Security for Key Management Interfaces (bibtex)
by Steve Kremer, Graham Steel, Bogdan Warinschi
Abstract:
We propose a much-needed formal definition of security for cryptographic key management APIs. The advantages of our definition are that it is general, intuitive, and applicable to security proofs in both symbolic and computational models of cryptography. Our definition relies on an idealized API which allows only the most essential functions for generating, exporting and importing keys, and takes into account dynamic corruption of keys. Based on this we can define the security of more expressive APIs which support richer functionality. We illustrate our approach by showing the security of APIs both in symbolic and computational models.
Reference:
Security for Key Management Interfaces (Steve Kremer, Graham Steel, Bogdan Warinschi), In Proceedings of the 24th IEEE Computer Security Foundations Symposium (CSF'11), IEEE Computer Society Press, 2011.
Bibtex Entry:
@inproceedings{KSW-csf11,
  abstract =      {We propose a much-needed formal definition of
                   security for cryptographic key management APIs. The
                   advantages of our definition are that it is general,
                   intuitive, and applicable to security proofs in both
                   symbolic and computational models of cryptography.
                   Our definition relies on an idealized API which
                   allows only the most essential functions for
                   generating, exporting and importing keys, and takes
                   into account dynamic corruption of keys. Based on
                   this we can define the security of more expressive
                   APIs which support richer functionality. We
                   illustrate our approach by showing the security of
                   APIs both in symbolic and computational models.},
  address =       {Cernay-la-Ville, France},
  author =        {Kremer, Steve and Steel, Graham and
                   Warinschi, Bogdan},
  booktitle =     {{P}roceedings of the 24th {IEEE} {C}omputer
                   {S}ecurity {F}oundations {S}ymposium ({CSF}'11)},
  month =         jun,
  pages =         {266-280},
  publisher =     {{IEEE} Computer Society Press},
  title =         {Security for Key Management Interfaces},
  year =          {2011},
  acronym =       {{CSF}'11},
  nmonth =        {6},
  LONGPDF =       {http://www.lsv.ens-cachan.fr/Publis/RAPPORTS_LSV/PDF/rr-lsv-2011-07.pdf},
  LONGPS =        {http://www.lsv.ens-cachan.fr/Publis/RAPPORTS_LSV/PS/rr-lsv-2011-07.ps},
  lsv-category =  {intc},
  lsv-status =    {apar},
  wwwpublic =     {public},
}
Powered by bibtexbrowser