| dc.contributor.author | Boyd, Colin Alexander | |
| dc.contributor.author | Hale, Britta | |
| dc.contributor.author | Mjølsnes, Stig Frode | |
| dc.contributor.author | Stebila, Douglas | |
| dc.date.accessioned | 2018-02-09T13:07:58Z | |
| dc.date.available | 2018-02-09T13:07:58Z | |
| dc.date.created | 2016-10-13T13:54:23Z | |
| dc.date.issued | 2016 | |
| dc.identifier.isbn | 978-3-319-29485-8 | |
| dc.identifier.uri | http://hdl.handle.net/11250/2483752 | |
| dc.description.abstract | Authentication and authenticated encryption with associated data (AEAD) are applied in cryptographic protocols to provide message integrity. The definitions in the literature and the constructions used in practice all protect against forgeries, but offer varying levels of protection against replays, reordering, and drops. As a result of the lack of a systematic hierarchy of authentication and AEAD security notions, gaps have arisen in the literature, specifically in the provable security analysis of the Transport Layer Security (TLS) protocol. We present a hierarchy of authentication and AEAD security notions, interpolating between the lowest level of protection (against forgeries) and the highest level (against forgeries, replays, reordering, and drops). We show generically how to construct higher level schemes from a basic scheme and appropriate use of sequence numbers, and apply that to close the gap in the analysis of TLS record layer encryption. | nb_NO |
| dc.language.iso | eng | nb_NO |
| dc.publisher | Springer | nb_NO |
| dc.relation.ispartof | Topics in Cryptology - CT-RSA 2016 The Cryptographers' Track at the RSA Conference 2016, San Francisco, CA, USA, February 29 - March 4, 2016, Proceedings | |
| dc.title | From Stateless to Stateful: Generic Authentication and Authenticated Encryption Constructions with Application to TLS | nb_NO |
| dc.type | Chapter | nb_NO |
| dc.description.version | acceptedVersion | nb_NO |
| dc.source.pagenumber | 55-71 | nb_NO |
| dc.identifier.doi | 10.1007/978-3-319-29485-8_4 | |
| dc.identifier.cristin | 1391513 | |
| dc.description.localcode | This is a post-peer-review, pre-copyedit version of an article published in [Cryptographers’ Track at the RSA Conference]. The final authenticated version is available online at: https://link.springer.com/chapter/10.1007%2F978-3-319-29485-8_4#enumeration | nb_NO |
| cristin.unitcode | 194,63,30,0 | |
| cristin.unitname | Institutt for telematikk | |
| cristin.ispublished | true | |
| cristin.fulltext | postprint | |
| cristin.qualitycode | 1 | |
