scholarly journals Substitution Attacks against Message Authentication

2019 ◽  
pp. 152-168 ◽  
Author(s):  
Marcel Armour ◽  
Bertram Poettering
Keyword(s):  
Message Authentication ◽  
Prior Work ◽  
Authentication Protocols ◽  
New Class ◽  
Encryption Schemes ◽  
Software Updates ◽  
Authentication Schemes ◽  
Generic Attacks ◽  
Regular Scheme ◽  
Mass Surveillance

This work introduces Algorithm Substitution Attacks (ASAs) on message authentication schemes. In light of revelations concerning mass surveillance, ASAs were initially introduced by Bellare, Paterson and Rogaway as a novel attack class against the confidentiality of encryption schemes. Such an attack replaces one or more of the regular scheme algorithms with a subverted version that aims to reveal information to an adversary (engaged in mass surveillance), while remaining undetected by users. While most prior work focused on subverting encryption systems, we study options to subvert symmetric message authentication protocols. In particular we provide powerful generic attacks that apply e.g. to HMAC or Carter–Wegman based schemes, inducing only a negligible implementation overhead. As subverted authentication can act as an enabler for subverted encryption (software updates can be manipulated to include replacements of encryption routines), we consider attacks of the new class highly impactful and dangerous.

A Secure Authentication Infrastructure for Mobile Users

2011 ◽  
pp. 56-80
Author(s):  
Gregor V. Bochmann ◽  
Eric Zhen Zhang
Keyword(s):  
Electronic Commerce ◽  
Authentication Protocol ◽  
Security Requirements ◽  
Mobile Users ◽  
Authentication Protocols ◽  
Its Analysis ◽  
Trust Relationships ◽  
Authentication Schemes ◽  
Access Rights ◽  
Secure Authentication

The requirements for an authentication infrastructure for electronic commerce are explained by identifying the partners involved in e-commerce transactions and the trust relationships required. Related security requirements are also explained, such as authentication, access rights, payment credentials, anonymity (in certain cases), and privacy and integrity of message exchanges. Then several general authentication schemes and specific protocols are reviewed and their suitability for mobile users is discussed. Finally, an improved authentication protocol is presented which can provide trust relationships for mobile e-commerce users. Its analysis and comparison with other proposed authentication protocols indicate that it is a good candidate for use in the context of mobile e-commerce.

scholarly journals Efficient Side-Channel Secure Message Authentication with Better Bounds

2020 ◽  
pp. 23-53
Author(s):  
Chun Guo ◽  
François-Xavier Standaert ◽  
Weijia Wang ◽  
Yu Yu
Keyword(s):  
Time Complexity ◽  
Side Channel ◽  
Message Authentication ◽  
Security Threat ◽  
Cryptographic Primitives ◽  
Key Recovery ◽  
Leakage Resilience ◽  
Authentication Schemes ◽  
Key Recovery Attacks ◽  
Provably Secure

We investigate constructing message authentication schemes from symmetric cryptographic primitives, with the goal of achieving security when most intermediate values during tag computation and verification are leaked (i.e., mode-level leakage-resilience). Existing efficient proposals typically follow the plain Hash-then-MAC paradigm T = TGenK(H(M)). When the domain of the MAC function TGenK is {0, 1}128, e.g., when instantiated with the AES, forgery is possible within time 264 and data complexity 1. To dismiss such cheap attacks, we propose two modes: LRW1-based Hash-then-MAC (LRWHM) that is built upon the LRW1 tweakable blockcipher of Liskov, Rivest, and Wagner, and Rekeying Hash-then-MAC (RHM) that employs internal rekeying. Built upon secure AES implementations, LRWHM is provably secure up to (beyond-birthday) 278.3 time complexity, while RHM is provably secure up to 2121 time. Thus in practice, their main security threat is expected to be side-channel key recovery attacks against the AES implementations. Finally, we benchmark the performance of instances of our modes based on the AES and SHA3 and confirm their efficiency.

scholarly journals SMAPs: Short Message Authentication Protocols

2017 ◽  
pp. 119-132 ◽  
Author(s):  
Khaled Baqer ◽  
Johann Bezuidenhoudt ◽  
Ross Anderson ◽  
Markus Kuhn
Keyword(s):  
Short Message ◽  
Message Authentication ◽  
Authentication Protocols

Node Authentication in Networks Using Zero-Knowledge Proofs

2007 ◽  
pp. 142-164
Author(s):  
Richard S. Norville ◽  
Kamesh Namuduri ◽  
Ravi Pendse
Keyword(s):  
Data Analysis ◽  
Authentication Protocol ◽  
Authentication Protocols ◽  
Zero Knowledge ◽  
Authentication Schemes ◽  
Zero Knowledge Proof

