2016
DOI: 10.1007/978-3-319-29485-8_4
|View full text |Cite
|
Sign up to set email alerts
|

From Stateless to Stateful: Generic Authentication and Authenticated Encryption Constructions with Application to TLS

Abstract: Authentication and authenticated encryption with associated data (AEAD) are applied in cryptographic protocols to provide message integrity. The definitions in the literature and the constructions used in practice all protect against forgeries, but offer varying levels of protection against replays, reordering, and drops. As a result of the lack of a systematic hierarchy of authentication and AEAD security notions, gaps have arisen in the literature, specifically in the provable security analysis of the Transp… Show more

Help me understand this report

Search citation statements

Order By: Relevance

Paper Sections

Select...
2
1
1
1

Citation Types

0
11
0

Year Published

2017
2017
2021
2021

Publication Types

Select...
5
2
2

Relationship

0
9

Authors

Journals

citations
Cited by 22 publications
(11 citation statements)
references
References 24 publications
0
11
0
Order By: Relevance
“…Our definition corresponds most closely to level-4 (stateful) LHAE of [17]. In both definitions the requirement is that decrypt only successfully decrypted a prefix of what was sent.…”
Section: From Aead To Stream Encryption (Stae)mentioning
confidence: 99%
“…Our definition corresponds most closely to level-4 (stateful) LHAE of [17]. In both definitions the requirement is that decrypt only successfully decrypted a prefix of what was sent.…”
Section: From Aead To Stream Encryption (Stae)mentioning
confidence: 99%
“…We follow [13,41] in extending the stateful authenticated encryption notion of Bellare et al [7] to capture a hierarchy of stateful AEAD security notions based on different authentication levels. The following definitions are the same as [13], except that we exclude the length-hiding property proposed by Paterson et al [53] for conciseness. Syntax A stateful AEAD scheme sAEAD is a 4-tuple (sG, sI, sE, sD) associated with a message space M ⊆ {0, 1} * , an associated data space AD ⊆ {0, 1} * , and a state space ST ⊆ {0, 1} * .…”
Section: Stateful Authenticated Encryption With Associated Datamentioning
confidence: 99%
“…A stateful MAC is similar to a classical MAC combined with an additional state at sender or receiver side. In this context, various security definitions and stream properties have been defined, e.g., [12,13,20,28,32,46].…”
Section: Statefulmentioning
confidence: 99%