Dowling, Benjamin ; Fischlin, Marc ; Günther, Felix ; Stebila, Douglas (2024)
A Cryptographic Analysis of the TLS 1.3 Handshake Protocol.
In: Journal of Cryptology, 2021, 34 (4)
doi: 10.26083/tuprints-00023430
Article, Secondary publication, Publisher's Version
Text
s00145-021-09384-1.pdf Copyright Information: CC BY 4.0 International - Creative Commons, Attribution. Download (1MB) |
Item Type: | Article |
---|---|
Type of entry: | Secondary publication |
Title: | A Cryptographic Analysis of the TLS 1.3 Handshake Protocol |
Language: | English |
Date: | 30 April 2024 |
Place of Publication: | Darmstadt |
Year of primary publication: | 2021 |
Place of primary publication: | New York |
Publisher: | Springer |
Journal or Publication Title: | Journal of Cryptology |
Volume of the journal: | 34 |
Issue Number: | 4 |
Collation: | 69 Seiten |
DOI: | 10.26083/tuprints-00023430 |
Corresponding Links: | |
Origin: | Secondary publication DeepGreen |
Abstract: | We analyze the handshake protocol of the Transport Layer Security (TLS) protocol, version 1.3. We address both the full TLS 1.3 handshake (the one round-trip time mode, with signatures for authentication and (elliptic curve) Diffie–Hellman ephemeral ((EC)DHE) key exchange), and the abbreviated resumption/“PSK” mode which uses a pre-shared key for authentication (with optional (EC)DHE key exchange and zero round-trip time key establishment). Our analysis in the reductionist security framework uses a multi-stage key exchange security model, where each of the many session keys derived in a single TLS 1.3 handshake is tagged with various properties (such as unauthenticated versus unilaterally authenticated versus mutually authenticated, whether it is intended to provide forward security, how it is used in the protocol, and whether the key is protected against replay attacks). We show that these TLS 1.3 handshake protocol modes establish session keys with their desired security properties under standard cryptographic assumptions. |
Uncontrolled Keywords: | Authenticated key exchange, Transport Layer Security (TLS), Handshake protocol |
Identification Number: | Artikel-ID: 37 |
Status: | Publisher's Version |
URN: | urn:nbn:de:tuda-tuprints-234306 |
Classification DDC: | 000 Generalities, computers, information > 004 Computer science |
Divisions: | 20 Department of Computer Science > Cryptography and Complexity Theory Profile Areas > Cybersecurity (CYSEC) Forschungsfelder > Information and Intelligence > Cybersecurity & Privacy DFG-Collaborative Research Centres (incl. Transregio) > Collaborative Research Centres > CRC 1119: CROSSING – Cryptography-Based Security Solutions: Enabling Trust in New and Next Generation Computing Environments |
Date Deposited: | 30 Apr 2024 12:28 |
Last Modified: | 02 Sep 2024 08:00 |
SWORD Depositor: | Deep Green |
URI: | https://tuprints.ulb.tu-darmstadt.de/id/eprint/23430 |
PPN: | 521026474 |
Export: |
View Item |