On the (in)security of IPsec in MAC-then-encrypt configurations

@inproceedings{Degabriele2010OnT,
  title={On the (in)security of IPsec in MAC-then-encrypt configurations},
  author={Jean Paul Degabriele and Kenneth G. Paterson},
  booktitle={ACM Conference on Computer and Communications Security},
  year={2010}
}
IPsec allows a huge amount of flexibility in the ways in which its component cryptographic mechanisms can be combined to build a secure communications service. This may be good for supporting different security requirements but is potentially bad for security. We demonstrate the reality of this by describing efficient, plaintext-recovering attacks against all configurations of IPsec in which integrity protection is applied {\em prior} to encryption -- so-called MAC-then-encrypt configurations… CONTINUE READING
Highly Cited
This paper has 55 citations. REVIEW CITATIONS

Citations

Publications citing this paper.
Showing 1-10 of 38 extracted citations

55 Citations

01020'12'14'16'18
Citations per Year
Semantic Scholar estimates that this publication has 55 citations based on the available data.

See our FAQ for additional information.

References

Publications referenced by this paper.
Showing 1-5 of 5 references

editor, “Internet Key Exchange (IKEv2) Protocol

  • C. Kaufman
  • RFC 4306,
  • 2005
Highly Influential
4 Excerpts

Similar Papers

Loading similar papers…