Cryptographically Sound Security Proofs for Basic and Public-Key Kerberos

Backes, Michael; Cervesato, Iliano; Jaggard, Aaron D.; Scedrov, Andre; Tsay, Joe-Kai

doi:10.1007/11863908_23

Cited by 23 publications

(4 citation statements)

References 39 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Although our work is carried out by hand, a variety of automated approaches exist for symbolic proofs [10][11][12][13][14][15][16][17] and have also been applied to deployed protocols (e.g., [18][19][20]). In a recent collaboration with M. Backes, we have started extending our results from the abstract Dolev-Yao model examined here to the more concrete computational model [21]. Interestingly, the results described in more detail here served as a blueprint for the much more fine-grained proofs in [21].…”

Section: Introductionmentioning

confidence: 74%

“…The main outcome of this effort was that the fixes examined here were proved to be correct at the cryptographic level [21]. The computationally sound proofs in the BPW model were conducted symbolically by hand [21] and there appears to be a strong relation to the symbolic proof technique used in this work. Gaining a better understanding of how these two methods relate will be subject to future work.…”

Section: Discussionmentioning

confidence: 90%

“…In a recent collaboration with M. Backes, we have started extending our results from the abstract Dolev-Yao model examined here to the more concrete computational model [21]. Interestingly, the results described in more detail here served as a blueprint for the much more fine-grained proofs in [21]. Furthermore, we have started exploring automated security proofs of Kerberos [22] using the tool CryptoVerif [23,24], which works directly within the computational model.…”

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

Breaking and Fixing Public-Key Kerberos

Cervesato

Jaggard

Scedrov

et al. 2007

Advances in Computer Science - ASIAN 2006. Secure Software and Related Issues

View full text Add to dashboard Cite

We report on a man-in-the-middle attack on PKINIT, the public key extension of the widely deployed Kerberos 5 authentication protocol. This flaw allows an attacker to impersonate Kerberos administrative principals (KDC) and end-servers to a client, hence breaching the authentication guarantees of Kerberos. It also gives the attacker the keys that the KDC would normally generate to encrypt the service requests of this client, hence defeating confidentiality as well. The discovery of this attack caused the IETF to change the specification of PKINIT and Microsoft to release a security update for some Windows operating systems. We discovered this attack as part of an ongoing formal analysis of the Kerberos protocol suite, and we have formally verified several possible fixes to PKINIT-including the one adopted by the IETF-that prevent our attack as well as other authentication and secrecy properties of Kerberos with PKINIT.

show abstract

Section: Introductionmentioning

confidence: 74%

Section: Discussionmentioning

confidence: 90%

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Breaking and Fixing Public-Key Kerberos

Cervesato

Jaggard

Scedrov

et al. 2007

Advances in Computer Science - ASIAN 2006. Secure Software and Related Issues

View full text Add to dashboard Cite

show abstract

“…The original Kerberos protocol and related three party schemes have been intensely studied without finding severe security deficiencies (Boldyreva & Kumar, 2007;Backes, Cervesato, Jaggard, Scedrov, & Tsay, 2006). However, their browser-based offspring-federated identity management protocols-turned out to have some vulnerabilities: In addition to the mentioned Microsoft Passport analyses of Kormann and Rubin (2000), Slemko (2001), andGroß (2003) analyzes SAML, an alternative single sign on protocol, and shows that the protocol is vulnerable to adaptive attacks where the adversary intercepts the authentication token contained in the URL.…”

Section: Attacks Against Fim Protocolsmentioning

confidence: 99%

On Cryptographically Strong Bindings of SAML Assertions to Transport Layer Security

Kohlar

Schwenk

Jensen

et al. 2011

International Journal of Mobile Computing and Multimedia Communications

View full text Add to dashboard Cite

In recent research, two approaches to protect SAML based Federated Identity Management (FIM) against man-in-the-middle attacks have been proposed. One approach is to bind the SAML assertion and the SAML artifact to the public key contained in a TLS client certificate. Another approach is to strengthen the Same Origin Policy of the browser by taking into account the security guarantees TLS gives. This work presents a third approach which is of further interest beyond IDM protocols, especially for mobile devices relying heavily on the security offered by web technologies. By binding the SAML assertion to cryptographically derived values of the TLS session that has been agreed upon between client and the service provider, this approach provides anonymity of the (mobile) browser while allowing Relying Party and Identity Provider to detect the presence of a man-in-the-middle attack.

show abstract

Cryptographically Sound Security Proofs for Basic and Public-Key Kerberos

Backes

Cervesato

Jaggard

et al. 2006

Computer Security – ESORICS 2006

Self Cite

View full text Add to dashboard Cite

We present a computational analysis of basic Kerberos with and without its public-key extension PKINIT in which we consider authentication and key secrecy properties. Our proofs rely on the Dolev-Yaostyle model of Backes, Pfitzmann, and Waidner, which allows for mapping results obtained symbolically within this model to cryptographically sound proofs if certain assumptions are met. This work was the first verification at the computational level of such a complex fragment of an industrial protocol. By considering a recently fixed version of PKINIT, we extend symbolic correctness results we previously attained in the DolevYao model to cryptographically sound results in the computational model.

show abstract

Cryptographically Sound Security Proofs for Basic and Public-Key Kerberos

Cited by 23 publications

References 39 publications

Breaking and Fixing Public-Key Kerberos

Breaking and Fixing Public-Key Kerberos

On Cryptographically Strong Bindings of SAML Assertions to Transport Layer Security

Cryptographically Sound Security Proofs for Basic and Public-Key Kerberos

Contact Info

Product

Resources

About