Your search keyword '"Janaka Alawatugoda"' showing total 8 results

1. On the leakage-resilient key exchange

Author

Janaka Alawatugoda

Subjects

Computer science, 02 engineering and technology, Computer security, computer.software_genre, Public-key cryptography, key exchange protocols, 0202 electrical engineering, electronic engineering, information engineering, QA1-939, Leakage (economics), 94a60, Key exchange, leakage-resilient cryptography, business.industry, Applied Mathematics, 020206 networking & telecommunications, Adversary, Computer security model, Computer Science Applications, 14g50, Authenticated Key Exchange, Computational Mathematics, security models, 020201 artificial intelligence & image processing, business, computer, 11t71, Mathematics

Abstract

Typically, secure channels are constructed from an authenticated key exchange (AKE) protocol, which authenticates the communicating parties based on long-term public keys and establishes secret session keys. In this paper we address the partial leakage of long-term secret keys of key exchange protocol participants due to various side-channel attacks. Security models for two-party authenticated key exchange protocols have been developed over time to provide security even when the adversary learns certain secret values. This paper combines and extends the advances of security modelling for AKE protocols addressing more granular partial leakage of long-term secrets of protocol participants. Further, we fix some flaws in security proofs of previous leakage-resilient key exchange protocols.

Published

2017

2. Generic construction of an $$\mathrm {eCK}$$ eCK -secure key exchange protocol in the standard model

Author

Janaka Alawatugoda

Subjects

Computer Networks and Communications, Computer science, Cryptography, 0102 computer and information sciences, 02 engineering and technology, Computer security, computer.software_genre, 01 natural sciences, Random oracle, Public-key cryptography, 0202 electrical engineering, electronic engineering, information engineering, Safety, Risk, Reliability and Quality, Key exchange, Computer Science::Cryptography and Security, Standard model (cryptography), Discrete mathematics, Cryptographic primitive, business.industry, Order (ring theory), Adaptive chosen-ciphertext attack, 010201 computation theory & mathematics, 020201 artificial intelligence & image processing, business, computer, Software, Information Systems

Abstract

LaMacchia, Lauter and Mityagin presented a strong security model for authenticated key agreement, namely the $$\mathrm {eCK}$$ model. They also constructed a protocol, namely the NAXOS protocol, that enjoys a simple security proof in the $$\mathrm {eCK}$$ model. However, the NAXOS protocol uses a random oracle-based technique to combine the long-term secret key and the per session randomness, so-called NAXOS trick, in order to achieve the $$\mathrm {eCK}$$ security definition. For NAXOS trick-based protocols, the leakage of per session randomness modeled in the $$\mathrm {eCK}$$ model is somewhat unnatural, because the $$\mathrm {eCK}$$ model leaks per session randomness, while the output of the NAXOS trick computation remains safe. In this work, we present a standard model $$\mathrm {eCK}$$ -secure protocol construction, eliminating the NAXOS trick. Moreover, our protocol is a generic construction, which can be instantiated with arbitrary suitable cryptographic primitives. Thus, we present a generic $$\mathrm {eCK}$$ -secure, NAXOS-free, standard model key exchange protocol. To the best of our knowledge this is the first paper on generic transformation of a $$\mathrm {CCA2}$$ -secure public-key encryption scheme to an $$\mathrm {eCK}$$ -secure key exchange protocol in the standard model.

Published

2016

3. Leakage-Resilient Non-interactive Key Exchange in the Continuous-Memory Leakage Setting

Author

C. Pandu Rangan, Janaka Alawatugoda, and Suvradip Chakraborty

Subjects

Hardware_MEMORYSTRUCTURES, Cryptographic primitive, Theoretical computer science, Computer science, business.industry, Open problem, Hash function, 0102 computer and information sciences, 02 engineering and technology, Encryption, 01 natural sciences, Memory leak, 010201 computation theory & mathematics, 0202 electrical engineering, electronic engineering, information engineering, 020201 artificial intelligence & image processing, business, Key exchange, Leakage (electronics)

Abstract

Recently, Chakraborty et al. (Cryptoeprint:2017:441) showed a novel approach of constructing several leakage-resilient cryptographic primitives by introducing a new primitive called leakage-resilient non-interactive key exchange (LR-NIKE). Their construction of LR-NIKE was only in the bounded-memory leakage model, and they left open the construction of LR-NIKE in continuous-memory leakage model. In this paper we address that open problem. Moreover, we extend the continuous-memory leakage model by addressing more realistic after-the-fact leakage. The main ingredients of our construction are a leakage-resilient storage scheme and a refreshing protocol (Dziembowski and Faust, Asiacrypt 2011) and a (standard) chameleon hash function (CHF), equipped with an additional property of oblivious sampling, which we introduce. We observe that the present constructions of CHF already satisfies our new notion. Further, our protocol can be used as a building block to construct leakage-resilient public-key encryption schemes, interactive key exchange and low-latency key exchange protocols in the continuous-memory leakage model, following the approach of Chakraborty et al. (Cryptoeprint:2017:441).

Published

2017

4. Leakage-resilient storage scheme for cryptographic applications

Author

Janaka Alawatugoda, Nalaka Jayanath, Roshan Ragel, Chinthaka Somathilaka, and Danushka Eranga

Subjects

060201 languages & linguistics, Cryptographic primitive, Computer science, 06 humanities and the arts, 02 engineering and technology, Cryptographic protocol, Computer security, computer.software_genre, Hash-based message authentication code, 0602 languages and literature, 0202 electrical engineering, electronic engineering, information engineering, Static key, 020201 artificial intelligence & image processing, Security of cryptographic hash functions, Key management, Cryptographic key types, computer, Key exchange

Abstract

Since the side-channel attacks arise as a huge threat for cryptographic schemes than previously realized, it is necessary to implement proven-secure leakage-resilient cryptographic schemes and use them for real-world purposes. In this work our effort is to implement two leakage-resilient cryptographic schemes, a leakage-resilient storage scheme and a refreshing protocol, which have been proven-secure and accepted by the cryptographic community since 2011 (ASIACRYPT 2011). Our aim is to open up the direction for implementing the useful leakage-resilient cryptographic schemes for future usage.

