FRINK Linked Data Fragments server

Matches in SemOpenAlex for { <https://semopenalex.org/work/W2515070993> ?p ?o ?g. }

• W2515070993 abstract "Key exchange protocols allow two parties at remote locations to compute a shared secret key. The common security notions for such protocols are secrecy and authenticity, but many widely deployed protocols and standards name another property, called key confirmation, as a major design goal. This property should guarantee that a party in the key exchange protocol is assured that another party also holds the shared key. Remarkably, while secrecy and authenticity definitions have been studied extensively, key confirmation has been treated rather informally so far. In this work, we provide the first rigorous formalization of key confirmation, leveraging the game-based security framework well-established for secrecy and authentication notions for key exchange. We define two flavors of key confirmation, full and almost-full key confirmation, taking into account the inevitable asymmetry of the roles of the parties with respect to the transmission of the final protocol message. These notions capture the strongest level of key confirmation reasonably expectable for the two communication partners of the key exchange. We demonstrate the benefits of having precise security definitions for key-confirmation by applying them to the next version of the Transport Layer Security (TLS) protocol, version 1.3, currently developed by the Internet Engineering Task Force (IETF). Our analysis shows that the full handshake as specified in the TLS 1.3 draft draft-ietf-tls-tls13-10 achieves desirable notions of key confirmation for both clients and servers. While key confirmation is generally understood and in the TLS 1.3 draft described as being obtained from the Finished messages exchanged, interestingly we can show that the full TLS 1.3 handshake provides key confirmation even without those messages, shedding a formal light on the security properties different handshake messages entail. We further demonstrate the usefulness of rigorous definition by revisiting a folklore approach to establish key confirmation (as discussed for example in SP 800-56A of NIST). We provide a formalization as a generic protocol transformation and show that the resulting protocols enjoy strong key confirmation guarantees, thus confirming its beneficial use in both theoretical and practical protocol designs." @default.
• W2515070993 created "2016-09-16" @default.
• W2515070993 creator A5011305569 @default.
• W2515070993 creator A5026672767 @default.
• W2515070993 creator A5033110633 @default.
• W2515070993 creator A5089630063 @default.
• W2515070993 date "2016-05-01" @default.
• W2515070993 modified "2023-10-02" @default.
• W2515070993 title "Key Confirmation in Key Exchange: A Formal Treatment and Implications for TLS 1.3" @default.
• W2515070993 cites W1502577962 @default.
• W2515070993 cites W1502931931 @default.
• W2515070993 cites W1527077352 @default.
• W2515070993 cites W1542059364 @default.
• W2515070993 cites W1608841472 @default.
• W2515070993 cites W1967714718 @default.
• W2515070993 cites W1975344666 @default.
• W2515070993 cites W1981449595 @default.
• W2515070993 cites W2070775894 @default.
• W2515070993 cites W2092279637 @default.
• W2515070993 cites W2107506969 @default.
• W2515070993 cites W2117455301 @default.
• W2515070993 cites W2124926080 @default.
• W2515070993 cites W2135654420 @default.
• W2515070993 cites W2153041122 @default.
• W2515070993 cites W2153281696 @default.
• W2515070993 cites W2164428090 @default.
• W2515070993 cites W2174925257 @default.
• W2515070993 cites W4289127653 @default.
• W2515070993 doi "https://doi.org/10.1109/sp.2016.34" @default.
• W2515070993 hasPublicationYear "2016" @default.
• W2515070993 type Work @default.
• W2515070993 sameAs 2515070993 @default.
• W2515070993 citedByCount "31" @default.
• W2515070993 countsByYear W25150709932016 @default.
• W2515070993 countsByYear W25150709932017 @default.
• W2515070993 countsByYear W25150709932018 @default.
• W2515070993 countsByYear W25150709932019 @default.
• W2515070993 countsByYear W25150709932020 @default.
• W2515070993 countsByYear W25150709932021 @default.
• W2515070993 countsByYear W25150709932022 @default.
• W2515070993 countsByYear W25150709932023 @default.
• W2515070993 crossrefType "proceedings-article" @default.
• W2515070993 hasAuthorship W2515070993A5011305569 @default.
• W2515070993 hasAuthorship W2515070993A5026672767 @default.
• W2515070993 hasAuthorship W2515070993A5033110633 @default.
• W2515070993 hasAuthorship W2515070993A5089630063 @default.
• W2515070993 hasConcept C111919701 @default.
• W2515070993 hasConcept C126266803 @default.
• W2515070993 hasConcept C130881749 @default.
• W2515070993 hasConcept C135530808 @default.
• W2515070993 hasConcept C142724271 @default.
• W2515070993 hasConcept C148176105 @default.
• W2515070993 hasConcept C148417208 @default.
• W2515070993 hasConcept C148730421 @default.
• W2515070993 hasConcept C14982408 @default.
• W2515070993 hasConcept C151319957 @default.
• W2515070993 hasConcept C160333310 @default.
• W2515070993 hasConcept C178489894 @default.
• W2515070993 hasConcept C184660509 @default.
• W2515070993 hasConcept C184842701 @default.
• W2515070993 hasConcept C203062551 @default.
• W2515070993 hasConcept C204787440 @default.
• W2515070993 hasConcept C205009425 @default.
• W2515070993 hasConcept C26517878 @default.
• W2515070993 hasConcept C2776452267 @default.
• W2515070993 hasConcept C2777572472 @default.
• W2515070993 hasConcept C2778000800 @default.
• W2515070993 hasConcept C2780385302 @default.
• W2515070993 hasConcept C31258907 @default.
• W2515070993 hasConcept C33884865 @default.
• W2515070993 hasConcept C38652104 @default.
• W2515070993 hasConcept C41008148 @default.
• W2515070993 hasConcept C71924100 @default.
• W2515070993 hasConcept C79974875 @default.
• W2515070993 hasConcept C99674996 @default.
• W2515070993 hasConceptScore W2515070993C111919701 @default.
• W2515070993 hasConceptScore W2515070993C126266803 @default.
• W2515070993 hasConceptScore W2515070993C130881749 @default.
• W2515070993 hasConceptScore W2515070993C135530808 @default.
• W2515070993 hasConceptScore W2515070993C142724271 @default.
• W2515070993 hasConceptScore W2515070993C148176105 @default.
• W2515070993 hasConceptScore W2515070993C148417208 @default.
• W2515070993 hasConceptScore W2515070993C148730421 @default.
• W2515070993 hasConceptScore W2515070993C14982408 @default.
• W2515070993 hasConceptScore W2515070993C151319957 @default.
• W2515070993 hasConceptScore W2515070993C160333310 @default.
• W2515070993 hasConceptScore W2515070993C178489894 @default.
• W2515070993 hasConceptScore W2515070993C184660509 @default.
• W2515070993 hasConceptScore W2515070993C184842701 @default.
• W2515070993 hasConceptScore W2515070993C203062551 @default.
• W2515070993 hasConceptScore W2515070993C204787440 @default.
• W2515070993 hasConceptScore W2515070993C205009425 @default.
• W2515070993 hasConceptScore W2515070993C26517878 @default.
• W2515070993 hasConceptScore W2515070993C2776452267 @default.
• W2515070993 hasConceptScore W2515070993C2777572472 @default.
• W2515070993 hasConceptScore W2515070993C2778000800 @default.
• W2515070993 hasConceptScore W2515070993C2780385302 @default.
• W2515070993 hasConceptScore W2515070993C31258907 @default.
• W2515070993 hasConceptScore W2515070993C33884865 @default.
• W2515070993 hasConceptScore W2515070993C38652104 @default.

• next