- Subscribe to this page:
- RSS
- Email Alert
security management
(20037 results)-
White Papers
Hummingbird: Privacy at the Time of Twitter
Mar 2010
In the last several years, micro-blogging Online Social Networks (OSNs), such as Twitter, have taken the world by storm, now boasting over 100 million subscribers. As an unparalleled stage for an...
Provided by ETH Zurich
-
White Papers
Towards a Probabilistic Complexity-theoretic Modeling of Biological Cyanide Poisoning as Service Attack in Self-organizing Networks
Oct 2011
In this paper, the authors propose to use probabilistic complexity theory, which is also known as the foundation of modern cryptography, to study very complex systems in the form of large-scale...
Provided by University of Alabama
-
White Papers
Rubik's for Cryptographers
Jan 2011
Hard mathematical problems are at the core of security arguments in cryptography. In this paper, the authors study mathematical generalizations of the famous Rubik's cube puzzle, namely the...
Provided by University of California
-
White Papers
Security of Multiple-Key Agreement Protocols and Propose an Enhanced Protocol
Nov 2011
Multiple key agreement protocols produce several session keys instead of one session key. Most of the multiple key agreement protocols do not utilize the hash functions in the signature schemes...
Provided by K.N.Toosi University of Technology
-
White Papers
Practical Realisation and Elimination of an ECC-Related Software Bug Attack
Mar 2012
The authors analyze and exploit implementation features in OpenSSL version 0:9:8g which permit an attack against ECDH-based functionality. The attack, although more general, can recover the entire...
Provided by Aalto University
-
White Papers
Indifferentiability Security of the Fast Widepipe Hash: Breaking the Birthday Barrier
Jan 2012
The main result of the paper is the solution to a longstanding open problem in the hash function literature: to show that an n-bit iterative hash function can achieve both the rate 1 efficiency,...
Provided by NIST
-
White Papers
Near-Linear Unconditionally-Secure Multiparty Computation With a Dishonest Minority
Nov 2011
Secure MultiParty Computation (MPC) allows a set of n players to compute any public function, given as an arithmetic circuit, on private inputs, so that privacy of the inputs as well as...
Provided by Microsoft Research
-
White Papers
Maximum Leakage Resilient IBE and IPE
Mar 2012
In the model of identity-based encryption, first proposed by Shamir, one can use arbitrary strings as public keys. The research on IBE is an active and stimulating field of cryptography, and so...
Provided by Ibaraki University
-
White Papers
A Note on Semi-Bent Functions With Multiple Trace Terms and Hyperelliptic Curves
Nov 2011
Semi-bent functions with even number of variables are a class of important Boolean functions whose Hadamard transform takes three values. The authors subsequently give a connection between the...
Provided by University of Paris 13
-
White Papers
Algebraic Complexity Reduction and Cryptanalysis of GOST
Nov 2011
GOST 28147-89 is a well-known block cipher and the official encryption standard of the Russian Federation. Its large key size of 256 bits at a particularly low implementation cost make GOST a...
Provided by University College London
-
White Papers
Two RFID Privacy Models in Front of a Court
Nov 2011
In ASIACRYPT 2007, Vaudenay proposed a comprehensive privacy model for unilateral RFID schemes. Soon after, in ASIACCS 2008, Paise and Vaudenay presented a new version of the cited model which...
Provided by Sharif University of Technology
-
White Papers
New Attacks on Keccak-224 and Keccak-256
Nov 2011
The Keccak hash function is one of the five finalists in NIST's SHA-3 competition, and so far it showed remarkable resistance against practical collision finding attacks: after several years of...
Provided by University of Haifa
-
White Papers
Indifferentiability of the Hash Algorithm BLAKE
Nov 2011
BLAKE, designed by Aumasson, Henzen, Meier, and Phan, is the one of the five SHA-3 finalists. Indifferentiability is one of well known security notions of hash functions, because it shows how...
Provided by National Institute of Standards and Technology
-
White Papers
Homomorphic Encryption From Codes
Nov 2011
The authors propose a new homomorphic encryption scheme based on the hardness of decoding under independent random noise from certain affine families of codes. Unlike in previous lattice-based...
Provided by Chinese University of Hong Kong
-
White Papers
Adaptive Security of Concurrent Non-Malleable Zero-Knowledge
Nov 2011
A zero-knowledge protocol allows a prover to convince a verifier of the correctness of a statement without disclosing any other information to the verifier. It is a basic tool and widely used in...
