Secure composition of PKIs with public key protocols

Vincent Cheval; Veronique Cortier; Bogdan Warinschi

doi:10.1109/CSF.2017.28

Secure composition of PKIs with public key protocols

Vincent Cheval , Veronique Cortier, Bogdan Warinschi

Research output: Chapter in Book/Report/Conference proceeding › Conference Contribution (Conference Proceeding)

7 Citations (Scopus)

200 Downloads (Pure)

Abstract

We use symbolic formal models to study the composition of public key-based protocols with public key infrastructures (PKIs). We put forth a minimal set of requirements which a PKI should satisfy and then identify several reasons why composition may fail. Our main results are positive and offer various trade-offs which align the guarantees provided by the PKI with those required by the analysis of protocol with which they are composed. We consider both the case of ideally distributed keys but also the case of more realistic PKIs.,,Our theorems are broadly applicable. Protocols are not limited to specific primitives and compositionality asks only for minimal requirements on shared ones. Secure composition holds with respect to arbitrary trace properties that can be specified within a reasonably powerful logic. For instance, secrecy and various forms of authentication can be expressed in this logic. Finally, our results alleviate the common yet demanding assumption that protocols are fully tagged

Original language	English
Title of host publication	2017 IEEE Computer Security Foundations Symposium
Pages	144-158
Number of pages	15
ISBN (Electronic)	978-1-5386-3217-8
DOIs	https://doi.org/10.1109/CSF.2017.28
Publication status	E-pub ahead of print - 28 Sept 2017

Publication series

Name	2017 IEEE 30th Computer Security Foundations Symposium (CSF)
Publisher	IEEE
ISSN (Electronic)	2374-8303

Access to Document

10.1109/CSF.2017.28

Full-text PDF (accepted author manuscript)
This is the author accepted manuscript (AAM). The final published version (version of record) is available online via IEEE at https://ieeexplore.ieee.org/document/8049717/authors#authors. Please refer to any applicable terms of use of the publisher.
Accepted author manuscript, 256 KB

Handle.net

Persistent link

Cite this

@inproceedings{b476ec939eb5471589cb9ddd44fe7ab2,

title = "Secure composition of PKIs with public key protocols",

abstract = "We use symbolic formal models to study the composition of public key-based protocols with public key infrastructures (PKIs). We put forth a minimal set of requirements which a PKI should satisfy and then identify several reasons why composition may fail. Our main results are positive and offer various trade-offs which align the guarantees provided by the PKI with those required by the analysis of protocol with which they are composed. We consider both the case of ideally distributed keys but also the case of more realistic PKIs.,,Our theorems are broadly applicable. Protocols are not limited to specific primitives and compositionality asks only for minimal requirements on shared ones. Secure composition holds with respect to arbitrary trace properties that can be specified within a reasonably powerful logic. For instance, secrecy and various forms of authentication can be expressed in this logic. Finally, our results alleviate the common yet demanding assumption that protocols are fully tagged",

author = "Vincent Cheval and Veronique Cortier and Bogdan Warinschi",

year = "2017",

month = sep,

day = "28",

doi = "10.1109/CSF.2017.28",

language = "English",

series = "2017 IEEE 30th Computer Security Foundations Symposium (CSF) ",

publisher = "IEEE",

pages = "144--158",

booktitle = "2017 IEEE Computer Security Foundations Symposium",

}

TY - GEN

T1 - Secure composition of PKIs with public key protocols

AU - Cheval , Vincent

AU - Cortier, Veronique

AU - Warinschi, Bogdan

PY - 2017/9/28

Y1 - 2017/9/28

N2 - We use symbolic formal models to study the composition of public key-based protocols with public key infrastructures (PKIs). We put forth a minimal set of requirements which a PKI should satisfy and then identify several reasons why composition may fail. Our main results are positive and offer various trade-offs which align the guarantees provided by the PKI with those required by the analysis of protocol with which they are composed. We consider both the case of ideally distributed keys but also the case of more realistic PKIs.,,Our theorems are broadly applicable. Protocols are not limited to specific primitives and compositionality asks only for minimal requirements on shared ones. Secure composition holds with respect to arbitrary trace properties that can be specified within a reasonably powerful logic. For instance, secrecy and various forms of authentication can be expressed in this logic. Finally, our results alleviate the common yet demanding assumption that protocols are fully tagged

AB - We use symbolic formal models to study the composition of public key-based protocols with public key infrastructures (PKIs). We put forth a minimal set of requirements which a PKI should satisfy and then identify several reasons why composition may fail. Our main results are positive and offer various trade-offs which align the guarantees provided by the PKI with those required by the analysis of protocol with which they are composed. We consider both the case of ideally distributed keys but also the case of more realistic PKIs.,,Our theorems are broadly applicable. Protocols are not limited to specific primitives and compositionality asks only for minimal requirements on shared ones. Secure composition holds with respect to arbitrary trace properties that can be specified within a reasonably powerful logic. For instance, secrecy and various forms of authentication can be expressed in this logic. Finally, our results alleviate the common yet demanding assumption that protocols are fully tagged

U2 - 10.1109/CSF.2017.28

DO - 10.1109/CSF.2017.28

M3 - Conference Contribution (Conference Proceeding)

T3 - 2017 IEEE 30th Computer Security Foundations Symposium (CSF)

SP - 144

EP - 158

BT - 2017 IEEE Computer Security Foundations Symposium

ER -

Secure composition of PKIs with public key protocols

Abstract

Publication series

Access to Document

Handle.net

Fingerprint

Cite this