Bringing kleptography to real-world TLS

D 2019

Bringing kleptography to real-world TLS

JANOVSKÝ, Adam; Jan KRHOVJÁK a Václav MATYÁŠ

Základní údaje

Originální název

Bringing kleptography to real-world TLS

Název česky

Praktická kleptografie pro TLS

Autoři

JANOVSKÝ, Adam (203 Česká republika, garant, domácí); Jan KRHOVJÁK (203 Česká republika) a Václav MATYÁŠ (203 Česká republika, domácí)

Vydání

Cham, Switzerland, Information Security Theory and Practice, od s. 15-27, 13 s. 2019

Nakladatel

Springer

Další údaje

Jazyk

angličtina

Typ výsledku

Stať ve sborníku

Obor

10201 Computer sciences, information science, bioinformatics

Stát vydavatele

Švýcarsko

Utajení

není předmětem státního či obchodního tajemství

Forma vydání

elektronická verze "online"

Odkazy

URL

Kód RIV

RIV/00216224:14330/19:00109071

Organizační jednotka

Fakulta informatiky

ISBN

978-3-030-20073-2

DOI

https://doi.org/10.1007/978-3-030-20074-9_3

EID Scopus

2-s2.0-85065866602

Klíčová slova anglicky

Asymmetric backdoor; Cryptovirology; Kleptography; TLS

Příznaky

Mezinárodní význam, Recenzováno

Změněno: 31. 5. 2022 14:23, RNDr. Pavel Šmerk, Ph.D.

Anotace

V originále

Kleptography is a study of stealing information securely and subliminally from black-box cryptographic devices. The stolen information is exfiltrated from the device via a backdoored algorithm inside an asymmetricaly encrypted subliminal channel. In this paper, the kleptography setting for the TLS protocol is addressed. While earlier proposals of asymmetric backdoors for TLS lacked the desired properties or were impractical, this work shows that a feasible asymmetric backdoor can be derived for TLS. First, the paper revisits the existing proposals of kleptographic backdoors for TLS of version 1.2 and lower. Next, advances of the proposal by Gołębiewski et al. are presented to achieve better security and indistinguishability. Then, the enhanced backdoor is translated both to TLS 1.2 and 1.3, achieving first practical solution. Properties of the backdoor are proven and its feasibility is demonstrated by implementing it as a proof-of-concept into the OpenSSL library. Finally, performance of the backdoor is evaluated and studied as a tool for side-channel detection.

Citovat

JANOVSKÝ, Adam; Jan KRHOVJÁK a Václav MATYÁŠ. Bringing kleptography to real-world TLS. Online. In Olivier Blazy, Chan Yeob Yeun. Information Security Theory and Practice. Cham, Switzerland: Springer, 2019, s. 15-27. ISBN 978-3-030-20073-2. Dostupné z: https://doi.org/10.1007/978-3-030-20074-9_3.

@inproceedings{1491907,
   author = {Janovský, Adam and Krhovják, Jan and Matyáš, Václav},
   address = {Cham, Switzerland},
   booktitle = {Information Security Theory and Practice},
   doi = {https://doi.org/10.1007/978-3-030-20074-9_3},
   editor = {Olivier Blazy, Chan Yeob Yeun},
   keywords = {Asymmetric backdoor; Cryptovirology; Kleptography; TLS},
   howpublished = {elektronická verze "online"},
   language = {eng},
   location = {Cham, Switzerland},
   isbn = {978-3-030-20073-2},
   pages = {15-27},
   publisher = {Springer},
   title = {Bringing kleptography to real-world TLS},
   url = {https://link.springer.com/chapter/10.1007/978-3-030-20074-9_3},
   year = {2019}
}

TY  - CONF
ID  - 1491907
AU  - Janovský, Adam - Krhovják, Jan - Matyáš, Václav
PY  - 2019
TI  - Bringing kleptography to real-world TLS
PB  - Springer
CY  - Cham, Switzerland
SN  - 9783030200732
KW  - Asymmetric backdoor
KW  - Cryptovirology
KW  - Kleptography
KW  - TLS
UR  - https://link.springer.com/chapter/10.1007/978-3-030-20074-9_3
L2  - https://link.springer.com/chapter/10.1007/978-3-030-20074-9_3
N2  - Kleptography is a study of stealing information securely and subliminally from black-box cryptographic devices. The stolen information is exfiltrated from the device via a backdoored algorithm inside an asymmetricaly encrypted subliminal channel. In this paper, the kleptography setting for the TLS protocol is addressed. While earlier proposals of asymmetric backdoors for TLS lacked the desired properties or were impractical, this work shows that a feasible asymmetric backdoor can be derived for TLS. First, the paper revisits the existing proposals of kleptographic backdoors for TLS of version 1.2 and lower. Next, advances of the proposal by Gołębiewski et al. are presented to achieve better security and indistinguishability. Then, the enhanced backdoor is translated both to TLS 1.2 and 1.3, achieving first practical solution. Properties of the backdoor are proven and its feasibility is demonstrated by implementing it as a proof-of-concept into the OpenSSL library. Finally, performance of the backdoor is evaluated and studied as a tool for side-channel detection.
ER  -

JANOVSKÝ, Adam; Jan KRHOVJÁK a Václav MATYÁŠ. Bringing kleptography to real-world TLS. Online. In Olivier Blazy, Chan Yeob Yeun. \textit{Information Security Theory and Practice}. Cham, Switzerland: Springer, 2019, s.~15-27. ISBN~978-3-030-20073-2. Dostupné z: https://doi.org/10.1007/978-3-030-20074-9\_{}3.

Přehled o publikaci