Prof. Dr. Marc Fischlin
Technische Universität Darmstadt
Title : Cryptographic Standards vs. Cryptographically Secure Standards
Building: E1 5 (MPI-SWS), Room 0.02
Technical standards serve the unification of norms and procedures to support interoperarability. Standardization is also common for cryptographic solutions today. Remarkably, though, cryptographic standards are often attributed with the property that they also provide strong security guarantees. The talk revisits this believe, mainly by means of our cryptographic analyses of PLAID, (standardized in AS-5185-2010, ISO/IEC 25182-1.2), OPACITY (ANSI 504-1, ISO/IEC 24727-6), and a brief look at Google’s new protocol QUIC (whose inclusion in the Chrome browser makes it a de-facto standard).
The talk is based on recent works from ESORICS 2013 and CCS 2014 and an upcoming publication at SSR 2014.