Skip to Main content Skip to Navigation
Conference papers

Security for Key Management Interfaces

Steve Kremer 1, 2 Graham Steel 1, 2 Bogdan Warinschi 3
1 SECSI - Security of information systems
LSV - Laboratoire Spécification et Vérification [Cachan], ENS Cachan - École normale supérieure - Cachan, Inria Saclay - Ile de France, CNRS - Centre National de la Recherche Scientifique : UMR8643
Abstract : We propose a much-needed formal definition of security for cryptographic key management APIs. The advantages of our definition are that it is general, intuitive, and applicable to security proofs in both symbolic and computational models of cryptography. Our definition relies on an idealized API which allows only the most essential functions for generating, exporting and importing keys, and takes into account dynamic corruption of keys. Based on this we can define the security of more expressive APIs which support richer functionality. We illustrate our approach by showing the security of APIs both in symbolic and computational models.
Document type :
Conference papers
Complete list of metadata

Cited literature [28 references]  Display  Hide  Download

https://hal.inria.fr/inria-00636734
Contributor : Steve Kremer <>
Submitted on : Thursday, October 8, 2015 - 8:45:46 PM
Last modification on : Saturday, May 1, 2021 - 3:41:37 AM
Long-term archiving on: : Saturday, January 9, 2016 - 10:42:30 AM

File

KSW-csf11.pdf
Files produced by the author(s)

Identifiers

Citation

Steve Kremer, Graham Steel, Bogdan Warinschi. Security for Key Management Interfaces. 24th IEEE Computer Security Foundations Symposium (CSF'11), Jun 2011, Cernay-la-Ville, France. ⟨10.1109/CSF.2011.25⟩. ⟨inria-00636734⟩

Share

Metrics

Record views

286

Files downloads

435