A cryptographically sound security proof of the Needham-Schroeder-Lowe public-key protocol

A cryptographically sound security proof of the Needham-Schroeder-Lowe public-key protocol (2004)

Cached

Download Links

Other Repositories/Bibliography

DBLP

by Michael Backes , Birgit Pfitzmann

Venue:	JOURNAL ON SELECTED AREAS IN COMMUN.
Citations:	26 - 13 self

BibTeX

@MISC{Backes04acryptographically,
    author = {Michael Backes and Birgit Pfitzmann},
    title = {A cryptographically sound security proof of the Needham-Schroeder-Lowe public-key protocol},
    year = {2004}
}

Years of Citing Articles

Bookmark

OpenURL

Abstract

We present a cryptographically sound security proof of the well-known Needham-Schroeder-Lowe public-key protocol for entity authentication. This protocol was previously only proved over unfounded abstractions from cryptography. We show that it is secure against arbitrary active attacks if it is implemented using standard provably secure cryptographic primitives. Nevertheless, our proof does not have to deal with the probabilistic aspects of cryptography and is hence in the scope of current automated proof tools. We achieve this by exploiting a recently proposed Dolev-Yao-style cryptographic library with a provably secure cryptographic implementation. Besides establishing the cryptographic security of the Needham-Schroeder-Lowe protocol, our result exemplifies the potential of this cryptographic library and paves the way for the cryptographically sound verification of security protocols by automated proof tools.

Citations

1040	R.: A logic for authentication - Burrows, Abadi, et al. - 1989
1001	Probabilistic encryption - Goldwasser, Micali - 1984
893	The knowledge complexity of interactive proof systems - Goldwasser, Micali, et al. - 1989
872	A.C.-C.: On the security of public key protocols - Dolev, Yao - 1983
783	Using encryption for authentication in large networks of computers - Needham, Schroeder - 1978
699	A.D.: A calculus for cryptographic protocols: The Spi calculus - Abadi, Gordon - 1997
548	Breaking and fixing the Needham-Schroeder public-key protocol using CSP and FDR - Lowe
484	Universally composable security: A new paradigm for cryptographic protocols - Canetti - 2005
425	How to play any mental game, or a completeness theorem for protocols with honest majority - Goldreich, Micali, et al. - 1987
407	Protocols for secure computation - Yao - 1982
394	A practical public key cryptosystem provably secure against adaptive chosen ciphertext attack - Cramer, Shoup - 1998
388	Relations Among Notions of Security for Public-Key Encryption Schemes - Bellare, Desai, et al. - 1998
388	Entity authentication and key distribution - Bellare, Rogaway - 1994
368	The inductive approach to verifying cryptographic protocols - Paulson - 1998
331	Security and Composition of Multiparty Cryptographic Protocols - Canetti - 2000
295	Non-interactive zero-knowledge proof of knowledge and chosen ciphertext attack - Rackoff, Simon - 1992
267	P.: Reconciling two views of cryptography (the computational soundness of formal encryption - Abadi, Rogaway - 2002
206	The random oracle methodology, revisited - Canetti, Halevi
187	An attack on the Needham-Schroeder public-key authentication protocol - Lowe - 1995
130	A Model for Asynchronous Reactive Systems and its Application to Secure Message Transmission - Pfitzmann, Waidner - 2001
126	Secure Multiparty Protocols and Zero-knowledge proof Systems Tolerating a Faulty Minority - Beaver - 1991
117	Composition and integrity preservation of secure reactive systems - Pfitzmann, Waidner
107	A probabilistic poly-time framework for protocol analysis - Lincoln, Mitchell, et al. - 1998
104	A composable cryptographic library with nested operations - Backes, Pfitzmann, et al. - 2003
97	Secure computation - Micali, Rogaway - 1991
88	Formal eavesdropping and its computational interpretation - Abadi, Jürjens - 2001
85	Strand spaces: Why is a security protocol correct - Guttman, Herzog, et al. - 1998
79	Fair computation of general functions in presence of immoral majority - Goldwasser, Levin - 1990
70	Verifying Authentication Protocols with CSP - Schneider - 1997
65	Semantics and program analysis of computationally secure information flow - Laud - 2001
64	Soundness of formal encryption in the presence of active adversaries - Micciancio, Warinschi - 2004
61	Analyzing the needham-schroeder public-key protocol: A comparison of two approaches - Meadows - 1996
56	Analyzing encryption protocols using formal verification techniques - Kemmerer - 1989
52	Cryptographic Protocols - Merritt - 1983
51	On the security of multi-party pingpong protocols - Even, Goldreich - 1983
51	A compiler for the analysis of security protocols - Lowe - 1998
41	A Universally Composable Cryptographic Library, IACR Cryptology ePrint Archive - Backes, Pfitzmann, et al. - 2003
25	A linguistic characterization of bounded oracle computation and probabilistic polynomial - Mitchell, Mitchell, et al. - 1998
25	Plaintext awareness via key registration - Herzog, Liskov, et al. - 2003
24	Logics for reasoning about cryptographic constructions - Impagliazzo, Kapron
23	Cryptographically Sound and Machine-Assisted Verification of Security Protocols - Backes, Jacobi - 2003
21	The Interrogator: A tool for cryptographic protocol security - Millen - 1984
20	Using narrowing in the analysis of key management protocols - Meadows - 1989
20	A Computational Analysis of the NeedhamSchröeder-(Lowe - Warinschi
10	Computational Soundness of Formal Adversaries - Herzog - 2002
9	Provably secure certified mail - Pfitzmann, Schunter, et al. - 2000
7	A probabilistic polynominal-time process calculus for analysis of cryptographic protocols (preliminary report - Mitchell, Mitchell, et al.
3	A new look at an old protocol - Syverson - 1996
1	A logic for authentication,” SRC DIGITAL - Burrows, Abadi, et al. - 1990
1	fixing the Needham-Schroeder public-key protocol using FDR - “Breaking - 1996