Provided by Shanghai Jiao Tong University
-
White Papers
Provable Security of BLAKE With Non-Ideal Compression Function
Nov 2011
Hash functions are a main building block for numerous cryptographic applications. Due to a series of attacks on the widely deployed SHA-1 hash function by Wang et al., the US National Institute...
Provided by Katholieke Universiteit Leuven
-
White Papers
Multidimensional Meet-in-the-Middle Attack and Its Applications to GOST, KTANTAN and Hummingbird-2
Feb 2012
This paper investigates a new approach to analyze symmetric ciphers by dividing the algorithms to consecutive sub-ciphers and then evaluating them separately. This attack is suitable for ciphers...
Provided by University of Waterloo
-
White Papers
Practical Relay Attack on Contactless Transactions by Using NFC Mobile Phones
Feb 2012
Contactless technology is widely used in security sensitive applications, including identification, payment and access-control systems. Near Field Communication (NFC) is a short-range contactless...
Provided by Royal Holloway, University of London
-
White Papers
Charm: A Framework for Rapidly Prototyping Cryptosystems
Oct 2011
The authors describe Charm, an extensible framework designed for rapid prototyping of cryptographic systems that utilize the latest advances in cryptography, such as identity and attribute-based...
Provided by Johns Hopkins University
-
White Papers
Impossible Differential Cryptanalysis of the Lightweight Block Ciphers TEA, XTEA and HIGHT
Dec 2011
TEA, XTEA and HIGHT are lightweight block ciphers with 64-bit block sizes and 128-bit keys. The round functions of the three ciphers are based on the simple operations XOR, modular addition and...
Provided by Shandong University
-
Whitepapers
On the Joint Security of Encryption and Signature in EMV
Dec 2011
The authors provide an analysis of current and future algorithms for signature and encryption in the EMV standards in the case where a single key-pair is used for both signature and encryption....
Provided by IBM
-
White Papers
On Security of the Utility Preserving RASP Encryption
Nov 2011
Many potential users hesitate to use cloud computing because of the data confidentiality issue. Can the people compute on untrusted public cloud platform with both data confidentiality and data...
Provided by Wright State University
-
White Papers
Multiparty Computation With Low Communication, Computation and Interaction Via Threshold FHE
Nov 2011
Fully Homomorphic Encryption (FHE) provides a simple template for secure computation between two parties (Alice and Bob) where: Alice encrypts her input under her key, Bob homomorphically...
Provided by Bar-Ilan University
-
White Papers
IBAKE: Identity-Based Authenticated Key Exchange Protocol
Nov 2011
The past decade has witnessed a surge in exploration of cryptographic concepts based on pairings over Elliptic Curves. In particular, identity-based cryptographic protocols have received a lot of...
Provided by Bell Labs
-
White Papers
Adaptive and Concurrent Secure Computation From New Notions of Non-Malleability
Nov 2011
The authors present a unified framework for obtaining general secure computation that achieves adaptive-Universally Composable (UC)-security. Their framework captures essentially all previous...
Provided by International Association for Cryptologic Research
-
White Papers
Robust Traffic Anomaly Detection With Principal Component Pursuit
Nov 2010
Principal Component Analysis (PCA) is a statistical technique that has been used for data analysis and dimensionality reduction. It was introduced as a network traffic anomaly detection technique...
Provided by Association for Computing Machinery
-
White Papers
On the Designs and Challenges of Practical Binary Dirty Paper Coding
Aug 2009
The authors propose a practical scheme for binary dirty-paper channels. By exploiting the concept of random binning instead of superposition coding, the complexity of the system is greatly...
Provided by Institute of Electrical and Electronics Engineers
-
White Papers
Round-Optimal Privacy-Preserving Protocols With Smooth Projective Hash Functions
Feb 2012
In 2008, Groth and Sahai proposed a powerful suite of techniques for constructing non-interactive zero-knowledge proofs in bilinear groups. Their proof systems have found numerous applications,...
Provided by Ecole normale superieure
-
White Papers
Utilizing Social Links for Location Privacy in Opportunistic Delay-Tolerant Networks
Feb 2012
This paper is concerned with improving location-privacy for users accessing location-based services in opportunistic DTNs. The authors design a protocol that offers location privacy through...
