Skip to Main content Skip to Navigation
Conference papers

On the Origin of Trust: Struggle for Secure Cryptography

Abstract : Cryptographic primitives, like encryption schemes, hash functions... are the core of most security applications. But the trust that users place in these algorithms has been repeatedly violated. There are many examples of attacks which exploit weaknesses of the underlying cryptographic primitives, like the recent Logjam and Sloth attacks against TLS. So when can we trust cryptography? It should be clear that we cannot trust algorithms which do not have public design rationale and which have not been thoroughly studied. Most notably, the primitives recommended by the cryptographic community are those which have been chosen after an international competition. Within such an open contest, like the AES and the SHA-3 selection processes, all proposals have been carefully analyzed by all participants; their security margins have been evaluated. This ongoing cryptanalytic effort is the only reliable security argument to consider when deciding which primitive to trust.
Document type :
Conference papers
Complete list of metadatas

https://hal.inria.fr/hal-01401311
Contributor : Anne Canteaut <>
Submitted on : Wednesday, November 23, 2016 - 10:28:40 AM
Last modification on : Thursday, April 26, 2018 - 10:28:10 AM
Long-term archiving on: : Monday, March 20, 2017 - 8:36:18 PM

File

dotsecurity16.pdf
Files produced by the author(s)

Identifiers

  • HAL Id : hal-01401311, version 1

Collections

Citation

Anne Canteaut. On the Origin of Trust: Struggle for Secure Cryptography. Dot Security 2016, Apr 2016, Paris, France. ⟨hal-01401311⟩

Share

Metrics

Record views

232

Files downloads

72