@inproceedings{facfc452348f4e3494b3bb1473cdc3ca,
title = "Extending TLS with KMIP protocol for cloud computing",
abstract = "Any information system using encryption tends to have its own key management infrastructure. In practice, we find a separate key management systems dedicated to application encryption, or database encryption, or file encryption etc. This emergent needs to several key management systems and multiple cryptographic algorithms are resolved by the new Key Management Interoperability Protocol (KMIP). This work specifies how the Key Management Interoperability Protocol (KMIP) can be included in Transport Layer Security (TLS) protocol in order to provide additional security features, flexibility, interoperability and authentication specially in distributed systems like Cloud Computing. Till now, authentication in TLS is limited to digital certificate and Kerberos. In this paper, we use the Key Management Interoperability Protocol to make an additional authentication option for TLS and we reduce handshake latency to 0-RTT for repeated handshakes and 1-RTT for full handshakes. We specify also the KMIP-TLS extension and its formal validation with AVISPA tool.",
keywords = "AVISPA, Authentication, Cloud, Key management interoperability Protocol, Security, TLS",
author = "Mounira Msahli and Ahmed Serhrouchni and Mohamad Badra",
note = "Publisher Copyright: {\textcopyright} 2016 IEEE.; 8th IFIP International Conference on New Technologies, Mobility and Security, NTMS 2016 ; Conference date: 21-11-2016 Through 23-11-2016",
year = "2016",
month = dec,
day = "20",
doi = "10.1109/NTMS.2016.7792452",
language = "English",
series = "2016 8th IFIP International Conference on New Technologies, Mobility and Security, NTMS 2016",
publisher = "Institute of Electrical and Electronics Engineers Inc.",
editor = "Mohamad Badra and Giovanni Pau and Vasos Vassiliou",
booktitle = "2016 8th IFIP International Conference on New Technologies, Mobility and Security, NTMS 2016",
}