Provided by University of Nottingham
-
White Papers
Erasure Coding With Replication to Defend Against Malicious Attacks in DTN
Aug 2011
Privacy and security in Delay-Tolerant Networks (DTNs) have been an active research topic in the recent years, especially, as people can be involved in these networks and use their mobile devices...
Provided by University of Nottingham
-
White Papers
Efficient Many-to-One Authentication With Certificateless Aggregate Signatures
Apr 2010
Aggregate signatures allow an efficient algorithm to aggregate n signatures of n distinct messages from n different users into one single signature. The resulting aggregate signature can convince...
Provided by Reed Elsevier
-
White Papers
A Survey on Secure Multipath Routing Protocols in WSNs
Mar 2010
Routing protocols in Wireless Sensor Networks (WSN) have been substantially investigated by researches. Most state-of-the-art surveys have focused on reviewing the different routing schemes that...
Provided by Reed Elsevier
-
White Papers
Security Enhancements Against UMTS - GSM Interworking Attacks
Jan 2010
In this paper, the authors first present three new attacks on Universal Mobile Telecommunication System (UMTS) in access domain. They exploit the interoperation of UMTS network with its...
Provided by Reed Elsevier
-
White Papers
Evading Stepping-Stone Detection Under the Cloak of Streaming Media With SNEAK
Apr 2010
Network-based intrusions have become a serious threat to the users of the Internet. To help cover their tracks, attackers launch attacks from a series of previously compromised systems called...
Provided by Reed Elsevier
-
White Papers
Intrusion Prevention in Networks
Mar 2012
A properly configured firewall is a good starting point in securing a computer network. However, complex network environments that involve higher number of participants and endpoints require...
Provided by Maharshi Dayanand College
-
White Papers
Virtual Realization using 3D Password
Mar 2012
Current authentication systems suffer from many weaknesses. Textual passwords are commonly used; however, users do not follow their requirements. Users tend to choose meaningful words from...
Provided by P. R. Patil Group of Educational Institutes
-
White Papers
Performance Evaluation of DSR Protocol Under DoS Attack
Mar 2012
A Mobile Ad-hoc NETwork (MANET) consists of mobile hosts equipped with wireless communication devices. A Mobile Ad hoc Network is a self-organizing, infrastructure less, multi-hop network. The...
Provided by Bhagwan Mahavir Education Foundation
-
White Papers
Inimitability of Fingerprint for Establishment of Identity
Mar 2012
To uniquely identify a single person, different types of information can be used with other sources. This concept is ancient, and it has become much more important as information technology and...
Provided by University of Kalyani
-
White Papers
A Quick Review of Network Security and Steganography
Apr 2012
In this paper, the authors present a classification of network security techniques such as: secrecy, authentication, non-repudiation and integrity control. The secrecy techniques are two...
Provided by Mody Institute of Technology and Science
-
White Papers
Analysis of AD HOC Network and Mobile Agent Using Threshold Cryptography
Mar 2012
In a very simple form a Mobile Agent is an independent piece of code that has mobility and autonomy behavior. One of the main advantages of using Mobile Agent in a network is - it reduces network...
Provided by Jadavpur University
-
White Papers
Clear Skies Ahead: Cloud Computing and In-the-Cloud Security
Apr 2009
The difference between cloud computing and in-the-cloud security should be clear. It will be a couple of years before cloud computing really takes off as companies will have to get used to the...
Provided by Kaspersky Lab
-
White Papers
Vulnerability Anti.dote: Zero-Day Protection Against Known Vulnerabilities
Apr 2008
Enterprises, corporations, organizations and governmental agencies alike realize that they need to adopt a security strategy that protects their network systems and data from malicious content,...
Provided by Finjan
-
White Papers
How to Minimize the Impact of Cybercrime on Your Business: With Finjan's Active Real-Time Code Inspection
Apr 2008
Off late cybercriminals are motivated by financial gain, and their main vector of attack has become the Web. They understand too well that signature- and database-reliant solutions are not...
Provided by Finjan
-
White Papers
Businesses Under Cybercrime Attack - The Risks, the Impact and the Solution
Sep 2008
This paper gives an insight into the cybercrime economy, including the latest Crimeware attacks and business models. It also outlines the long-lasting effects of successful cybercrime for...
Provided by Finjan
-
White Papers
How Does Finjan's Unified Web Security Solution Differ From........?
Mar 2009
Anti-Virus solutions were created to protect against known threats, and are by nature reactive and signature-based. They served companies well during the time when attacks were static, and...
