How fast do you heal? A taxonomy for post-compromise security in secure-channel establishment

Olivier Blazy; Ioana Boureanu; Pascal Lafourcade; Cristina Onete; Léo Robert

How fast do you heal? A taxonomy for post-compromise security in secure-channel establishment

Olivier Blazy
, Ioana Boureanu
, Pascal Lafourcade
, Cristina Onete
, Léo Robert

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

Abstract

Post-Compromise Security (PCS) is a property of secure-channel establishment schemes, which limits the security breach of an adversary that has compromised one of the endpoint to a certain number of messages, after which the channel heals. An attractive property, especially in view of Snowden’s revelation of mass-surveillance, PCS was pioneered by the Signal messaging protocol, and is present in OTR. In this paper, we introduce a framework for quantifying and comparing PCS security, with respect to a broad taxonomy of adversaries. The generality and flexibility of our approach allows us to model the healing speed of a broad class of protocols, including Signal, but also an identity-based messaging protocol named SAID, and even a composition of 5G handover protocols.

Original language	English
Title of host publication	32nd USENIX Security Symposium, USENIX Security 2023
Publisher	USENIX Association
Pages	5917-5934
Number of pages	18
ISBN (Electronic)	9781713879497
Publication status	Published - 1 Jan 2023
Event	32nd USENIX Security Symposium, USENIX Security 2023 - Anaheim, United States Duration: 9 Aug 2023 → 11 Aug 2023

Publication series

Name	32nd USENIX Security Symposium, USENIX Security 2023
Volume	8

Conference

Conference	32nd USENIX Security Symposium, USENIX Security 2023
Country/Territory	United States
City	Anaheim
Period	9/08/23 → 11/08/23

Cite this

@inproceedings{02c7dd76a3254580aa6c3073ec9cc455,

title = "How fast do you heal? A taxonomy for post-compromise security in secure-channel establishment",

abstract = "Post-Compromise Security (PCS) is a property of secure-channel establishment schemes, which limits the security breach of an adversary that has compromised one of the endpoint to a certain number of messages, after which the channel heals. An attractive property, especially in view of Snowden{\textquoteright}s revelation of mass-surveillance, PCS was pioneered by the Signal messaging protocol, and is present in OTR. In this paper, we introduce a framework for quantifying and comparing PCS security, with respect to a broad taxonomy of adversaries. The generality and flexibility of our approach allows us to model the healing speed of a broad class of protocols, including Signal, but also an identity-based messaging protocol named SAID, and even a composition of 5G handover protocols.",

author = "Olivier Blazy and Ioana Boureanu and Pascal Lafourcade and Cristina Onete and L{\'e}o Robert",

year = "2023",

month = jan,

day = "1",

language = "English",

series = "32nd USENIX Security Symposium, USENIX Security 2023",

publisher = "USENIX Association",

pages = "5917--5934",

booktitle = "32nd USENIX Security Symposium, USENIX Security 2023",

}

Blazy, O, Boureanu, I, Lafourcade, P, Onete, C & Robert, L 2023, How fast do you heal? A taxonomy for post-compromise security in secure-channel establishment. in 32nd USENIX Security Symposium, USENIX Security 2023. 32nd USENIX Security Symposium, USENIX Security 2023, vol. 8, USENIX Association, pp. 5917-5934, 32nd USENIX Security Symposium, USENIX Security 2023, Anaheim, United States, 9/08/23.

How fast do you heal? A taxonomy for post-compromise security in secure-channel establishment. / Blazy, Olivier; Boureanu, Ioana; Lafourcade, Pascal et al.
32nd USENIX Security Symposium, USENIX Security 2023. USENIX Association, 2023. p. 5917-5934 (32nd USENIX Security Symposium, USENIX Security 2023; Vol. 8).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - How fast do you heal? A taxonomy for post-compromise security in secure-channel establishment

AU - Blazy, Olivier

AU - Boureanu, Ioana

AU - Lafourcade, Pascal

AU - Onete, Cristina

AU - Robert, Léo

PY - 2023/1/1

Y1 - 2023/1/1

N2 - Post-Compromise Security (PCS) is a property of secure-channel establishment schemes, which limits the security breach of an adversary that has compromised one of the endpoint to a certain number of messages, after which the channel heals. An attractive property, especially in view of Snowden’s revelation of mass-surveillance, PCS was pioneered by the Signal messaging protocol, and is present in OTR. In this paper, we introduce a framework for quantifying and comparing PCS security, with respect to a broad taxonomy of adversaries. The generality and flexibility of our approach allows us to model the healing speed of a broad class of protocols, including Signal, but also an identity-based messaging protocol named SAID, and even a composition of 5G handover protocols.

AB - Post-Compromise Security (PCS) is a property of secure-channel establishment schemes, which limits the security breach of an adversary that has compromised one of the endpoint to a certain number of messages, after which the channel heals. An attractive property, especially in view of Snowden’s revelation of mass-surveillance, PCS was pioneered by the Signal messaging protocol, and is present in OTR. In this paper, we introduce a framework for quantifying and comparing PCS security, with respect to a broad taxonomy of adversaries. The generality and flexibility of our approach allows us to model the healing speed of a broad class of protocols, including Signal, but also an identity-based messaging protocol named SAID, and even a composition of 5G handover protocols.

UR - https://www.scopus.com/pages/publications/85175983100

M3 - Conference contribution

AN - SCOPUS:85175983100

T3 - 32nd USENIX Security Symposium, USENIX Security 2023

SP - 5917

EP - 5934

BT - 32nd USENIX Security Symposium, USENIX Security 2023

PB - USENIX Association

T2 - 32nd USENIX Security Symposium, USENIX Security 2023

Y2 - 9 August 2023 through 11 August 2023

ER -

How fast do you heal? A taxonomy for post-compromise security in secure-channel establishment

Abstract

Publication series

Conference

Other files and links

Fingerprint

Cite this