Security Analysis of the W3C Web Cryptography API

Abstract : Due to the success of formal modeling of protocols such as TLS, there is a revival of interest in applying formal modeling to standardized APIs. We argue that formal modeling should happen as the standard is being developed (not afterwards) as it can detect complex or even simple attacks that the standardization group may not otherwise detect. As a case example of this, we discuss in detail the W3C Web Cryptography API. We demonstrate how a formal analysis of the API using the modeling language AVISPA with a SAT solver demonstrates that while the API has no errors in basic API operations and maintains its security properties for the most part, there are nonetheless attacks on secret key material due to how key wrapping and usages are implemented. Furthermore, there were a number of basic problems in terms of algorithm selection and a weakness that led to a padding attack. The results of this study led to the removal of algorithms before its completed standardization and the removal of the padding attack via normalization of error codes, although the key wrapping attack is still open. We expect this sort of formal methodology to be applied to new standardization efforts at the W3C such as the W3C Web Authentication API.
Type de document :
Communication dans un congrès
Proceedings of Security Standardisation Research (SSR), Dec 2017, Gaithersberg, United States. Springer, 10074, pp.112 - 140, 2016, Lecture Notes in Computer Science (LNCS). 〈http://link.springer.com/book/10.1007%2F978-3-319-49100-4〉. 〈10.1007/978-3-319-49100-4_5〉
Liste complète des métadonnées

https://hal.inria.fr/hal-01426852
Contributeur : Halpin Harry <>
Soumis le : jeudi 5 janvier 2017 - 07:25:36
Dernière modification le : jeudi 15 juin 2017 - 09:09:08
Document(s) archivé(s) le : jeudi 6 avril 2017 - 12:22:51

Fichier

main-hal2.pdf
Fichiers produits par l'(les) auteur(s)

Identifiants

Collections

Citation

Kelsey Cairns, Harry Halpin, Graham Steel. Security Analysis of the W3C Web Cryptography API. Proceedings of Security Standardisation Research (SSR), Dec 2017, Gaithersberg, United States. Springer, 10074, pp.112 - 140, 2016, Lecture Notes in Computer Science (LNCS). 〈http://link.springer.com/book/10.1007%2F978-3-319-49100-4〉. 〈10.1007/978-3-319-49100-4_5〉. 〈hal-01426852〉

Partager

Métriques

Consultations de la notice

906

Téléchargements de fichiers

188