Robustness Principles for Public Key Protocols

Robustness Principles for Public Key Protocols (1995)

Cached

Download Links

[www.su.fee.vutbr.cz]

Other Repositories/Bibliography

DBLP

by Ross Anderson , Roger Needham

Citations:

111 - 8 self

BibTeX

@INPROCEEDINGS{Anderson95robustnessprinciples,
    author = {Ross Anderson and Roger Needham},
    title = {Robustness Principles for Public Key Protocols},
    booktitle = {},
    year = {1995},
    pages = {236--247},
    publisher = {Springer-Verlag}
}

Years of Citing Articles

Bookmark

OpenURL

Abstract

: We present a number of attacks, some new, on public key protocols. We also advance a number of principles which may help designers avoid many of the pitfalls, and help attackers spot errors which can be exploited. 1 Introduction Cryptographic protocols are typically used to identify a user to a computer system, to authenticate a transaction, or to set up a key. They typically involve the exchange of about 2--5 messages, and they are very easy to get wrong: bugs have been found in well known protocols years after they were first published. This is quite remarkable; after all, a protocol is a kind of program, and one would expect to get any other program of this size right by staring at it for a while. A number of remedies have been proposed. One approach is formal mathematical proof, and can range from systematic protocol verification techniques such as the BAN logic [BAN89] to the case-by-case reduction of security claims to the intractability of some problem such as factoring. Anot...

Citations

2507	A method for obtaining digital signatures and public-key cryptosystems - Rivest, Shamir, et al.
2292	New directions in cryptography - Diffie, Hellmen - 1976
1040	R.: A logic for authentication - Burrows, Abadi, et al. - 1989
961	A public key cryptosystem and a signature scheme based on discrete logarithms - ElGamal - 1985
707	How to prove yourself: Practical solutions to identification and signature problems - Fiat, Shamir - 1986
332	Prudent engineering practice for cryptographic protocols - Abadi, Needham - 1990
262	Efficient Identification and Signatures for Smart Cards. CRYPTO - Schnorr - 1989
252	Why cryptosystems fail - Anderson - 1994
128	Three systems for cryptographic protocol analysis - Kemmerer, Meadows, et al. - 1994
87	Collision free hash functions and public key signature schemes - Damg˚ard
80	Authentication for distributed systems - Woo, Lam - 1992
70	Key Distribution Protocol for Digital Mobile Communication Systems - Tatebayashi, Matsuzaki, et al. - 1989
32	On the risk of opening distributed keys - Burmester - 1994
30	On the Need for Multipermutations: Cryptanalysis of MD4 and SAFER - Vaudenay - 1994
24	Protocols for data security - Demillo, Merritt - 1983
24	Reasoning about accountability in protocols for electronic commerce - Kailar - 1995
23	Cryptoanalysis and protocol failures - Simmons - 1994
22	UEPS - A Second Generation Electronic Wallet - Anderson - 1992
22	The classification of hash functions - Anderson - 1993
22	Liability and computer security: Nine principles - Anderson - 1994
18	Subliminal channels: Past and present - Simmons - 1994
12	Attack on Server Assisted Authentication Protocols - Anderson - 1992
11	Towards practical proven secure authenticated key distribution - Desmedt, Burmester - 1993
11	Cryptographic method and apparatus for public key exchange with authentication - Goss - 1990
10	Efficient Electronic Money - Yacobi - 1995
9	On the need for multipermutations - Vaudenay - 1994
7	The internet billing server transaction protocol alternatives - O'Toole - 1994
7	How to break and repair a 'provably secure' untraceable payment system - tzmann, Waidner - 1991
6	How to break a ”secure” oblivious transfer protocol - Beaver - 1992
5	Analysis of ISO/CCITT Document X.509 Annex D - Coppersmith - 1989
5	Information technology – Security techniques – Key management – Part 3: Mechanisms using asymmetric techniques. International Organization for Standardization - DIS - 1996
4	A practical RSA trapdoor - Anderson - 1993
4	Attack on the Cryptographic Scheme NIKS-TAS - Coppersmith - 1994
4	A Shamir, "How to prove yourself: practical solutions to identification and signature problems - Fiat
3	How to Break Another `Provably Secure' Payment System - Pfitzmann, Waidner - 1995
3	Liability and Computer Security - Anderson - 1994
2	Anderson’s RSA trapdoor can be broken - Kaliski - 1993
2	A Fast Off-line Electronic Currency Protocol for Smart Cards - Tang, Tygar - 1994
1	Distributed Computing Column - Dwork
1	Banking --- Key management by means of asymmetric algorithms --- Part 1: Principles, procedures and formats', and Part 2: Approved algorithms using the RSA cryptosystem - ISO - 1994
1	talk given at Combridge Protocols Workshop - Landrock
1	Y Desmedt, A Odlyzko, P Landrock, "The Eurocrypt '92 Controversial Issue --- Trapdoor Primes and Moduli - Rueppel, Lenstra, et al.
1	Efficient Electronic Money", in Preproceedings of Asiacrypt 94 pp 131--140 This article was processed using the L A T E X macro package with LLNCS style - Yacobi
1	Y Desmedt, A Odlyzko - Rueppel, Lenstra, et al.