DocumentCode
154031
Title
Actor Key Compromise: Consequences and Countermeasures
Author
Basin, David ; Cremers, Cas ; Horvat, Marko
Author_Institution
Dept. of Comput. Sci., Inst. of Inf. Security, ETH Zurich, Zurich, Switzerland
fYear
2014
fDate
19-22 July 2014
Firstpage
244
Lastpage
258
Abstract
Despite Alice´s best efforts, her long-term secret keys may be revealed to an adversary. Possible reasons include weakly generated keys, compromised key storage, subpoena, and coercion. However, Alice may still be able to communicate securely with other parties, depending on the protocol used. We call the associated property resilience against Actor Key Compromise (AKC). We formalise this property in a symbolic model and identify conditions under which it can and cannot be achieved. In case studies that include TLS and SSH, we find that many protocols are not resilient against AKC. We implement a concrete AKC attack on the mutually authenticated TLS protocol.
Keywords
cryptographic protocols; AKC attack; SSH protocol; actor key compromise; associated property resilience; authenticated TLS protocol; secret keys; Encryption; Protocols; Public key; Reactive power; Resilience; Key Compromise Impersonation; SSH; Security protocols; TLS; adversary models; security properties;
fLanguage
English
Publisher
ieee
Conference_Titel
Computer Security Foundations Symposium (CSF), 2014 IEEE 27th
Conference_Location
Vienna
Type
conf
DOI
10.1109/CSF.2014.25
Filename
6957115
Link To Document