Abstract | ||
---|---|---|
Cryptographic keys must be protected from exposure. In real-world applications, they are often guarded by cryptographic tokens that employ sophisticated hardware-security measures. Several logical attacks on the key management operations of cryptographic tokens have been reported in the past, which allowed to expose keys merely by exploiting the token API in unexpected ways. This paper proposes a novel, provably secure, cryptographic token interface that supports multiple users, implements symmetric cryptosystems and public-key schemes, and provides operations for key generation, encryption, authentication, and key wrapping. The token interface allows only the most important operations found in real-world token APIs; while flexible to be of practical use, it is restricted enough so that it does not expose any key to a user without sufficient privileges. The security policy can be applied to the industry-standard PKCS #11 interface. |
Year | DOI | Venue |
---|---|---|
2009 | 10.1109/CSF.2009.7 | CSF |
Keywords | Field | DocType |
multiple users,symmetric cryptosystems,key encryption,logical attacks,public-key schemes,application program interfaces,cryptographic tokenshave,key management operation,cryptographic key,secure cryptographic token interface,industry-standard pkcs interface,key authentication,key management operations,cryptographic tokeninterface,inreal-world token apis,security policy,key wrapping,public key cryptography,cryptographic token,hardware-security measures,key generation,thetoken interface,api,operations forkey generation,token api,cryptographic keys,public key,authentication,access control,cryptography,key management,application software,hardware,provable security,computer security,computer science,data mining | Key management,Key exchange,Static key,Cryptographic protocol,Computer security,Computer science,Key encapsulation,Cryptographic primitive,Security token,Cryptographic key types,Distributed computing | Conference |
ISSN | ISBN | Citations |
1940-1434 | 978-0-7695-3712-2 | 18 |
PageRank | References | Authors |
1.04 | 19 | 2 |
Name | Order | Citations | PageRank |
---|---|---|---|
Christian Cachin | 1 | 2444 | 182.10 |
Nishanth Chandran | 2 | 375 | 21.86 |