Další formáty:
BibTeX
LaTeX
RIS
@inproceedings{1491907,
author = {Janovský, Adam and Krhovják, Jan and Matyáš, Václav},
address = {Cham, Switzerland},
booktitle = {Information Security Theory and Practice},
doi = {http://dx.doi.org/10.1007/978-3-030-20074-9_3},
editor = {Olivier Blazy, Chan Yeob Yeun},
keywords = {Asymmetric backdoor; Cryptovirology; Kleptography; TLS},
howpublished = {elektronická verze "online"},
language = {eng},
location = {Cham, Switzerland},
isbn = {978-3-030-20073-2},
pages = {15-27},
publisher = {Springer},
title = {Bringing kleptography to real-world TLS},
url = {https://link.springer.com/chapter/10.1007/978-3-030-20074-9_3},
year = {2019}
}
TY - JOUR
ID - 1491907
AU - Janovský, Adam - Krhovják, Jan - Matyáš, Václav
PY - 2019
TI - Bringing kleptography to real-world TLS
PB - Springer
CY - Cham, Switzerland
SN - 9783030200732
KW - Asymmetric backdoor
KW - Cryptovirology
KW - Kleptography
KW - TLS
UR - https://link.springer.com/chapter/10.1007/978-3-030-20074-9_3
L2 - https://link.springer.com/chapter/10.1007/978-3-030-20074-9_3
N2 - Kleptography is a study of stealing information securely and subliminally from black-box cryptographic devices. The stolen information is exfiltrated from the device via a backdoored algorithm inside an asymmetricaly encrypted subliminal channel. In this paper, the kleptography setting for the TLS protocol is addressed. While earlier proposals of asymmetric backdoors for TLS lacked the desired properties or were impractical, this work shows that a feasible asymmetric backdoor can be derived for TLS. First, the paper revisits the existing proposals of kleptographic backdoors for TLS of version 1.2 and lower. Next, advances of the proposal by Gołębiewski et al. are presented to achieve better security and indistinguishability. Then, the enhanced backdoor is translated both to TLS 1.2 and 1.3, achieving first practical solution. Properties of the backdoor are proven and its feasibility is demonstrated by implementing it as a proof-of-concept into the OpenSSL library. Finally, performance of the backdoor is evaluated and studied as a tool for side-channel detection.
ER -
JANOVSKÝ, Adam, Jan KRHOVJÁK a Václav MATYÁŠ. Bringing kleptography to real-world TLS. Online. In Olivier Blazy, Chan Yeob Yeun. \textit{Information Security Theory and Practice}. Cham, Switzerland: Springer, 2019, s.~15-27. ISBN~978-3-030-20073-2. Dostupné z: https://dx.doi.org/10.1007/978-3-030-20074-9\_{}3.
|
