Analysis of key-exchange protocols and their use for building secure channels

Analysis of key-exchange protocols and their use for building secure channels (2001)

Cached

Download Links

[www.iacr.org]
[www.mathmagic.cn]
[eprint.iacr.org]

Other Repositories/Bibliography

DBLP

by Ran Canetti , Hugo Krawczyk

Citations:

204 - 12 self

BibTeX

@INPROCEEDINGS{Canetti01analysisof,
    author = {Ran Canetti and Hugo Krawczyk},
    title = {Analysis of key-exchange protocols and their use for building secure channels},
    booktitle = {},
    year = {2001},
    pages = {453--474},
    publisher = {Springer-Verlag}
}

Years of Citing Articles

Bookmark

OpenURL

Abstract

Abstract. We present a formalism for the analysis of key-exchange protocols that combines previous definitional approaches and results in a definition of security that enjoys some important analytical benefits: (i) any key-exchange protocol that satisfies the security definition can be composed with symmetric encryption and authentication functions to provide provably secure communication channels (as defined here); and (ii) the definition allows for simple modular proofs of security: one can design and prove security of key-exchange protocols in an idealized model where the communication links are perfectly authenticated, and then translate them using general tools to obtain security in the realistic setting of adversary-controlled links. We exemplify the usability of our results by applying them to obtain the proof of two classes of key-exchange protocols, Diffie-Hellman and key-transport, authenticated via symmetric or asymmetric techniques. 1

Citations

2292	New directions in cryptography - Diffie, Hellmen - 1976
2057	Handbook of Applied Cryptography - Menezes, Oorschot, et al. - 1997
1134	Security architecture for the internet protocol - Kent, Atkinson - 1998
1001	Probabilistic encryption - Goldwasser, Micali - 1984
892	C.: The knowledge complexity of interactive proof-systems (extended abstract - Goldwasser, Micali, et al. - 1985
783	Using encryption for authentication in large networks of computers - Needham, Schroeder - 1978
544	How to construct random functions - Goldreich, Goldwasser, et al. - 1986
394	A practical public key cryptosystem provably secure against adaptive chosen ciphertext attack - Cramer, Shoup - 1998
388	Relations Among Notions of Security for Public-Key Encryption Schemes - Bellare, Desai, et al. - 1998
388	Entity authentication and key distribution - Bellare, Rogaway - 1994
331	Security and Composition of Multiparty Cryptographic Protocols - Canetti - 2000
296	A Concrete Security Treatment of Symmetric Encryption - Bellare, Desai, et al. - 1997
234	New directions in cryptography - e, Hellman - 1976
231	Authentication and Authenticated Key Exchanges - Diffie, Oorschot, et al. - 1992
193	A modular approach to the design and analysis of authentication and key exchange protocols (extended abstract - Bellare, Canetti, et al. - 1998
185	Provably secure session key distribution---the three party case - Bellare, Rogaway - 1995
172	Authenticated encryption: Relations among notions and analysis of the generic composition paradigm - Bellare, Namprempre
140	Foundations of cryptography (fragments of a book - Goldreich - 1995
130	A Model for Asynchronous Reactive Systems and its Application to Secure Message Transmission - Pfitzmann, Waidner - 2001
126	Secure Multiparty Protocols and Zero-knowledge proof Systems Tolerating a Faulty Minority - Beaver - 1991
107	A probabilistic poly-time framework for protocol analysis - Lincoln, Mitchell, et al. - 1998
101	The Order of Encryption and Authentication for Protecting Communications (or: How Secure Is SSL - Krawczyk - 2001
99	SKEME: A Versatile Secure Key Exchange Mechanism for Internet", from - Krawczyk
94	H.: Public-key cryptography and password protocols - Halevi, Krawczyk - 1999
77	Fair Computation of General Functions - Goldwasser, Levin - 1990
56	A key recovery attack on discrete log-based schemes using a prime order subgroup - Lim, Lee - 1997
50	Complete Characterization of Security Notions for Probabilistic PrivateKey Encryption - Katz, Yung
49	Systematic design of two-party authentication protocols - Bird, Gopal, et al. - 1991
44	Authentication and authenticated key exchanges - e, Oorschot, et al. - 1992
39	An identity-based key-exchange protocol - Günther - 1990
39	Cryptographic security of reactive systems - Pfitzmann, Schunter, et al.
25	A Unified Framework for Analyzing Security of Protocols - Canetti
15	A General Framework for Formal Notions of 'Secure' Systems - Pfitzmann, Waidner - 1994
12	On Formal Models for Secure Key Exchange, Theory of Cryptography Library - Shoup - 1999
11	Key exchange protocols and their security analysis - Blake-Wilson, Johnson, et al.
7	9798-3, “Entity authentication mechanisms — Part 3: Entity authentication using asymmetric techniques - IS - 1993
4	Authenticated key exchange in the public key model. manuscript - Bellare, Petrank, et al. - 1995
4	Entity authentication and key transport protocols employing asymmetric techniques - Blake-Wilson, Menezes - 1997
4	A logic for authentication," DEC Systems Research Center - Burrows, Abadi, et al. - 1990
4	Maintaining authenticated communication - CANETTI, HALEVI, et al. - 1997
2	A logic for authentication,” DEC Systems Research Center - Burrows, Abadi, et al. - 1990
1	Proving secure composition of key-exchange protocols with any application”, in preparation - Canetti, Krawczyk
1	A A comparison with [34] Section 1.1 mentioned the work by Shoup [34] on definitions and analysis of ke protocols. This appendix further expands on some of the differences between that work and ours. We start with a short summary of the relevant parts of - html
1	Non-malleable cryptography, SICOMP - Dolev, Dwork, et al. - 1991