Security-preserving asymmetric protocol encapsulation

Raphael C.W. Phan, Serge Vaudenay

Research output: Chapter in Book/Report/Conference proceedingConference PaperResearchpeer-review

Abstract

Query-response based protocols between a client and a server such as SSL, TLS, SSH are asymmetric in the sense that the querying client and the responding server play different roles, and for which there is a need for two-way linkability between queries and responses within the protocol. We are motivated by the observation that though results exist in other related contexts, no provably secure scheme has been applied to the setting of client-server protocols, which differ from conventional communications on the above points. We show how to secure the communication of queries and responses in these client-server protocols in a provably secure setting. In doing so, we propose a new primitive: a query-response encapsulation scheme; we give an instantiation, and we demonstrate how this primitive can be used for our purpose. In our proof of secure encapsulation, we show how to preserve the notion of "local-security".

Original languageEnglish
Title of host publicationInformation Security and Cryptology - ICISC 2007 - 10th International Conference, Proceedings
PublisherSpringer
Pages346-366
Number of pages21
ISBN (Print)9783540767879
DOIs
Publication statusPublished - 2007
Externally publishedYes
EventInternational Conference on Information Security and Cryptology 2007 - Seoul, Korea, South
Duration: 29 Nov 200730 Nov 2007
Conference number: 10th
https://link.springer.com/book/10.1007/978-3-540-76788-6 (Proceedings)

Publication series

NameLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume4817 LNCS
ISSN (Print)0302-9743
ISSN (Electronic)1611-3349

Conference

ConferenceInternational Conference on Information Security and Cryptology 2007
Abbreviated titleICISC 2007
Country/TerritoryKorea, South
CitySeoul
Period29/11/0730/11/07
Internet address

Cite this