-11772: 2008, Information Technology-Security Techniques-Key Management-Part 2: Mechanisms using Symmetric Techniques (2nd Ed.)
16. International Organization for Standardization, Genève, Switzerland (2008) ISO/IEC 11770-11773: 2008, Information technology-Security Techniques-Key Management; Part 3: Mechanisms using Asymmetric Techniques (2nd Ed.).
17. International Organization for Standardization, Genève, Switzerland (2009) ISO/IEC 19772, Information Technology-Security Techniques-Authenticated Encryption Mechanisms, February.
18. Kohl, J. and Neuman, C. (1993) RFC 1510, The Kerberos Network Authentication Service (V5). Internet Engineering Task Force, September.
19. Mathuria, A. and Sriram, G. (2008) 'New attacks on ISO key establishment protocols', Cryptology ePrint Archive: Report 2008/336, July.
20. Mitchell, C.J. (1989) 'Limitations of challenge-response entity authentication', Electronics Letters, Vol.25, pp.1195-1196.
21. Mitchell, C.J. and Thomas, A. (1993) 'Standardising authentication protocols based on public key techniques', Journal of Computer Security, Vol.2, pp.23-36.
22. National Institute of Standards and Technology (NIST), Gaithersburg, MD (1997) Federal Information Processing Standards Publication 196 (FIPS PUB 196): Entity Authentication Using Public Key Cryptography, February
23. National Institute of Standards and Technology (NIST) NIST Special Publication 800-38D, Recommendation for Block Cipher Modes of Operation: Galois/Counter Mode (GCM) and GMAC, November.
24. Needham, R.M. and Schroeder, M.D. (1978) 'Using encryption for authentication in large networks of computers', Communications of the ACM, Vol.21, pp.993-999.
25. Neuman, B.C. and Ts'o, T. (1994) 'Kerberos: an authentication service for computer networks', IEEE Communications Magazine, Vol.32, No.9, pp.33-38, September 1994.