Using IND-CVA for constructing secure communication

Using IND-CVA for constructing secure communication

导出

摘要 Within the framework of UC （universally composable） security, a general method is presented to construct a secure channel protocol with using IND-CVA （indistinguishability of encryption scheme under ciphertext verification attacks）. A channel protocol with using the method first invokes an ideal keyexchange protocol to get a session key, and then computes the messages with an authenticated encryption scheme. The paper shows that a channel protocol is UC secure if and only if the underlying authenticated encryption scheme is both IND-CVA secure and INT-PTXT secure. The condition about secure channel protocol in this paper is much weaker than IND-CCA secure and INT-CTXT secure. The IND-CVA can be presented for describing the privacy requirements of secure channels in detail. Moreover, the method for designing secure channel protocol in the paper reduces the UC security of secure channels, which are measured by action-simulation in the UC security framework, to the security of authenticated encryption schemes, which are measured semantically. Within the framework of UC （universally composable） security, a general method is presented to construct a secure channel protocol with using IND-CVA （indistinguishability of encryption scheme under ciphertext verification attacks）. A channel protocol with using the method first invokes an ideal keyexchange protocol to get a session key, and then computes the messages with an authenticated encryption scheme. The paper shows that a channel protocol is UC secure if and only if the underlying authenticated encryption scheme is both IND-CVA secure and INT-PTXT secure. The condition about secure channel protocol in this paper is much weaker than IND-CCA secure and INT-CTXT secure. The IND-CVA can be presented for describing the privacy requirements of secure channels in detail. Moreover, the method for designing secure channel protocol in the paper reduces the UC security of secure channels, which are measured by action-simulation in the UC security framework, to the security of authenticated encryption schemes, which are measured semantically.

作者 HU ZhenYu JIANG JianChun SUN FuChun

机构地区 National Laboratory of Information Science and Technology Institute of Software

出处《Science in China(Series F)》 2009年第10期1801-1811,共11页 中国科学（F辑英文版）

基金 Supported by the National Basic Research Program of China (Grant No. G2002cb312205)

关键词 universally composable security secure channel authenticated encryption semantic security INTEGRITY universally composable security, secure channel, authenticated encryption, semantic security, integrity

分类号 TP393.08 [自动化与计算机技术—计算机应用技术] Q954.52 [生物学—动物学]

引文网络
相关文献

参考文献1

1HU ZhenYu,SUN FuChun,JIANG JianChun.Ciphertext verification security of symmetric encryption schemes[J].Science in China(Series F),2009,52(9):1617-1631. 被引量：4

二级参考文献13

1Krawczyk H. The order of encryption and authentication for protecting communications (or: How Security Is SSL?). In: Crypto'01, LNCS Vol. 2139. Berlin: Springer-Verlag, 2001. 310-331.
2Hall C, Goldberg I, Schneier B. Reaction attacks against several public-key cryptosystems. In: Varadharajan V, Mu Y, eds. Proceedings of Information and Communication Security, ICICS'99, vol. 1726. Berlin: Springer-Verlag, 1999. 2-12.
3An J H, Dodis T, Rabin T. On the security of joint signature and encryption. In: Knudsen L, ed. Advances in Cryptology- EUROCRYPT 2002, vol. 2332 of Lecture Notes in Computer Science. Berlin: Springer-Verlag, 2002. 85107.
4Canetti R, Krawczyk H. Analysis of key-exchange protocols and their use for building secure channels. In: Pfitzmann B, ed. Advances in Cryptology-EUROCRYPT 2001, vol. 2045 of Lecture Notes in Computer Science. Berlin: Springer-Verlag, 2001. 453-474. Extended version at http://eprint.oacr.ogr/ 2001/040.
5Canetti R, Krawczyk H, Universally composable notions of key exchange and secure channels. In: Eurocypt'02, LNCS Vol. 2332. 2003. 337-351. Extended version at http://eprint. oacr.ogr/2002/059,.
6Canetti R. Universally composable security: a new paradigm for cryptographic protocols. In: 42nd FOCS, 2001, the latest full version available at http://eprint.iacr.org/2000/067.
7Namprempre C. Secure channels based on authenticated encryption schemes: a simple characterization. In: Zheng Y, ed. Advance in Cryptology-ASIACRYPT 2002, Lecture Notes in Computer Science. Berlin: Springer-Verlag, 2002.
8Goldwasser S, Bellare M. Lecture Notes on Cryptography.Summer course on cryptography, MIT, 1996-2001. Available from Http://theory.lcs.mit.edu/shafi.
9Bellare M, Namprempre C. Authenticated encryption: Relations among notions and analysis of the generic composition paradigm. In: Okamoto T, ed. Advances in Cryptology- ASIACRYPT 2000, volume 1976 of Lecture Notes in Computer Science. Berlin: Springer-Verlag, 2000. 531-545.
10Bellare M, Desai A, Jokipii E, et al. A concrete security treatment of symmetric encryption: Analysis of the DES modes of operation. In: Proceedings of the 38th Symposium on Foundations of Computer Science, IEEE Computer Society Press, 1997. 394-403.

共引文献3

1胡振宇,蒋建春,孙富春.利用IND-CVA实现安全信道[J].中国科学（F辑:信息科学）,2009,39(12):1248-1257.
2WEN Hong,HO PinHan,GONG Guang.A framework of physical layer technique assisted authentication for vehicular communication networks[J].Science China(Information Sciences),2010,53(10):1996-2004. 被引量：2
3LI Lei,LIU XiangHui,WANG Zheng,LI FengHua.An improved attack on clock-controlled shift registers based on hardware implementation[J].Science China(Information Sciences),2013,56(11):224-233. 被引量：2

1霍雨涛.轻松配置VPN[J].网管员世界,2001(12):48-48.
2宓宝菊.解析浪潮服务器的CVA认证[J].科技浪潮,2009,0(4):19-20.
3杨其国.基于DTV网络的安全通道协议、算法的分析和研究[J].广播电视信息,2007,14(2):88-90.
4吴迪,李娟娟.Generalized projective synchronization via the state observer and its application in secure communication[J].Chinese Physics B,2010,19(12):82-89. 被引量：1
5罗震,周家纪.L2TP Windows客户端驱动程序设计[J].物探化探计算技术,2002,24(2):178-181.
6刘炳华,顾冠群.计算机会议流控制通道协议研究[J].计算机学报,1998,21(1):55-61.
7李洋,周敬利,余胜生.基于Fibre Channel的存储局域网络设计与研究[J].计算机应用研究,2000,17(8):61-63. 被引量：2
8马铮.光纤通道技术的研究[J].科技信息,2011(8). 被引量：1
9夏晨阳,石爱业,吴国宝.基于SVM混合核的遥感图像变化检测[J].信息技术,2014,38(8):38-41. 被引量：2
10徐淑奖,陈秀波,钮心忻,杨义先.A Novel Quantum Covert Channel Protocol Based on Any Quantum Secure Direct Communication Scheme[J].Communications in Theoretical Physics,2013,59(5):547-553.

Science in China(Series F)

2009年第10期

浏览历史

内容加载中请稍等...

Using IND-CVA for constructing secure communication

参考文献1

二级参考文献13

共引文献3

相关作者

相关机构

相关主题

浏览历史