A Note on the Perfect Encryption Assumption in a Process Calculus

Zunino, Roberto; Degano, Pierpaolo

doi:10.1007/978-3-540-24727-2_36

Cited by 8 publications

(8 citation statements)

References 11 publications

(9 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Similar ideas are expressed in [14,15], where the authors discuss the setting that results from having a probabilistic Dolev-Yao attacker who is able to guess a key with a given probability, and the related transition system. Generally speaking, the inference rules that an attacker can use are weighed by the probability that their application will be successful: the rules that characterise a classic DolevYao attacker are weighed by probability p = 1, while the rules characterising a probabilistic Dolev-Yao attacker are weighed by a probability p ≤ 1.…”

Section: Variations On the Modelmentioning

confidence: 92%

“…This approach avoids the complexity that underlies the quantitative considerations in [13], as the number of replications of processes is not limited by a polynomial and the information on channel width is hidden in the probabilistic assumptions on the strength of cryptographic functions (see the next section 4). Moreover this approach can easily be used to take into account all the extensions proposed in [14,15].…”

Section: Variations On the Modelmentioning

confidence: 99%

See 1 more Smart Citation

Weakening the Dolev-Yao model through probability

Bresciani

Butterfield

2009

Proceedings of the 2nd International Conference on Security of Information and Networks - SIN '09

View full text Add to dashboard Cite

The Dolev-Yao model has been widely used in protocol verification and has been implemented in many protocol verifiers. There are strong assumptions underlying this model, such as perfect cryptography: the aim of the present work is to propose an approach to weaken this hypothesis, by means of probabilistic considerations on the strength of cryptographic functions. Such an approach may effectively be implemented in actual protocol verifiers. The Yahalom protocol is used as an easy example to show this approach.

show abstract

Section: Variations On the Modelmentioning

confidence: 92%

Section: Variations On the Modelmentioning

confidence: 99%

Weakening the Dolev-Yao model through probability

Bresciani

Butterfield

2009

Proceedings of the 2nd International Conference on Security of Information and Networks - SIN '09

View full text Add to dashboard Cite

show abstract

“…A formal notion of computational indistinguishability is also defined in [13] on the basis of a simple model where public outputs are observed in order to infer the content of secret inputs. Finally, [22] compares the classical Dolev-Yao adversary with an enhanced computational adversary which can guess the key for decrypting an intercepted message (albeit only with negligible probability). The two adversaries are shown to be equivalent with respect to a secrecy property.…”

Section: Related Workmentioning

confidence: 99%

“…With this work we share the intuition of adding probabilities of breaking a ciphertext within a formal framework. In [22] the authors define a function similar to our p dec in order to model the probability for a computational adversary of guessing a key. However they abstract away from the particular ciphertext in which the key to be guessed is used as the ciphering key, and they also abstract away from the knowledge the adversary gets.…”

Section: Related Workmentioning

confidence: 99%

“…The recent literature concerning the analysis of security protocols reveals an increasing interest towards the compatibility problem between the computational approach, followed by the cryptography community, and the approach based on the Dolev-Yao model, which is instead followed by the formal methods community (see, e.g., [2,5,11,22,15,14,18,6]). In particular, it has been widely recognized that a sort of computational view of cryptography must be introduced in the formal approaches to security analysis based on a purely formal treatment of cryptographic operations.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Towards a Formal Treatment of Secrecy Against Computational Adversaries

2005

View full text Add to dashboard Cite

Abstract. Polynomial time adversaries based on a computational view of cryptography have additional capabilities that the classical Dolev-Yao adversary model does not include. To relate these two different models of cryptography, in this paper we enrich a formal model for cryptographic expressions, originally based on the Dolev-Yao assumptions, with computational aspects based on notions of probability and computational power. The obtained result is that if the cryptosystem is robust enough, then the two adversary models turn out to be equivalent. As an application of our approach, we show how to determine a secrecy property against the computational adversary.

show abstract

An authenticated, secure, and mutable multiple‐session‐keys protocol based on elliptic curve cryptography and text‐to‐image encryption algorithm

Abusukhon

Mohammad

Al-Thaher

2021

Concurrency and Computation

View full text Add to dashboard Cite

Summary Most of the key agreement protocols (e.g., Menezes–Qu–Vanstone [MQV] family) generate one common key per session. This leaves the session key vulnerable against various attacks. This article proposed an enhanced multiple session key (EMSK) protocol which is based on the elliptic curve Diffie–Hellman (ECDH), HMQV, and the YAK protocols. The EMSK generates multiple session keys per session. Unlike the MQV protocol, the EMSK needs only two messages to be exchanged in order to create nine session keys. However, the MQV requires 18 messages to be exchanged in order to produce these nine session keys. In EMSK, one of the session keys is used to encrypt the plaintext using the one‐time pad cipher. The encrypted message is then embedded in an RGB‐image in order to provide confidentiality service of communication. The EMSK is evaluated theoretically against various types of attacks and practically using the Scyther simulator. The results from the simulator showed that the EMSK protocol withstand various types of attacks on the MQV, HMQV, and the YAK protocols, and provided perfect forward secrecy. In addition, the EMSK provides a digital signature feature which validates the authenticity and integrity of a digital message using the zero knowledge prove.

show abstract

A Note on the Perfect Encryption Assumption in a Process Calculus

Cited by 8 publications

References 11 publications

Weakening the Dolev-Yao model through probability

Weakening the Dolev-Yao model through probability

Towards a Formal Treatment of Secrecy Against Computational Adversaries

An authenticated, secure, and mutable multiple‐session‐keys protocol based on elliptic curve cryptography and text‐to‐image encryption algorithm

Contact Info

Product

Resources

About