Provided by Finjan
-
White Papers
The Barracuda Web Application Firewall Advantage
Jul 2009
Barracuda Web Application Firewall technology secures and accelerates the Web infrastructure of many Fortune 500 companies. Barracuda Networks offers the largest range of Web application security...
Provided by Barracuda Networks
-
White Papers
Barracuda Web Application Firewall Protects Against the Top 10 Biggest Web Site Threats
Dec 2007
With the Internet continually evolving to enable organizations to establish a global presence, conduct transactions and deliver real-time communications, it creates the need to ensure a heightened...
Provided by Barracuda Networks
-
White Papers
Achieve a Higher Return on Investment With the Barracuda Web Filter
Apr 2009
An important factor to consider when evaluating Web filtering solutions is the total cost of ownership. Very often, the hidden costs of deployment and maintenance can be as much as or even more...
Provided by Barracuda Networks
-
White Papers
Comprehensive Email Filtering: Barracuda Spam & Virus Firewall Safeguards Legitimate Email
Mar 2008
Email has undoubtedly become a valued communications tool among organizations worldwide. With frequent virus attacks and the alarming influx of spam, email loses the efficiency to communicate. The...
Provided by Barracuda Networks
-
White Papers
Barracuda Networks Anti-Virus Technology
Apr 2009
With its combination of technologies specifically designed to meet these criteria over SMTP and HTTP protocols, Barracuda Networks is able to provide best-of-breed protection for customers of the...
Provided by Barracuda Networks
-
White Papers
Storm Worm & Botnet Analysis
Jun 2008
When worm is running, it unpacks itself first, and then drops a malicious PE file that is embedded in the executable file. Then, it decrypts the malicious PE file into heap memory. When these...
Provided by Websense
-
White Papers
5 Steps Every Business Can Take to Guard Against Botnets
Sep 2009
Robot networks and zombie armies may sound like names from science fiction. Unfortunately, they identify actual threats to information systems across the globe. By secretly invading business...
Provided by Symantec
-
White Papers
Converged Threats on the Security Landscape
Jun 2009
The pervasive presence of malware on the Internet today creates more opportunities for mixing and matching dangerous content than has ever been possible. The essence of a converged threat is the...
Provided by Symantec
-
White Papers
Web Use and Misuse
Nov 2008
Three out of four employers have had to deal with employees who waste time online, according to a recent survey by Employment Review magazine1. Companies had problems with employees misusing...
Provided by Symantec
-
White Papers
New Web Threats in 2009
Feb 2009
The new web borne threats attacking business networks are more intense and sophisticated than ever. Techniques using rich media, open source platforms, web 2.0 collaboration tools; social...
Provided by Symantec
-
White Papers
Choosing a Cost-Effective Email Security Solution: In Turbulent Economic Times
Jan 2009
Managing a portfolio of IT projects is one of the most complex, costly and resource intensive activities that organizations face. In today's sluggish economy, many companies are facing IT budget...
Provided by Symantec
-
White Papers
The Changing Role of the Network Administrator
Oct 2007
The goal of this paper is to describe how the role of the network administrator is changing and to identify a set of attributes network administrators will need to be successful going forward....
Provided by Ipswitch
-
White Papers
The Network Monitoring in Distributed Environments: Challenges and Opportunities for Enterprises
Nov 2007
Consider, then, how the complexity grows exponentially in distributed enterprise environments with multiple LANs and WANs - and the same critical need for consistent performance. This paper...
Provided by Ipswitch
-
White Papers
The Value of Network Monitoring: Why It's Essential to Know Your Network
Nov 2007
Network management is a broad functional area incorporating device monitoring, application management, security, ongoing maintenance, service levels, troubleshooting, planning, and other tasks -...
Provided by Ipswitch
-
White Papers
Supporting Compliance With Payment Card Industry Data Security Standard (PCI-DSS)
Mar 2009
The majority of the PCI-DSS requirements relate to network security. On the one hand, they are designed to ensure that network security practices eliminate or minimize known risks. On the other...
Provided by Tufin Software Technologies
-
White Papers
Firewall Operations Management
Apr 2009
Managing network security for a large organization has become a highly complex operation involving dozens or even hundreds of firewalls. Multiple sites and teams, different hardware and software...
