A Unilateral-to-Mutual Authentication Compiler for Key Exchange (with Applications to Client Authentication in TLS 1.3)

@inproceedings{Krawczyk2016AUA,
  title={A Unilateral-to-Mutual Authentication Compiler for Key Exchange (with Applications to Client Authentication in TLS 1.3)},
  author={Hugo Krawczyk},
  booktitle={CCS '16},
  year={2016}
}
  • Hugo Krawczyk
  • Published in CCS '16 2016
  • Computer Science
  • We study the question of how to build "compilers" that transform a unilaterally authenticated (UA) key-exchange protocol into a mutually-authenticated (MA) one. We present a simple and efficient compiler and characterize the UA protocols that the compiler upgrades to the MA model, showing this to include a large and important class of UA protocols. The question, while natural, has not been studied widely. Our work is motivated in part by the ongoing work on the design of TLS 1.3, specifically… CONTINUE READING

    Create an AI-powered research feed to stay up to date with new papers like this posted to ArXiv

    Figures and Topics from this paper.

    Citations

    Publications citing this paper.
    SHOWING 1-9 OF 9 CITATIONS

    Continuing to reflect on TLS 1.3 with external PSK

    VIEW 4 EXCERPTS
    CITES BACKGROUND
    HIGHLY INFLUENCED

    Implementing and Proving the TLS 1.3 Record Layer

    VIEW 1 EXCERPT
    CITES BACKGROUND

    Verified Models and Reference Implementations for the TLS 1.3 Standard Candidate

    VIEW 1 EXCERPT
    CITES BACKGROUND

    References

    Publications referenced by this paper.
    SHOWING 1-2 OF 2 REFERENCES

    On Formal Models for Secure Key Exchange

    • Victor Shoup
    • Computer Science
    • IACR Cryptology ePrint Archive
    • 1999
    VIEW 5 EXCERPTS
    HIGHLY INFLUENTIAL