Authentication without Elision: Partially Specified Protocols, Associated Data, and Cryptographic Models Described by Code

13 years 8 months ago

Download www.cs.ucdavis.edu

Specification documents for real-world authentication protocols typically mandate some aspects of a protocol's behavior but leave other features optional or undefined. In addition, real-world schemes often include parameter negotiations, authenticate associated data, and support a multiplicity of options. The cryptographic community has routinely elided such matters from our definitions, schemes, and proofs. We propose encompassing them by explicitly modeling the presence of unspecified protocol functionality. To demonstrate, we provide a new treatment for mutual authentication in the public-key setting, doing this in the computational cryptographic tradition. In our model, compactly described in pseudocode, a protocol core (PC) will call out to protocol details (PD), but, for defining security, such calls will be serviced by the adversary. Parties accepting an authentication exchange will output a string of associated data, the value of which may be determined by the PD calls. W...

Phillip Rogaway, Till Stegers

Real-time Traffic

Associated Data | CSFW 2009 | Real-world Authentication Protocols | Security Privacy | Unspecified Protocol Functionality |

claim paper

Post Info
More Details (n/a)

Added	14 Aug 2010
Updated	14 Aug 2010
Type	Conference
Year	2009
Where	CSFW
Authors	Phillip Rogaway, Till Stegers

Comments (0)

Sciweavers

Authentication without Elision: Partially Specified Protocols, Associated Data, and Cryptographic Models Described by Code

Associated Data | CSFW 2009 | Real-world Authentication Protocols | Security Privacy | Unspecified Protocol Functionality |

Explore & Download

Productivity Tools

Document Tools

Image Tools

Sciweavers