Sciweavers

Free Online Productivity Tools i2Speak i2Symbol i2OCR iTex2Img iWeb2Print iWeb2Shot i2Type iPdf2Split iPdf2Merge i2Bopomofo i2Arabic i2Style i2Image i2PDF iLatex2Rtf Sci2ools

9

ESORICS
2009
Springer

favoriteEmaildiscussreport

121views Security Privacy» more ESORICS 2009»

A Generic Security API for Symmetric Key Management on Cryptographic Devices

14 years 5 months ago

A Generic Security API for Symmetric Key Management on Cryptographic Devices

Download www.lsv.ens-cachan.fr

Security APIs are used to define the boundary between trusted and untrusted code. The security properties of existing APIs are not always clear. In this paper, we give a new generic API for managing symmetric keys on a trusted cryptographic device. We state and prove security properties for our API. In particular, our API offers a high level of security even when the host machine is controlled by an attacker. Our API is generic in the sense that it can implement a wide variety of (symmetric key) protocols. As a proof of concept, we give an algorithm for automatically instantiating the API commands for a given key management protocol. We demonstrate the algorithm on a set of key establishment protocols from the Clark-Jacob suite.

Véronique Cortier, Graham Steel

Real-time Traffic

API Commands | ESORICS 2009 | Key Establishment Protocols | Security Privacy | Trusted Cryptographic Device |

claim paper

Related Content

» Lazy Revocation in Cryptographic File Systems

» A DRM security architecture for home networks

» A Protocol for Programmable Smart Cards

» Trust Key Management Scheme for Wireless Body Area Networks

» Architecture for Protecting Critical Secrets in Microprocessors

» You Cannot Hide behind the Mask Power Analysis on a Provably Secure SBox Implementation

Post Info
More Details (n/a)

Added	23 Nov 2009
Updated	23 Nov 2009
Type	Conference
Year	2009
Where	ESORICS
Authors	Véronique Cortier, Graham Steel

Comments (0)