Actor Key Compromise: Consequences and Countermeasures

2014 IEEE 27th Computer Security Foundations Symposium Pub Date : 2014-07-19 DOI:10.1109/CSF.2014.25

D. Basin, C. Cremers, Marko Horvat

引用次数: 12

Abstract

Despite Alice's best efforts, her long-term secret keys may be revealed to an adversary. Possible reasons include weakly generated keys, compromised key storage, subpoena, and coercion. However, Alice may still be able to communicate securely with other parties, depending on the protocol used. We call the associated property resilience against Actor Key Compromise (AKC). We formalise this property in a symbolic model and identify conditions under which it can and cannot be achieved. In case studies that include TLS and SSH, we find that many protocols are not resilient against AKC. We implement a concrete AKC attack on the mutually authenticated TLS protocol.

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

行动者关键妥协:后果和对策

尽管爱丽丝尽了最大的努力，但她的长期密钥可能会泄露给对手。可能的原因包括弱生成的密钥、损坏的密钥存储、传票和强制。但是，根据所使用的协议，Alice仍然可以安全地与其他方进行通信。我们将相关属性称为针对参与者密钥泄露(AKC)的弹性。我们在一个符号模型中形式化了这个属性，并确定了它可以实现和不能实现的条件。在包括TLS和SSH在内的案例研究中，我们发现许多协议对AKC没有弹性。我们对相互认证的TLS协议实现了一个具体的AKC攻击。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文去求助

来源期刊

2014 IEEE 27th Computer Security Foundations Symposium

自引率

0.00%

发文量

期刊最新文献

Compositional Information-Flow Security for Interactive Systems Automated Generation of Attack Trees Noninterference under Weak Memory Models TUC: Time-Sensitive and Modular Analysis of Anonymous Communication A Sound Abstraction of the Parsing Problem