• DocumentCode
    154031
  • Title

    Actor Key Compromise: Consequences and Countermeasures

  • Author

    Basin, David ; Cremers, Cas ; Horvat, Marko

  • Author_Institution
    Dept. of Comput. Sci., Inst. of Inf. Security, ETH Zurich, Zurich, Switzerland
  • fYear
    2014
  • fDate
    19-22 July 2014
  • Firstpage
    244
  • Lastpage
    258
  • Abstract
    Despite Alice´s best efforts, her long-term secret keys may be revealed to an adversary. Possible reasons include weakly generated keys, compromised key storage, subpoena, and coercion. However, Alice may still be able to communicate securely with other parties, depending on the protocol used. We call the associated property resilience against Actor Key Compromise (AKC). We formalise this property in a symbolic model and identify conditions under which it can and cannot be achieved. In case studies that include TLS and SSH, we find that many protocols are not resilient against AKC. We implement a concrete AKC attack on the mutually authenticated TLS protocol.
  • Keywords
    cryptographic protocols; AKC attack; SSH protocol; actor key compromise; associated property resilience; authenticated TLS protocol; secret keys; Encryption; Protocols; Public key; Reactive power; Resilience; Key Compromise Impersonation; SSH; Security protocols; TLS; adversary models; security properties;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Computer Security Foundations Symposium (CSF), 2014 IEEE 27th
  • Conference_Location
    Vienna
  • Type

    conf

  • DOI
    10.1109/CSF.2014.25
  • Filename
    6957115