NDLI: Revoke and let live: A secure key revocation api for cryptographic devices. Research Report RR-7949 (2012)

Please wait, while we are loading the content...

Revoke and let live: A secure key revocation api for cryptographic devices. Research Report RR-7949 (2012)

Content Provider	CiteSeerX
Author	Cortier, Véronique Steel, Graham Wiedling, Cyrille
Abstract	While extensive research addresses the problem of establish-ing session keys through cryptographic protocols, relatively little work has appeared addressing the problem of revoca-tion and update of long term keys. We present an API for symmetric key management on embedded devices that sup-ports key establishment and revocation, and prove security properties of our design in the symbolic model of cryptogra-phy. Our API supports two modes of revocation: a passive mode where keys have an expiration time, and an active mode where revocation messages are sent to devices. For the first we show that once enough time has elapsed after the compromise of a key, the system returns to a secure state, i.e. the API is robust against attempts by the at-tacker to use a compromised key to compromise other keys or to keep the compromised key alive past its validity time. For the second we show that once revocation messages have been received the system immediately returns to a secure state. Notable features of our designs are that all secret val-ues on the device are revocable, and the device returns to a functionally equivalent state after revocation is complete.
File Format	PDF
Publisher Date	2012-01-01
Access Restriction	Open
Subject Keyword	Cryptographic Device Secure Key Revocation Api Research Report Rr-7949 Revocation Message Secure State Notable Feature Equivalent State Sup-ports Key Establishment Enough Time Cryptographic Protocol Api Support Secret Val-ues Extensive Research Device Return Symmetric Key Management Security Property Embedded Device Compromised Key Passive Mode Establish-ing Session Key Symbolic Model Validity Time Active Mode Expiration Time Compromised Key Alive Past Little Work Long Term Key
Content Type	Text

Central Library (ISO-9001:2015 Certified)
Indian Institute of Technology Kharagpur
Kharagpur, West Bengal, India | PIN - 721302

See location in the Map
03222 282435
Mail: support@ndl.gov.in

Sl.	Authority	Responsibilities	Communication Details
1	Ministry of Education (GoI), Department of Higher Education	Sanctioning Authority	https://www.education.gov.in/ict-initiatives
2	Indian Institute of Technology Kharagpur	Host Institute of the Project: The host institute of the project is responsible for providing infrastructure support and hosting the project	https://www.iitkgp.ac.in
3	National Digital Library of India Office, Indian Institute of Technology Kharagpur	The administrative and infrastructural headquarters of the project	Dr. B. Sutradhar bsutra@ndl.gov.in
4	Project PI / Joint PI	Principal Investigator and Joint Principal Investigators of the project	Dr. B. Sutradhar bsutra@ndl.gov.in Prof. Saswat Chakrabarti will be added soon
5	Website/Portal (Helpdesk)	Queries regarding NDLI and its services	support@ndl.gov.in
6	Contents and Copyright Issues	Queries related to content curation and copyright issues	content@ndl.gov.in
7	National Digital Library of India Club (NDLI Club)	Queries related to NDLI Club formation, support, user awareness program, seminar/symposium, collaboration, social media, promotion, and outreach	clubsupport@ndl.gov.in
8	Digital Preservation Centre (DPC)	Assistance with digitizing and archiving copyright-free printed books	dpc@ndl.gov.in
9	IDR Setup or Support	Queries related to establishment and support of Institutional Digital Repository (IDR) and IDR workshops	idr@ndl.gov.in