Provided by Tufin Software Technologies
-
White Papers
The New Face of Intrusion Prevention: Check Point IPS Software Blade Gives Breakthrough Performance and Protection at a Breakthrough Price
Jun 2009
Off late organizations had two choices when considering Intrusion Prevention (IPS): an expensive, dedicated IPS system, or an integrated system that lacked robust performance and security....
Provided by Check Point Software Technologies
-
White Papers
Remote Access Anytime, Anywhere: Clientless Entry Delivered Seamlessly With SSL Network Extender
Aug 2007
SSL VPN remote access offers a host of benefits, including the ability to provide clientless access anytime, anywhere to the corporate network using any modern Web browser. A clientless SSL VPN...
Provided by Check Point Software Technologies
-
White Papers
The Power-1 Performance Architecture: Delivering Application-Layer Security at Data Center Performance Levels
Jul 2008
Companies have always faced a tradeoff with network security. Do they lock down the network and face performance issues? Or do they focus on a high level of performance at the expense of...
Provided by Check Point Software Technologies
-
White Papers
Best Practices for Deploying Intrusion Prevention Systems: A Better Approach to Securing Networks
May 2008
Interest in intrusion prevention has been gaining ground since late 2006. There are a number of reasons for this, not least of which is the thinking that a defense-in-depth strategy is essential...
Provided by Check Point Software Technologies
-
White Papers
Building a Foundation for PCI: Primer on PCI 1.1 Compliance With Check Point Solutions
Aug 2009
Companies affected by the PCI standard - merchants, banks, and service providers - are required to conduct a variety of validation activities, including quarterly scans, a self-assessment...
Provided by Check Point Software Technologies
-
White Papers
How to Get NAC Up-and-Running in One Hour: For Check Point Firewall or Endpoint Security Administrators
Jul 2009
NAC can provide an organization with powerful, granular control of endpoint network access. Port-based NAC deployment is challenging, but gateway NAC can deploy in one hour with a Check Point...
Provided by Check Point Software Technologies
-
White Papers
Guide to the TCO of Encryption: Deployment of Check Point Data Security Can Reduce the Total Cost of Ownership by Half
Feb 2008
This white paper, Guide to the TCO of Encryption, provides a rational model for analyzing the total cost of owning, managing, and using full-disk encryption in large organizations. Encryption is a...
Provided by Check Point Software Technologies
-
White Papers
Guide to the ROI of Encryption: Data Security From Check Point Can Cut the Cost of Data Exposure Due to Lost Devices by 90 Percent
Feb 2008
Encryption is a cyber security technology used to protect the confidentiality, integrity, and availability of information stored on or transmitted between computers. Encryption solutions from...
Provided by Check Point Software Technologies
-
White Papers
Federal Guide to the Value of Encryption: Encryption From Check Point Can Reduce Recurring Financial Risks of Security Exposure by 90 Percent
Feb 2008
Encryption is a cyber security technology used to protect the confidentiality, integrity, and availability of information stored on or transmitted between computers. Encryption solutions from...
Provided by Check Point Software Technologies
-
White Papers
Check Point Endpoint Security Full Disk Encryption: Detailed Product Overview for Windows and Linux
May 2009
In times past, securing sensitive company data was a simple matter of locking doors, hiring guards, and issuing employee IDs. In today's high-tech world, sensitive data travels outside of company...
Provided by Check Point Software Technologies
-
White Papers
Check Point Endpoint Security Full Disk Encryption: Detailed Product Overview for Mac OS X
Oct 2008
Check Point Endpoint Security Full Disk Encryption, based on market-leading Pointsec technology, is designed to provide comprehensive security for data at rest, especially on notebook PCs. It is...
Provided by Check Point Software Technologies
-
White Papers
Endpoint Security Considerations for Achieving GLBA Compliance
Mar 2009
Rebooting the global financial system may take years. The international move to new regulatory organizations will require financial institutions to change the way they do business. No one knows...
Provided by Check Point Software Technologies
-
White Papers
Comprehensive Endpoint Security: New Endpoint Vulnerabilities Such as Web-Based Malware Are Increasing Information Security Risk in the Enterprise
Jul 2009
Off late malicious activity on the Internet has advanced from worms and viruses attacking random computers in the wild, to the highly sophisticated and targeted attacks - such as the TJ Maxx and...
Provided by Check Point Software Technologies
-
White Papers
Clustering on Check Point IP Appliances
Apr 2009
Modern networks are carrying both the financial transactions and the information that is the lifeblood of today's businesses, which makes network outages (or even degraded performance)...
