A Generic Security API for Symmetric Key Management on Cryptographic Devices - Archive ouverte HAL Accéder directement au contenu
Communication Dans Un Congrès Année : 2009

A Generic Security API for Symmetric Key Management on Cryptographic Devices

Résumé

Security APIs are used to define the boundary between trusted and untrusted code. The security properties of existing APIs are not always clear. In this paper, we give a new generic API for managing symmetric keys on a trusted cryptographic device. We state and prove security properties for our API. In particular, our API offers a high level of security even when the host machine is controlled by an attacker. Our API is generic in the sense that it can implement a wide variety of (symmetric key) protocols. As a proof of concept, we give an algorithm for automatically instantiating the API commands for a given key management protocol. We demonstrate the algorithm on a set of key establishment protocols from the Clark-Jacob suite.

Domaines

Cryptographie et sécurité [cs.CR]

Véronique Cortier  : Connectez-vous pour contacter le contributeur

https://inria.hal.science/inria-00426621

Soumis le : mardi 27 octobre 2009-09:38:23

Dernière modification le : lundi 11 septembre 2023-17:41:18

Consulter le texte intégral

Dates et versions

inria-00426621 , version 1 (27-10-2009)

Identifiants

Citer

Véronique Cortier, Graham Steel. A Generic Security API for Symmetric Key Management on Cryptographic Devices. 14th European Symposium On Research In Computer Security - ESORICS'09, Sep 2009, St Malo, France. pp.605-620, ⟨10.1007/978-3-642-04444-1_37⟩. ⟨inria-00426621⟩

Exporter

BibTeX XML-TEI Dublin Core DC Terms EndNote DataCite

Collections

CNRS INRIA UNIV-FCOMTE UNIV-BM ENS-CACHAN FEMTO-ST UNIV-BM-THESE UNIV-LORRAINE INRIA2 LORIA LORIA-FM ANR ENS-PARIS-SACLAY
127 Consultations
0 Téléchargements

Altmetric

Partager

Gmail Facebook X LinkedIn More