See this document in CiteSeerX!

Robustness Principles for Public Key Protocols (1995)  (Make Corrections)  (102 citations)
Ross Anderson, Roger Needham
CRYPTO: Proceedings of Crypto



  Home/Search   Context   Related

 
View or download:
cl.cam.ac.uk/ftp/user...robustness.ps.Z
fee.vutbr.cz/~cvrcek/ca...robustness.ps
cl.cam.ac.uk/users/rj...robustness.ps.Z
Cached:  PS.gz  PS  PDF   Image  Update  Help

From:  cl.cam.ac.uk/~rja14/ (more)
From:  cl.cam.ac.uk/users/rja14...tamper
Homepages:  R.Anderson  

Rate this article: (best)
  Comment on this article  
(Enter summary)

Abstract: : We present a number of attacks, some new, on public key protocols. We also advance a number of principles which may help designers avoid many of the pitfalls, and help attackers spot errors which can be exploited. 1 Introduction Cryptographic protocols are typically used to identify a user to a computer system, to authenticate a transaction, or to set up a key. They typically involve the exchange of about 2--5 messages, and they are very easy to get wrong: bugs have been found in well known... (Update)

Cited by:   More
Secrecy by Typing in Security Protocols - Abadi (1998)   (Correct)
Evaluating Differential Fault Analysis of Unknown Cryptosystems - Paillier (1999)   (Correct)
A New Public-Key Cryptosystem Based on Higher Residues - Naccache, Stern (1998)   (Correct)

Similar documents (at the sentence level):
6.9%:   Programming Satan's Computer - Anderson, Needham   (Correct)

Active bibliography (related documents):   More   All
0.5:   Tamper Resistance - a Cautionary Note - Anderson, Kuhn (1996)   (Correct)
0.5:   A Hierarchical Non-interactive Key-Sharing Scheme.. - Hanaoka, Nishioka.. (2002)   (Correct)
0.5:   Project Number - Ac Project Title   (Correct)

Similar documents based on text:   More   All
0.1:   Proving Safety of an Authentication Protocol: A Minimal Approach - George (1999)   (Correct)
0.1:   A Certification Scheme for Electronic Commerce - Crispo, Lomas (1996)   (Correct)
0.1:   Formal Analysis of the Kerberos Authentication System - Bella, Riccobene (1997)   (Correct)

Related documents from co-citation:   More   All
32:   Prudent engineering practice for cryptographic protocols - Abadi, Needham - 1996
31:   A method for obtaining digital signatures and public-key cryptosystems; Communic.. - Rivest, Shamir et al. - 1978
28:   Handbook of Applied Cryptography (context) - Menezes, Van Oorschot et al. - 1996

BibTeX entry:   (Update)

Ross Anderson and Roger Needham. Robustness principles for public key protocols. In Proc. Int'l. Conference on Advances in Cryptology (CRYPTO 95), volume 963 of Lecture Notes in Computer Science, pages 236--247. Springer-Verlag, 1995. http://citeseer.ist.psu.edu/anderson95robustness.html   More

@inproceedings{ anderson95robustness,
    author = "Ross Anderson and Roger Needham",
    title = "Robustness Principles for Public Key Protocols",
    booktitle = "{CRYPTO}: Proceedings of Crypto",
    year = "1995",
    url = "citeseer.ist.psu.edu/anderson95robustness.html" }
Citations (may not include all citations):
1529   A Method for Obtaining Digital Signatures and Public-Key Cry.. - Rivest, Shamir et al. - 1978
635   New Directions in Cryptography - Diffie, Hellman - 1976
411   How To Prove Yourself: Practical Solutions to Identification.. - Fiat, Shamir
302   A Logic of Authentication - Burrows, Abadi et al. - 1989
186   A Public-Key Cryptosystem and a Signature Scheme Based on Di.. (context) - El-Gamal - 1985
171   Prudent Engineering Practice for Cryptographic Protocols - Abadi, Needham - 1994
128   Why Cryptosystems Fail - Anderson - 1994
118   The Directory --- Authentication Framework (context) - ISO - 1988
112   Efficient identification and signatures for smart cards (context) - Schnorr
58   Authentication for Distributed Systems - Woo, Lam - 1992
56   Collision free hash functions and public key signature schem.. (context) - Damgard
40   Key distribution protocol for digital mobile communication s.. (context) - Tatebayashi, Matsuzaki et al.
38   the Risk of Opening Distributed Keys (context) - Burmester
22   Reasoning about Accountability in Protocols for Electronic C.. (context) - Kailar
20   Liability and Computer Security --- Nine Principles - Anderson
18   UEPS - A Second Generation Electronic Wallet (context) - Anderson
13   Protocols for Data Security (context) - DeMillo, Merritt - 1983
11   Towards Practical `Proven Secure' Authenticated Key Distribu.. (context) - Desmedt, Burmester - 1993
11   the need of multipermutations - Cryptanalysis of MD4 and SAF.. (context) - Vaudenay
10   Cryptanalysis and Protocol Failures (context) - Simmons - 1994
9   Attack on server-assisted authentication protocols - Anderson - 1992
8   Efficient Electronic Money (context) - Yacobi
7   cryptographic method and apparatus for public key exchange w.. (context) - Goss - 1990
4   The Internet Billing Server --- Transaction Protocol Alterna.. (context) - O'Toole - 1994
3   A practical RSA trapdoor (context) - Anderson - 1993
2   Three Systems for Cryptographic Protocol Verification (context) - Kemmerer, Meadows et al. - 1994
2   How to Break a `Secure' Oblivious Transfer Protocol (context) - Beaver
2   Attack on the Cryptographic Scheme NIKS-TAS (context) - Coppersmith
2   The Eurocrypt '92 Controversial Issue --- Trapdoor Primes an.. (context) - Rueppel, Lenstra et al.
2   Subliminal Channels; Past and Present (context) - Simmons - 1994
2   A Weakness in SAFER K-64 (context) - Knudsen
2   A fast off-line electronic currency protocol for smart cards (context) - Tang, Tygar
1   How to Break and repair a `Provable Secure' Untraceable Paym.. (context) - Pfitzmann, Waidner
1   Analysis of ISO/CCITT Document X.509 Annex D (context) - Coppersmith
1   talk given at Combridge Protocols Workshop (context) - Landrock - 1995
1   Anderson's RSA trapdoor can be broken - Kaliski - 1993
1   How to Break Another `Provably Secure' Payment System - Pfitzmann, Waidner
1   NF Maxemchuk (context) - Cards, Low
1   Distributed Computing Column (context) - Dwork



The graph only includes citing articles where the year of publication is known.

Documents on the same site (http://www.cl.cam.ac.uk/~rja14/):   More
Murphy's Law, the Fitness of Evolving Species, and the.. - Brady, Anderson, Ball (1999)   (Correct)
A New Family of Authentication Protocols - Anderson, Bergadano, Crispo.. (1998)   (Correct)
Tiger: A Fast New Hash Function - Anderson, Biham (1996)   (Correct)

Online articles have much greater impact   More about CiteSeer.IST   Add search form to your site   Submit documents   Feedback  

CiteSeer.IST - Copyright Penn State and NEC