Results 1 -
4 of
4
Development of Authentication Protocols: Some Misconceptions and a New Approach
- Proceedings of IEEE Computer Security Foundations Workshop VII, IEEE Computer
, 1994
"... Various published authentication protocols that employ symmetric cryptographic algorithms are examined. A number of misconceptions found in the specification, design and implementation of these protocols are revealed. Some misconceptions are considered responsible for definite security flaws, while ..."
Abstract
-
Cited by 12 (4 self)
- Add to MetaCart
Various published authentication protocols that employ symmetric cryptographic algorithms are examined. A number of misconceptions found in the specification, design and implementation of these protocols are revealed. Some misconceptions are considered responsible for definite security flaws, while others are shown to cause weaknesses which may help in attacks on the cryptographic mechanisms. We identify an underlying problem and attempt a remedy by developing a methodology for the development of secure and strong authentication protocols.
Block Chaining Modes of Operation
, 2000
"... In this paper modes of operation for block ciphers are considered. The focus is on a special class of modes, called the block chaining modes. We discuss modes with finite and infinite error propagation and propose the Accumulated Block Chaining (ABC) mode of the latter type. ABC is proposed for ..."
Abstract
-
Cited by 7 (1 self)
- Add to MetaCart
In this paper modes of operation for block ciphers are considered. The focus is on a special class of modes, called the block chaining modes. We discuss modes with finite and infinite error propagation and propose the Accumulated Block Chaining (ABC) mode of the latter type. ABC is proposed for application for the Advanced Encryption Standard.
On the Use of Encryption in Cryptographic Protocols
- Codes and Cyphers
, 1995
"... In the past few years the International Organisation for Standardization (ISO) and International ElectroTechnical Commission (IEC) have been jointly developing several standards for entity authentication and/or encryption key exchange. Some of the mechanisms proposed use a symmetric block encryption ..."
Abstract
-
Cited by 3 (0 self)
- Add to MetaCart
In the past few years the International Organisation for Standardization (ISO) and International ElectroTechnical Commission (IEC) have been jointly developing several standards for entity authentication and/or encryption key exchange. Some of the mechanisms proposed use a symmetric block encryption algorithm, in a particular mode of operation, to achieve security. In this paper a general property of the algorithm is explained. It is shown that some of the protocols in the ISO/IEC draft documents for standardisation are vulnerable to an attack which exploits this property.
Classification of Cryptographic Techniques in Authentication Protocols
- In Proceedings 1994 Workshop on Selected Areas in Cryptography
"... In many published authentication protocols, the cryptographic services are coarsely specified in that, whenever needed, a uniform notation is used to denote them while the exact nature of protection required is left unclear. In this paper we reason that such a coarse treatment not only forms a found ..."
Abstract
-
Cited by 1 (0 self)
- Add to MetaCart
In many published authentication protocols, the cryptographic services are coarsely specified in that, whenever needed, a uniform notation is used to denote them while the exact nature of protection required is left unclear. In this paper we reason that such a coarse treatment not only forms a foundation why authentication protocols are error prone, but is also responsible for a typical feature of misusing redundancy which causes many protocols to be unnecessarily weak. We propose new notations to refine protocol specifications. The refinement leads to a methodology for the development of secure and strong authentication protocols.