Provided by Check Point Software Technologies
-
White Papers
Securing Browsers to Protect Endpoints and Enterprises From Web-Based Attacks
Jul 2009
Enterprises must be more resourceful than ever to thwart new kinds of web-based attacks. The dominant threat to endpoint security now combines characteristics of historically effective attacks...
Provided by Check Point Software Technologies
-
White Papers
Check Point IP Appliance Advantages
Aug 2009
IP Appliances are scalable, robust and secure. They are optimized for route processing and packet forwarding. The platform started with no binaries and libraries and then added different elements...
Provided by Check Point Software Technologies
-
White Papers
Access Control Industry Best Practices
Apr 2008
Recent questions have been raised about the vulnerabilities of physical access control systems. Unfortunately, some critics, with limited familiarity of the security industry, have oversimplified...
Provided by HID Global
-
White Papers
HID on the Desktop Security Overview
Apr 2009
HID on the Desktop (HOTD) is a suite of solutions designed to strengthen the overall security of a desktop log-on by using Two-Factor Authentication, combining something the user has (their ID...
Provided by HID Global
-
White Papers
Building Secure Software With Java
May 2009
This white paper discusses the applicability and desirability of Java as a programming language for use in secure systems. Java is much more secure than C and C++ because the byte-code verifier...
Provided by Aonix
-
White Papers
Short and Efficient Expressive Attribute-Based Signature in the Standard Model
Mar 2012
Attribute-based signature allows the signer to announce his endorsement using a signing policy without revealing the identity, and only the signer whose attributes satisfy the signing policy can...
Provided by Chinese Academy of Sciences
-
White Papers
On Securing Communication From Profilers
Mar 2012
A profiling adversary is an adversary which aims to classify messages into pre-defined profiles and thus gain useful information regarding the sender or receiver of such messages. Usual...
Provided by Cinvestav
-
White Papers
Injection of Transient Faults Using Electromagnetic Pulses -Practical Results on a Cryptographic System
Mar 2012
This paper considers the use of magnetic pulses to inject transient faults into the calculations of a RISC micro-controller running the AES algorithm. A magnetic coil is used to generate the...
Provided by International Association for Cryptologic Research
-
White Papers
Efficient Arithmetic on Hessian Curves Over Fields of Characteristic Three
Mar 2012
This paper presents new explicit formulas for the point doubling, tripling and addition for Hessian curves and their equivalent Weierstrass curves over finite fields of characteristic three. The...
Provided by North China University of Technology
-
White Papers
An Efficient Multistage Secret Sharing Scheme Using Linear One-way Functions and Bilinear Maps
Mar 2012
In a Multistage Secret Sharing (MSSS) Scheme, the authorized subsets of participants could reconstruct a number of secrets in consecutive stages. A One-Stage Multisecret Sharing (OSMSS) Scheme is...
Provided by Sharif University of Technology
-
White Papers
Password Protected Smart Card and Memory Stick Authentication Against Off-Line Dictionary Attacks
Mar 2012
The authors study the security requirements for remote authentication with password protected smart card. In recent years, several protocols for password-based authenticated key exchange have been...
Provided by University of North Carolina
-
White Papers
Accelerating the Final Exponentiation in the Computation of the Tate Pairings
Mar 2012
Non-degenerate bilinear pairings have played a key role in public-key cryptography since they have been used to construct identity-based encryption schemes and one-round three-way key exchange...
Provided by Seoul National University
-
White Papers
Stronger Public Key Encryption Schemes Withstanding RAM Scraper Like Attacks
Mar 2012
Security of an encryption system is formally established through the properties of an abstract game played between a challenger and an adversary. During the game, the adversary will be provided...
Provided by Indian Institute of Technology Madras
-
White Papers
Universally Composable Security With Local Adversaries
Apr 2012
The traditional approach to formalizing ideal-model based definitions of security for multi-party protocols model adversaries (both real and ideal) as centralized entities that control all parties...
Provided by Boston University
-
White Papers
Clash Attacks on the Verifiability of E-Voting Systems
Mar 2012
Verifiability is a central property of modern e-voting systems. Intuitively, verifiability means that voters can check that their votes were actually counted and that the published result of the...
