Skip to Main content Skip to Navigation
New interface
Reports (Research report)

Security Analysis of Olvid's SAS-based Trust Establishment Protocol

Abstract : In this report, we analyze the security of the trust establishment protocol used in the Olvid messaging protocol. The latter relies on the PV-SAS-MCA message cross-authentication protocol by Pasini an Vaudenay based on short authenticated strings (SAS). In order to make the implementation portable across different platforms, Olvid proposed particular instantiations of the underlying primitives used in PV-SAS-MCA in addition to some other minor modifications. Here, we show that these changes have no impact on the security of the scheme. More precisely, we formally prove that the trust establishment protocol used in Olvid is a secure message cross-authentication protocol. The proof of security is in the random-oracle model and relies on the security of the underlying pseudorandom generator. It also assumes users know each other and have an authentic channel between them.
Document type :
Reports (Research report)
Complete list of metadata

Cited literature [6 references]  Display  Hide  Download
Contributor : Michel Abdalla Connect in order to contact the contributor
Submitted on : Friday, November 13, 2020 - 12:43:08 PM
Last modification on : Wednesday, October 26, 2022 - 8:14:33 AM
Long-term archiving on: : Sunday, February 14, 2021 - 6:48:54 PM


Files produced by the author(s)


  • HAL Id : hal-03003687, version 1



Michel Abdalla. Security Analysis of Olvid's SAS-based Trust Establishment Protocol. [Research Report] Report 2020/808, IACR Cryptology ePrint Archive. 2020. ⟨hal-03003687⟩



Record views


Files downloads