HMAC is a Randomness Extractor and Applications to TLS - Inria - Institut national de recherche en sciences et technologies du numérique Accéder directement au contenu
Communication Dans Un Congrès Année : 2008

HMAC is a Randomness Extractor and Applications to TLS

Résumé

In this paper, we study the security of a practical randomness extractor and its application in the tls standard. Randomness extraction is the first stage of key derivation functions since the secret shared between the entities does not always come from a uniformly distributed source. More precisely, we wonder if the Hmac function, used in many standards, can be considered as a randomness extractor? We show that when the shared secret is put in the key space of the Hmac function, there are two cases to consider depending on whether the key is larger than the block-length of the hash function or not. In both cases, we provide a formal proof that the output is pseudo- random, but under different assumptions. Nevertheless, all the assumptions are related to the fact that the compression function of the underlying hash function behaves like a pseudo-random function. This analysis allows us to prove the tls randomness extractor for Diffie-Hellman and RSA key exchange. Of independent interest, we study a computational analog to the leftover hash lemma for computational almost universal hash function families: any pseudo-random function family matches the latter definition.
Fichier principal
Vignette du fichier
2008_asiaccs.pdf (298.62 Ko) Télécharger le fichier
Origine : Fichiers produits par l'(les) auteur(s)

Dates et versions

inria-00419158 , version 1 (22-09-2009)

Identifiants

  • HAL Id : inria-00419158 , version 1

Citer

Pierre-Alain Fouque, David Pointcheval, Sébastien Zimmer. HMAC is a Randomness Extractor and Applications to TLS. Proceedings of the 3rd ACM Symposium on InformAtion, Computer and Communications Security (ASIACCS '08), 2008, Tokyo, Japon, Japan. pp.21--32. ⟨inria-00419158⟩
215 Consultations
385 Téléchargements

Partager

Gmail Facebook X LinkedIn More