Analyzing Multi-Key Security Degradation
ثبت نشده
چکیده
The multi-key, or multi-user, setting challenges cryptographic algorithms to maintain high levels of security when used with many different keys, by many different users. Its significance lies in the fact that in the real world, cryptography is rarely used with a single key in isolation. A folklore result, proved by Bellare, Boldyreva, and Micali for public-key encryption in EUROCRYPT 2000, states that the success probability in attacking any one of many independently keyed algorithms can be bounded by the success probability of attacking a single instance of the algorithm, multiplied by the number of keys present. Although sufficient for settings in which not many keys are used, once cryptographic algorithms are used on an internet-wide scale, as is the case with TLS, the effect of multiplying by the number of keys can drastically erode security claims. We establish a sufficient condition on cryptographic schemes and security games under which multi-key degradation is avoided. As illustrative examples, we discuss how AES and GCM behave in the multi-key setting, and prove that GCM, as a mode, does not have multi-key degradation. Our analysis allows limits on the amount of data that can be processed per key by GCM to be significantly increased. This leads directly to improved security for GCM as deployed in TLS on the Internet today.
منابع مشابه
Analyzing Multi-key Security Degradation
The multi-key, or multi-user, setting challenges cryptographic algorithms to maintain high levels of security when used with many different keys, by many different users. Its significance lies in the fact that in the real world, cryptography is rarely used with a single key in isolation. A folklore result, proved by Bellare, Boldyreva, and Micali for public-key encryption in EUROCRYPT 2000, sta...
متن کاملComputationally secure multiple secret sharing: models, schemes, and formal security analysis
A multi-secret sharing scheme (MSS) allows a dealer to share multiple secrets among a set of participants. in such a way a multi-secret sharing scheme (MSS) allows a dealer to share multiple secrets among a set of participants, such that any authorized subset of participants can reconstruct the secrets. Up to now, existing MSSs either require too long shares for participants to be perfect secur...
متن کاملEnvironmental Security: Regional Cooperation, Development and Armed Conflict in the Persian Gulf
This article presents the key insights about the environment and security links in the context of the Persian Gulf region. This research paper focuses on the challenge of finding a balance among development, armed conflicts and environmental degradation in the Persian Gulf region. Environmental security challenges are human security, sustainable development and regional cooperation in the Persi...
متن کاملA Multi-Level Analysis Framework in Network Security Situation Awareness
Network Security Situation Awareness (NSSA) technology has been extensively studied in multi-data analyzing research these years. In this paper, we use a historical war story to explain the key points in situation awareness, present the conceptualizations and challenges aspects of NSSA, and discuss the methodologies of solving these problems. We provide an evaluation method for network security...
متن کاملPerformance Analysis of Traditional Cryptosystems in Multi-Cloud Management Platform
With the current distributed applications need, the use of a single cloud is not enough and organizations have already moved to the use of multi-clouds. To make efficient use of multi-cloud, a management platform that manage and control resources over multiple clouds is needed. Security, is a major concern in such platforms and efficient security mechanisms are necessary for the good use of suc...
متن کامل