Modular Security Analysis for Key Exchange and Authentication Protocols

Slide Note
Embed
Share

Explore the modular security analysis approach used to examine the security of key exchange and authentication protocols, focusing on the universally composable authentication with a global Public Key Infrastructure. The analysis involves splitting the system into smaller components, separately analyzing the security of each, and ensuring secure composition for overall system security. The results showcase the rigorous security definitions and realistic security models employed in evaluating commonly deployed protocols.

area290
area290 Follow

Uploaded on Oct 10, 2024 | 0 Views

Download Presentation

Please find below an Image/Link to download the presentation.

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author. Download presentation by click this link. If you encounter any issues during the download, it is possible that the publisher has removed the file from their server.

E N D

Presentation Transcript

  1. Universally Composable Authentication and Key-exchange with Global PKI Ran Canetti (TAU and BU) Daniel Shahaf (TAU) Margarita Vald(TAU) PKC2016 Taipei, Taiwan

  2. Goal: Analyze security of protocols in use. Need: Realistic security model Rigorous security definition Security proofs for systems in use

  3. Modular Security Analysis 1. Split the system into smaller components 2. Separately analyze security of each component 3. Need secure composition to argue security of the system Advantages: Essential for analysis due to protocols complexity Security guarantee holds for any environment

  4. Focus: security of key-exchange and authentication Our result: Modular analysis of commonly deployed key-exchange and authentication protocols.

  5. Authentication Authentication binds message to some long-term entity If R receives a message from S then S actually sent the message to R Authentication can be based on: Pre-shared key Shared password Biometrics Public-key [Diffie-Hellman76]

  6. Public-key Authentication (?,???) Public-key infrastructure ?,?,? To verify message ? from S: Verify ???(???,( ?,?,? ,?))=1 To auth. message ? to R: Compute = ????(?,?,?) ??????? Commonly used: Chip-and-pin debit cards, email authentication, TLS Is ??????? secure authentication protocol?

  7. Analysis of Public-key Authentication Game based: [Canetti-Krawczyk01, Brzuska-Fischlin-Smart-Warinschi-Williams13] Easy and natural Limited composition definition Auth. game( ) is secure auth. if no adversary can win the game Win/Lose Simulation based: Universal Composability and Abstract Cryptography [Canetti-Krawczyk02, Canetti04, Maurer-Tackmann-Coretti13, Kohlweiss-Maurer-Onete-Tackmann-Venturi14] General composition is secure auth. if Exec. indistinguishable from Ideal auth. Exec. Ideal auth.

  8. Model vs. Reality Discrepancy Observation: Analysis treats the PKI as local to the protocol In reality Long-lived PKI Joint State Universal Composability Same key for all sessions fresh key per session globally accessible PKI accessible only by the session participants Is this an issue? Yes!

  9. Example: Transferability ??????? Authentication IDEAL Authentication Public-key infrastructure ?,?,? ?,?,? ???? ?,?,????(?,?,?) Guarantees: Authentication Transferable! Non-transferable Guarantees: Authentication Non-transferable How to overcome this gap? ??????? is distinguishable from IDEAL Authentication

  10. Approach #1 Find new protocols: [Dodis-Katz-Smith-Walfish09] Realize non-transferable authentication with globally available setup Additional cost: assumptions, communication, rounds What about the security of ??????? ? Is it insecure? Is it insecure as a plain authentication protocol?

  11. This Work Avoid extra properties in definition of authentication: Framework for analysis of authentication and KE with globally accessible PKI Analyze the existing protocols ??????? ISO 9798-3 Key-exchange

  12. Secure UC Authentication Exec. IDEAL Authentication Certificate authority Certificate authority Eliminates non- transferability authentication Still provides ????(?,?,?,???) ?,?,? ?,?,? ???? ?? ? ?????? ??? .???????? ??: ????. ?????

  13. Secure GUC Authentication REAL REAL* IDEAL Authentication New composition theorem ??????? Authentication Certificate authority Public-key infrastructure Certificate authority ?,?,? ?,?,? ?,?,????(?,?,?) ?,?,????(?,?,?) ???? Theorem: ??????? ?? ? ?????? ??? ?????????? ????????

  14. Conclusion Framework for analysis of authentication and key-exchange Realistic modeling of protocol execution Allows modular analysis Future directions: Analyze other authentication and KE protocols with globally available PKI e.g. PKI modes of TLS Realistic modeling of other tasks e.g. secure channels

Related


Understanding Authentication Mechanisms and Security Vulnerabilities

Understanding Authentication Mechanisms and Security Vulnerabilities

lev_tre
Cryptography and Number Theory Crash Course

Cryptography and Number Theory Crash Course

lule_bin
Secure Authentication Using ISO 15693 RFID Tags

Secure Authentication Using ISO 15693 RFID Tags

rtrez
Secure Composition of Key Exchange Protocols

Secure Composition of Key Exchange Protocols

forb_470
An Open-Source SPDM Implementation for Secure Device Communication

An Open-Source SPDM Implementation for Secure Device Communication

eley395
Challenges in Key Exchange Protocols

Challenges in Key Exchange Protocols

virgi
DAVA Drugs Authentication & Verification Application by National Informatics Centre

DAVA Drugs Authentication & Verification Application by National Informatics Centre

ruxt_322
Security and Authentication in Electronic Filing Systems: Arkansas Subcommittee Report

