Security for Key Management Interfaces

Steve Kremer, Graham Steel, and Bogdan Warinschi. Security for Key Management Interfaces. In Proceedings of the 24th IEEE Computer Security Foundations Symposium (CSF'11), pp. 266–280, IEEE Computer Society Press, Cernay-la-Ville, France, June 2011.
doi:10.1109/CSF.2011.25

Download

[PDF] [PDF (long version)] [HTML] 

Abstract

We propose a much-needed formal definition of security for cryptographic key management APIs. The advantages of our definition are that it is general, intuitive, and applicable to security proofs in both symbolic and computational models of cryptography. Our definition relies on an idealized API which allows only the most essential functions for generating, exporting and importing keys, and takes into account dynamic corruption of keys. Based on this we can define the security of more expressive APIs which support richer functionality. We illustrate our approach by showing the security of APIs both in symbolic and computational models.

BibTeX

@inproceedings{KSW-csf11,
  abstract =      {We propose a much-needed formal definition of
                   security for cryptographic key management APIs. The
                   advantages of our definition are that it is general,
                   intuitive, and applicable to security proofs in both
                   symbolic and computational models of cryptography.
                   Our definition relies on an idealized API which
                   allows only the most essential functions for
                   generating, exporting and importing keys, and takes
                   into account dynamic corruption of keys. Based on
                   this we can define the security of more expressive
                   APIs which support richer functionality. We
                   illustrate our approach by showing the security of
                   APIs both in symbolic and computational models.},
  address =       {Cernay-la-Ville, France},
  author =        {Kremer, Steve and Steel, Graham and
                   Warinschi, Bogdan},
  booktitle =     {{P}roceedings of the 24th {IEEE} {C}omputer
                   {S}ecurity {F}oundations {S}ymposium ({CSF}'11)},
  DOI =           {10.1109/CSF.2011.25},
  month =         jun,
  pages =         {266-280},
  publisher =     {{IEEE} Computer Society Press},
  title =         {Security for Key Management Interfaces},
  year =          {2011},
  acronym =       {{CSF}'11},
  nmonth =        {6},
  url =           {http://www.lsv.ens-cachan.fr/Publis/PAPERS/PDF/KSW-csf11.pdf},
}

---

Parts of this page have been generated by bib2html.pl (written by Patrick Riley ) on Mon Mar 18, 2024 13:09:55