Published

2016

5. Implementation of an eCK-secure Key Exchange Protocol for OpenSSL

Author

Nishen Peiris, Janaka Alawatugoda, Chamitha Wickramasinghe, Chai Wen Chuah, and Seralathan Vivekaanathan

Subjects

Transport Layer Security, General Computer Science, business.industry, Computer science, Hash function, General Engineering, Cryptography, Cryptographic protocol, Computer security model, Authenticated Key Exchange, General Agricultural and Biological Sciences, business, Implementation, Key exchange, Computer network

Abstract

Security models have been developed over time to analyze the security of two-party authenticated key exchange (AKE) protocols. LaMacchia et al. (ProSec 2007) presented a strong security model for AKE protocols, namely the extended Canetti-Krawczyk (eCK) model, addressing wide range of real-world attack scenarios. They constructed a protocol called NAXOS, that is proven-secure in the eCK model. In order to satisfy the eCK security, the NAXOS protocol uses a hash function to combine the long-term secret key and the ephemeral secret key, which is often called as “NAXOS-trick”. However, for the NAXOS-trick-based protocols, the way of leakage modelled in the eCK model leads to an unnatural assumption of leak-free computation of the hash function. Precisely, the eCK model allows the attacker to reveal the ephemeral key while the output of the NAXOS-trick computation remains safe (leak-free). In a recent work of Alawatugoda et al. (IMA Cryptography and Coding 2015), a NAXOS-trick-free eCK-secure AKE protocol is presented, namely protocol P1. In this work, we implement the protocol P1 to be used with the widely-used OpenSSL cryptographic library. OpenSSL implementations are widely used with the real-world security protocol suites, such as Security Socket Layer (SSL) and Transport Layer Security (TLS). As per best of our knowledge, this is the first implementation of a eCK-secure key exchange protocol for the OpenSSL library. Thus, we open up the direction to use the recent advancements of cryptography for real-world Internet communication.

Published

2018

6. Continuous After-the-Fact Leakage-Resilient eCK-Secure Key Exchange

Author

Colin Boyd, Douglas Stebila, and Janaka Alawatugoda

Subjects

Authenticated Key Exchange, Discrete mathematics, business.industry, Computer science, Cryptography, Side channel attack, Computer security model, Adversary, business, Key exchange, Leakage (electronics), Computer network

Abstract

Security models for two-party authenticated key exchange AKE protocols have developed over time to capture the security of AKE protocols even when the adversary learns certain secret values. Increased granularity of security can be modelled by considering partial leakage of secrets in the manner of models for leakage-resilient cryptography, designed to capture side-channel attacks. In this work, we use the strongest known partial-leakage-based security model for key exchange protocols, namely continuous after-the-fact leakage $$\mathrm {eCK}$$$$\mathrm {CAFL\text {-}eCK}$$ model. We resolve an open problem by constructing the first concrete two-pass leakage-resilient key exchange protocol that is secure in the $$\mathrm {CAFL\text {-}eCK}$$ model.

Published

2015

7. Modelling after-the-fact leakage for key exchange

Author

Douglas Stebila, Colin Boyd, and Janaka Alawatugoda

Subjects

Computer science, business.industry, Key distribution, Adversary, Computer security model, Computer security, computer.software_genre, Public-key cryptography, Authenticated Key Exchange, Session key, Cryptosystem, Side channel attack, business, computer, Key exchange

Abstract

Security models for two-party authenticated key exchange (AKE) protocols have developed over time to prove the security of AKE protocols even when the adversary learns certain secret values. In this work, we address more granular leakage: partial leakage of long-term secrets of protocol principals, even after the session key is established. We introduce a generic key exchange security model, which can be instantiated allowing bounded or continuous leakage, even when the adversary learns certain ephemeral secrets or session keys. Our model is the strongest known partial-leakage-based security model for key exchange protocols. We propose a generic construction of a two-pass leakage-resilient key exchange protocol that is secure in the proposed model, by introducing a new concept: the leakage-resilient NAXOS trick. We identify a special property for public-key cryptosystems: pair generation indistinguishability, and show how to obtain the leakage-resilient NAXOS trick from a pair generation indistinguishable leakage-resilient public-key cryptosystem.

Published

2014

8. Continuous After-the-Fact Leakage-Resilient Key Exchange

Author

Douglas Stebila, Colin Boyd, and Janaka Alawatugoda

Subjects

Authenticated Key Exchange, Computer science, business.industry, Ephemeral key, Session (computer science), Computer security model, Adversary, business, Protocol (object-oriented programming), Key exchange, Leakage (electronics), Computer network

Abstract

Security models for two-party authenticated key exchange (AKE) protocols have developed over time to provide security even when the adversary learns certain secret keys. In this work, we advance the modelling of AKE protocols by considering more granular, continuous leakage of long-term secrets of protocol participants: the adversary can adaptively request arbitrary leakage of long-term secrets even after the test session is activated, with limits on the amount of leakage per query but no bounds on the total leakage. We present a security model supporting continuous leakage even when the adversary learns certain ephemeral secrets or session keys, and give a generic construction of a two-pass leakage-resilient key exchange protocol that is secure in the model; our protocol achieves continuous, after-the-fact leakage resilience with not much more cost than a previous protocol with only bounded, non-after-the-fact leakage.

Published

2014