Zero-knowledge proof (ZKP) based authentication protocols provide a smart way to prove an identity of a node without giving away any information about the secret of that identity. There are many advantages as well as disadvantages to using this protocol over other authentication schemes, and challenges to overcome in order to make it practical for general use. This chapter examines the viability of ZKPs for use in authentication protocols in networks. It is concluded that nodes in a network can achieve a desired level of security by trading off key size, interactivity, and other parameters of the authentication protocol. This chapter also provides data analysis that can be useful in determining expected authentication times based on device capabilities. Pseudocode is provided for implementing a graph-based ZKP on small or limited processing devices.

scholarly journals Information-Theoretically Secure Data Origin Authentication with Quantum and Classical Resources

Cryptography ◽  
2020 ◽  
Vol 4 (4) ◽  
pp. 31
Author(s):  
Georgios M. Nikolopoulos ◽  
Marc Fischlin
Keyword(s):  
Broad Class ◽  
Hash Functions ◽  
Message Authentication ◽  
Secret Key ◽  
Authentication Codes ◽  
Message Authentication Codes ◽  
Secure Data ◽  
Authentication Schemes ◽  
Better Than

In conventional cryptography, information-theoretically secure message authentication can be achieved by means of universal hash functions, and requires that the two legitimate users share a random secret key, which is at least twice as long as the tag. We address the question of whether quantum resources can offer any advantage over classical unconditionally secure message authentication codes. It is shown that a broad class of symmetric prepare-and-measure quantum message-authentication schemes cannot do better than their classical counterparts.

ROBUST MESSAGE AUTHENTICATION OVER A COLLECTIVE-NOISE CHANNEL

2012 ◽  
Vol 10 (06) ◽  
pp. 1250064 ◽  
Author(s):  
XIAO-QIU CAI ◽  
QING-QING LIU
Keyword(s):  
Message Authentication ◽  
Collective Noise ◽  
Authentication Codes ◽  
Message Authentication Codes ◽  
Authentication Schemes ◽  
Computational Resources ◽  
Logical Qubit

We give two robust message authentication schemes over a collective-noise channel. Each logical qubit is made up of two physical qubits and it is invariant over a collective-noise channel. We also analyze the security and show that it is not possible to forge valid message authentication codes for an adversary even if he/she has unlimited computational resources in the two schemes.

scholarly journals V-LDAA: A New Lattice-Based Direct Anonymous Attestation Scheme for VANETs System

2021 ◽  
Vol 2021 ◽  
pp. 1-13
Author(s):  
Liquan Chen ◽  
Tianyang Tu ◽  
Kunliang Yu ◽  
Mengnan Zhao ◽  
Yingchao Wang
Keyword(s):  
Elliptic Curve ◽  
Privacy Protection ◽  
Large Scale ◽  
Quantum Computer ◽  
Security Analysis ◽  
Experimental Results ◽  
Message Authentication ◽  
Signature Scheme ◽  
Direct Anonymous Attestation ◽  
Authentication Schemes

Privacy protection and message authentication issues in VANETs have received great attention in academia. Many authentication schemes in VANETs have been proposed, but most of them are based on classical difficult problems such as factorization in RSA setting or Elliptic Curve setting and are therefore not quantum resistant. If a quantum computer becomes available in the next few decades, the security of these schemes will be at stake. This paper presents a vehicular lattice-based direct anonymous attestation (V-LDAA) scheme adopting an optimized signature scheme based on automorphism stability which achieves postquantum security. A distributed pseudonym update and vehicle revocation mechanism based on the lattice is introduced in this paper, which means vehicles can update their pseudonyms and revoke the identity certificate by themselves without the need for pseudonym resolutions or CRLs checking. Compared with the existing lattice-based attestation schemes in VANETs, computation costs during signing and verification operations in V-LDAA are no longer related to the number of users, which makes it suitable for large-scale VANETs. Security analysis shows that V-LDAA resists TPM theft attacks and provides users with user-controlled anonymity, user-controlled unlinkability, and unforgeability against quantum adversaries. Experimental results show that V-LDAA reduces the blind signature size by 18%. The speed of blind signing is increased by 30%, and blind verification operation is accelerated 3 times compared with the existing lattice-based direct anonymous attestation (LDAA) scheme.

Sign in / Sign up

Export Citation Format

Share Document