Title :
Actor Key Compromise: Consequences and Countermeasures
Author :
Basin, David ; Cremers, Cas ; Horvat, Marko
Author_Institution :
Dept. of Comput. Sci., Inst. of Inf. Security, ETH Zurich, Zurich, Switzerland
Abstract :
Despite Alice´s best efforts, her long-term secret keys may be revealed to an adversary. Possible reasons include weakly generated keys, compromised key storage, subpoena, and coercion. However, Alice may still be able to communicate securely with other parties, depending on the protocol used. We call the associated property resilience against Actor Key Compromise (AKC). We formalise this property in a symbolic model and identify conditions under which it can and cannot be achieved. In case studies that include TLS and SSH, we find that many protocols are not resilient against AKC. We implement a concrete AKC attack on the mutually authenticated TLS protocol.
Keywords :
cryptographic protocols; AKC attack; SSH protocol; actor key compromise; associated property resilience; authenticated TLS protocol; secret keys; Encryption; Protocols; Public key; Reactive power; Resilience; Key Compromise Impersonation; SSH; Security protocols; TLS; adversary models; security properties;
Conference_Titel :
Computer Security Foundations Symposium (CSF), 2014 IEEE 27th
Conference_Location :
Vienna
DOI :
10.1109/CSF.2014.25