Provided by University of Trier
-
White Papers
Cryptanalysis of Auditing Protocol Proposed by Wang Et Al. for Data Storage Security in Cloud Computing
Mar 2012
Cloud Computing as the on-demand and remote provision of computational resources has been eagerly waited for a long time as a computing utility. It helps users to store their data in the cloud and...
Provided by International Association for Cryptologic Research
-
White Papers
On Hardening Leakage Resilience of Random Extractors for Instantiations of Leakage Resilient Cryptographic Primitives
Mar 2012
Random extractors are proven to be important building blocks in constructing leakage resilient cryptographic primitives. Nevertheless, recent efforts showed that they are likely more leaky than...
Provided by Chinese Academy of Sciences
-
White Papers
On the Collision and Preimage Security of MDC-4 in the Ideal Cipher Model
Feb 2012
The authors present the first collision and preimage security analysis of MDC-4, a 24 years old construction for transforming an n-bit block cipher into a 2n-bit hash function. These results then...
Provided by Katholieke Universiteit Leuven
-
White Papers
On The Nonlinearity of Maximum-Length NFSR Feedbacks
Feb 2012
Linear Feedback Shift Registers (LFSRs) are the main building block of many classical stream ciphers; however due to their inherent linearity, most of the LFSR-based designs do not offer the...
Provided by National Institute of Standards and Technology
-
White Papers
On the Immunity of Rotation Symmetric Boolean Functions Against Fast Algebraic Attacks
Feb 2012
Boolean functions are frequently used in the design of stream ciphers, block ciphers and hash functions. One of the most vital roles in cryptography of Boolean functions is to be used as filter...
Provided by Chinese Academy of Sciences
-
White Papers
Security Analysis of A Single Sign-On Mechanism for Distributed Computer Networks
Feb 2012
Single Sign-On (SSO) is a new authentication mechanism that enables a legal user with a single credential to be authenticated by multiple service providers in distributed computer networks....
Provided by University of Wollongong
-
White Papers
More on Correcting Errors in RSA Private Keys: Breaking CRT-RSA With Low Weight Decryption Exponents
Feb 2012
Several schemes have been proposed towards the fast encryption and decryption in RSA and its variants. One popular idea is to use integers having low Hamming weight in the preparation of the...
Provided by Indian Statistical Institute
-
White Papers
Generic Construction of Certificate Based Encryption From Certificateless Encryption Revisited
Feb 2012
CertificateLess public key Encryption (CLE) and Certificate Based Encryption (CBE) are two novel public key cryptographic primitives requiring no authenticity verification of the recipient's...
Provided by Shanghai Jiao Tong University
-
White Papers
Provably Secure Generic Construction of Certificate Based Signature From Certificateless Signature in Standard Model
Feb 2012
Similar to certificateless cryptography, certificate-based cryptography is another novel public key setting which combines the merits of traditional Public Key Cryptography (PKC) and...
Provided by Shanghai Jiao Tong University
-
White Papers
FlipIt: The Game of "Stealthy Takeover"
Feb 2012
Recent targeted attacks have increased significantly in sophistication, undermining the fundamental assumptions on which most cryptographic primitives rely for security. For instance, attackers...
Provided by International Association for Cryptologic Research
-
White Papers
On the Circular Security of Bit-Encryption
Mar 2012
Motivated by recent developments in fully homomorphic encryption, the authors consider the folklore conjecture that every semantically-secure bit-encryption scheme is circular secure, or in other...
Provided by Weizmann Institute of Science
-
White Papers
Cryptanalysis of a Universally Verifiable Efficient Re-Encryption Mixnet
Feb 2012
The authors study the heuristically secure mix-net proposed by Puiggali and Guasch (EVOTE 2010). They present practical attacks on both correctness and privacy for some sets of parameters of the...
Provided by International Association for Cryptologic Research
-
Whitepapers
Homomorphic Evaluation of the AES Circuit
Feb 2012
The authors describe a working implementation of leveled homomorphic encryption (without bootstrapping) that can evaluate the AES-128 circuit. Their current implementation takes about a week to...
Provided by IBM
-
White Papers
Combined Attacks on the AES Key Schedule
Feb 2012
The authors present new combined attacks on the AES key schedule based on the work of Roche et al.. The main drawbacks of the original attack are: the need for high repeatability of the fault, a...
Provided by International Association for Cryptologic Research
-
White Papers
The Collision Security of MDC-4
Feb 2012
A cryptographic hash function is a function which maps an input of arbitrary length to an output of fixed length. It should satisfy at least collision-, preimage- and second-preimage resistance...
