论文信息 - Explicit Communication Revisited: Two New Attacks on Authentication Protocols

Explicit Communication Revisited: Two New Attacks on Authentication Protocols

SSH and AKA are recent, practical protocols for secure connections over an otherwise unprotected network. The paper shows that, despite the use of public-key cryptography, SSH and AKA do not provide authentication as intended. The flaws of SSH and AKA can be viewed as the result of their disregarding a basic principle for the design of sound authentication protocols: the principle that messages should be explicit.

Martín Abadi | M. Abadi

[1] Martín Abadi,et al. Prudent engineering practice for cryptographic protocols , 1994, Proceedings of 1994 IEEE Computer Society Symposium on Research in Security and Privacy.

[2] Tatu Ylonen,et al. SSH: secure login connections over the internet , 1996 .

[3] Martín Abadi,et al. Prudent Engineering Practice for Cryptographic Protocols , 1994, IEEE Trans. Software Eng..

[4] Ross J. Anderson,et al. Robustness Principles for Public Key Protocols , 1995, CRYPTO.

[5] David Safford,et al. Texas A&M University Anarchistic Key Authorization (AKA) , 1996, USENIX Security Symposium.

[6] Adi Shamir,et al. A method for obtaining digital signatures and public-key cryptosystems , 1978, CACM.

[7] Tatu Ylonen,et al. SSH Transport Layer Protocol , 1996 .

[8] Bernard P. Zajac. Applied cryptography: Protocols, algorithms, and source code in C , 1994 .

[9] Alan O. Freier,et al. The SSL Protocol Version 3.0 , 1996 .

[10] Bruce Schneier,et al. Applied cryptography (2nd ed.): protocols, algorithms, and source code in C , 1995 .