Improving the ISO/IEC 11770 standard for key management techniques

被引：13

作者：

Cremers, Cas ^{[1
]}

Horvat, Marko ^{[1
]}

机构：

[1] Univ Oxford, Oxford, England

来源：

INTERNATIONAL JOURNAL OF INFORMATION SECURITY | 2016年 / 15卷 / 06期

基金：

英国工程与自然科学研究理事会;

关键词：

Formal analysis; ISO; Protocol standards; Security protocols; SECURITY;

D O I：

10.1007/s10207-015-0306-9

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

We provide the first systematic analysis of the ISO/IEC 11770 standard for key management techniques (2009, 2009), which describes a set of key establishment, key agreement, and key transport protocols. We analyse the claimed security properties, as well as additional modern requirements on key management protocols, for over 30 protocols and their variants. Our formal, tool-supported analysis of the protocols uncovers several incorrect claims in the standard. We provide concrete suggestions for improving the standard.

引用

页码：659 / 673

页数：15

共 28 条

[1] [Anonymous], 2008336 IACR CRYPT E
[2] [Anonymous], J NETWORK SECURITY
[3] [Anonymous], 2005, 2005176 CRYPT EPRINT
[4] [Anonymous], 2008, 5246 RFC
[5] Barker E. A., 2007, TECHNICAL REPORT
[6] Improving the Security of Cryptographic Protocol Standards
Basin, David
Cremers, Cas
Miyazaki, Kunihiko
Radomirovic, Sasa
Watanabe, Dai
[J]. IEEE SECURITY & PRIVACY, 2015, 13 (03) : 24 - 31
[7] Actor Key Compromise: Consequences and Countermeasures
Basin, David
Cremers, Cas
Horvat, Marko
[J]. 2014 IEEE 27TH COMPUTER SECURITY FOUNDATIONS SYMPOSIUM (CSF), 2014, : 244 - 258
[8] Provably repairing the ISO/IEC 9798 standard for entity authentication
Basin, David
Cremers, Cas
Meier, Simon
[J]. JOURNAL OF COMPUTER SECURITY, 2013, 21 (06) : 817 - 846
[9] Basin D, 2010, LECT NOTES COMPUT SC, V6345, P340, DOI 10.1007/978-3-642-15497-3_21
[10] Blake-Wilson S, 1997, LECT NOTES COMPUT SC, V1355, P30, DOI 10.1007/BFb0024447

← 1 2 3 →