Provided by International Association for Cryptologic Research
-
White Papers
Recursive Composition and Bootstrapping for SNARKs and Proof-Carrying Data
Apr 2012
Succinct Non-interactive ARguments of Knowledge (SNARKs), and their generalization to distributed computations by Proof-Carrying Data (PCD), are powerful tools for enforcing the correctness of...
Provided by Tel Aviv University
-
White Papers
Algebraic Attack on Lattice Based Cryptosystems Via Solving Equations Over Real Numbers
Feb 2012
In this paper, the authors present a new algorithm to attack lattice based cryptosystems by solving a problem over real numbers. In the case of the NTRU cryptosystem, if they assume the additional...
Provided by University of Cincinnati
-
White Papers
Tolerant Algebraic Side-Channel Analysis of AES
Feb 2012
The authors report on a Tolerant Algebraic Side-Channel Analysis (TASCA) attack on an AES implementation, using an optimizing pseudo-Boolean solver to recover the secret key from a vector of...
Provided by Tel-Aviv University
-
White Papers
Hardness of Decision (R) LWE for Any Modulus
Feb 2012
The decision Learning With Errors problem has proven an extremely flexible foundation for devising provably secure cryptographic primitives. This modulus q is the subject of study of the present...
Provided by INRIA
-
White Papers
Worst-Case to Average-Case Reductions for Module Lattices
Feb 2012
Most lattice-based cryptographic schemes are built upon the assumed hardness of the Short Integer Solution (SIS) and Learning With Errors (LWE) problems. Their efficiencies can be drastically...
Provided by INRIA
-
White Papers
ANOSIP: Anonymizing the SIP Protocol
Apr 2012
Enhancing anonymity in the Session Initiation Protocol (SIP) is much more than sealing participants' identities. It requires methods to unlink the communication parties and relax their proximity...
Provided by Association for Computing Machinery
-
White Papers
Moving Face Spoofing Detection Via 3D Projective Invariants
Jan 2012
Face recognition provides many advantages compared with other available biometrics, but it is particularly subject to spoofing. The most accurate methods in literature addressing this problem,...
Provided by EURECOM
-
White Papers
3D Face Recognition: A Robust Multi-Matcher Approach to Data Degradations
Jan 2012
Over the past decades, 3D face has emerged as a solution to face recognition due to its reputed invariance to lighting conditions and pose. While proposed approaches have proven their efficiency...
Provided by EURECOM
-
White Papers
A Security Analysis of Amazon's Elastic Compute Cloud Service
Mar 2012
Cloud services such as Amazon's Elastic Compute Cloud and IBM's SmartCloud are quickly changing the way organizations are dealing with IT infrastructures and are providing online services. Today,...
Provided by Association for Computing Machinery
-
White Papers
Security Protocols
Sep 2011
Traditional security protocols are mainly concerned with authentication and key establishment and rely on predistributed keys and properties of cryptographic operators. In contrast, new...
Provided by ETH Zurich
-
White Papers
GUIs for Data-Centric Applications
Sep 2011
In this paper, the authors survey a very promising instance of model-driven security: the full generation of security-aware Graphical User Interfaces (GUIs) from models for data-centric...
Provided by Universidad Complutense de Madrid
-
White Papers
Formal Reasoning About Physical Properties of Security Protocols
Sep 2011
Traditional security protocols are mainly concerned with authentication and key establishment and rely on predistributed keys and properties of cryptographic operators. In contrast, new...
Provided by ETH Zurich
-
White Papers
FAST: An Efficient Decision Procedure for Deduction and Static Equivalence
Apr 2011
Message deducibility and static equivalence are central problems in symbolic security protocol analysis. The authors present FAST, an efficient decision procedure for these problems under subterm...
Provided by ETH Zurich
-
White Papers
Key Exchange in IPsec Revisited: Formal Analysis of IKEv1 and IKEv2
Jun 2011
The IPsec standard aims to provide application-transparent end-to-end security for the Internet Protocol. The security properties of IPsec critically depend on the underlying key exchange...
Provided by ETH Zurich
-
White Papers
Efficient Decision Procedures for Message Deducibility and Static Equivalence
Feb 2011
The authors consider two standard notions in formal security protocol analysis: message deducibility and static equivalence under equational theories. They present new polynomial-time algorithms...
Provided by Springer Science+Business Media