Security and Authentication in Electronic Filing Systems: Arkansas Subcommittee Report

harri
Understanding Kerberos Authentication in Network Security

Understanding Kerberos Authentication in Network Security

pcapp
Evolution of User Authentication Practices: Moving Beyond IP Filtering

Evolution of User Authentication Practices: Moving Beyond IP Filtering

rin_fi
Empirical Analysis of Kuwaiti Dinar Exchange Rate Behavior and Misalignment

Empirical Analysis of Kuwaiti Dinar Exchange Rate Behavior and Misalignment

kalina
Security and Privacy in 3G/4G/5G Networks: The AKA Protocol

Security and Privacy in 3G/4G/5G Networks: The AKA Protocol

muey769
Taming Adaptivity in YOSO Protocols: The Modular Way

Taming Adaptivity in YOSO Protocols: The Modular Way

pkhy
NRC Licensing of Advanced Reactors and NuScale Small Modular Reactor Design Overview

NRC Licensing of Advanced Reactors and NuScale Small Modular Reactor Design Overview

jack_an
Modular Budgeting: A Case Study in Preparing a Budget for Research Projects

Modular Budgeting: A Case Study in Preparing a Budget for Research Projects

joziah
ASP.NET Web API Security and Authentication Overview

ASP.NET Web API Security and Authentication Overview

dray_514
Faster Implementation of Modular Exponentiation in JavaScript

Faster Implementation of Modular Exponentiation in JavaScript

daes798
Understanding Authentication and Authorization in Information Assurance

Understanding Authentication and Authorization in Information Assurance

zam_nus
Setting Up Multi-Factor Authentication at Moraine Park

Setting Up Multi-Factor Authentication at Moraine Park

leid_3
Two-Step Authentication Implementation for Enhanced Security

Two-Step Authentication Implementation for Enhanced Security

lumina
Foreign Exchange Regulations in India: FERA and FEMA Overview

Foreign Exchange Regulations in India: FERA and FEMA Overview

jang572
Securing Protocols with Fully Encrypted Protocols (FEPs)

Securing Protocols with Fully Encrypted Protocols (FEPs)

perreira_n
Understanding SAML for Secure Single Sign-On

Understanding SAML for Secure Single Sign-On

amrutham
Enhancing Security with Two-Factor Authentication in Funding & Tenders Portal

Enhancing Security with Two-Factor Authentication in Funding & Tenders Portal

torquil

More Related Content

Uncovering Flaws in Authentication Solutions: A Privacy Concern
Uncovering Flaws in Authentication Solutions: A Privacy Concern
Setting Up Two-Factor Authentication for HRMS Access
Setting Up Two-Factor Authentication for HRMS Access
Understanding Cryptographic Protocols and Key Exchange
Understanding Cryptographic Protocols and Key Exchange
Authentication and Authorization in Astronomy: A Deep Dive into ASTERICS
Authentication and Authorization in Astronomy: A Deep Dive into ASTERICS
Comprehensive Examination Questions on Data Management Systems and Security Protocols
Comprehensive Examination Questions on Data Management Systems and Security Protocols
Overview of Identification Protocols in CS255 by Dan Boneh
Overview of Identification Protocols in CS255 by Dan Boneh
Understanding IoT Security Standards and Protocols
Understanding IoT Security Standards and Protocols
Understanding Foreign Exchange Rate Systems and Their Impact on Economies
Understanding Foreign Exchange Rate Systems and Their Impact on Economies
Foreign Exchange Management Act, 1999: Overview and Structure
Foreign Exchange Management Act, 1999: Overview and Structure
Advancing Deep Space Exploration Capabilities: NextSTEP Modular ECLSS Effort
Advancing Deep Space Exploration Capabilities: NextSTEP Modular ECLSS Effort
Understanding Exchange Rates: An Asset Approach
Understanding Exchange Rates: An Asset Approach
Guide to Setting Up EU Login and Two-Factor Authentication
Guide to Setting Up EU Login and Two-Factor Authentication
Understanding Strong Customer Authentication (SCA) for Online Payments in Ireland
Understanding Strong Customer Authentication (SCA) for Online Payments in Ireland
Understanding Modular Arithmetic and Rings in Mathematics
Understanding Modular Arithmetic and Rings in Mathematics
Exploring the World of Modular Data Centers and OCP Initiatives
Exploring the World of Modular Data Centers and OCP Initiatives
Exploring Modular Arithmetic and Time Concepts in 7th Grade Math
Exploring Modular Arithmetic and Time Concepts in 7th Grade Math
Understanding Modular Layer 2 in OpenStack Neutron
Understanding Modular Layer 2 in OpenStack Neutron
Insights on Small Modular Reactors (SMRs) in the UK
Insights on Small Modular Reactors (SMRs) in the UK
Towards Practical Generic Zero-Knowledge Protocols
Towards Practical Generic Zero-Knowledge Protocols
Implementing 2FA for UW Azure AD: Best Practices and Options
Implementing 2FA for UW Azure AD: Best Practices and Options
Understanding Distance Bounding Protocols in Authentication
Understanding Distance Bounding Protocols in Authentication
Understanding Kerberos Authentication Protocol
Understanding Kerberos Authentication Protocol
BCA 601(N): Computer Network Security
BCA 601(N): Computer Network Security
Understanding Transport Layer Security (TLS)
Understanding Transport Layer Security (TLS)