Fischlin, Marc ; Müller, Sven-Andre ; Münch, Jean-Pierre ; Porth, Lars
Hrsg.: Bertino, Elisa ; Shulman, Haya ; Waidner, Michael (2021)
Multipath TLS 1.3.
26th European Symposium on Research in Computer Security. Darmstadt, Germany (04.10.2021-08.10.2021)
doi: 10.1007/978-3-030-88428-4_5
Konferenzveröffentlichung, Bibliographie
Kurzbeschreibung (Abstract)
In a multipath key exchange protocol (Costea et al., CCS’18) the parties communicate over multiple connection lines, implemented for example with the multipath extension of TCP. Costea et al. show that, if one assumes that an adversary cannot attack all communication paths in an active and synchronized way, then one can securely establish a shared key under mild cryptographic assumptions. This holds even if classical authentication methods like certificate-based signatures fail. They show how to slightly modify TLS to achieve this security level. Here we discuss that the multipath security can also be achieved for TLS 1.3 without having to modify the crypto part of protocol at all. To this end one runs a regular handshake over one communication path and then a key update (or resumption) over the other path. We show that this already provides the desired security guarantees. At the same time, if only a single communication path is available, then one obtains the basic security properties of TLS 1.3 as a fall back guarantee.
| Typ des Eintrags: | Konferenzveröffentlichung |
|---|---|
| Erschienen: | 2021 |
| Herausgeber: | Bertino, Elisa ; Shulman, Haya ; Waidner, Michael |
| Autor(en): | Fischlin, Marc ; Müller, Sven-Andre ; Münch, Jean-Pierre ; Porth, Lars |
| Art des Eintrags: | Bibliographie |
| Titel: | Multipath TLS 1.3 |
| Sprache: | Englisch |
| Publikationsjahr: | 6 Oktober 2021 |
| Verlag: | Springer |
| Buchtitel: | Computer Security - ESORICS 2021 |
| Reihe: | Lecture Notes in Computer Science |
| Band einer Reihe: | 12973 |
| Veranstaltungstitel: | 26th European Symposium on Research in Computer Security |
| Veranstaltungsort: | Darmstadt, Germany |
| Veranstaltungsdatum: | 04.10.2021-08.10.2021 |
| DOI: | 10.1007/978-3-030-88428-4_5 |
| Kurzbeschreibung (Abstract): | In a multipath key exchange protocol (Costea et al., CCS’18) the parties communicate over multiple connection lines, implemented for example with the multipath extension of TCP. Costea et al. show that, if one assumes that an adversary cannot attack all communication paths in an active and synchronized way, then one can securely establish a shared key under mild cryptographic assumptions. This holds even if classical authentication methods like certificate-based signatures fail. They show how to slightly modify TLS to achieve this security level. Here we discuss that the multipath security can also be achieved for TLS 1.3 without having to modify the crypto part of protocol at all. To this end one runs a regular handshake over one communication path and then a key update (or resumption) over the other path. We show that this already provides the desired security guarantees. At the same time, if only a single communication path is available, then one obtains the basic security properties of TLS 1.3 as a fall back guarantee. |
| Zusätzliche Informationen: | Proceedings, Part II |
| Fachbereich(e)/-gebiet(e): | 20 Fachbereich Informatik 20 Fachbereich Informatik > Kryptographie und Komplexitätstheorie DFG-Sonderforschungsbereiche (inkl. Transregio) DFG-Sonderforschungsbereiche (inkl. Transregio) > Sonderforschungsbereiche Profilbereiche Profilbereiche > Cybersicherheit (CYSEC) Forschungsfelder Forschungsfelder > Information and Intelligence Forschungsfelder > Information and Intelligence > Cybersecurity & Privacy DFG-Sonderforschungsbereiche (inkl. Transregio) > Sonderforschungsbereiche > SFB 1119: CROSSING – Kryptographiebasierte Sicherheitslösungen als Grundlage für Vertrauen in heutigen und zukünftigen IT-Systemen |
| Hinterlegungsdatum: | 09 Sep 2022 08:23 |
| Letzte Änderung: | 15 Aug 2023 09:36 |
| PPN: | 499535707 |
| Export: | |
| Suche nach Titel in: | TUfind oder in Google |
 |
Frage zum Eintrag |
Optionen (nur für Redakteure)
 |
Redaktionelle Details anzeigen |
Drucken
Impressum