Common Contracts
1 similar Authenticated Continuous Key Agreement contracts
Authenticated Continuous Key Agreement: Active MitM Detection and PreventionAuthenticated Continuous Key Agreement • February 19th, 2023
Abstract. Current messaging protocols are incapable of detecting active man-in-the-middle threats. Even common continuous key agreement pro- tocols such as Signal, which offers forward secrecy and post-compromise security, are dependent on the adversary being passive immediately fol- lowing state compromise, and healing guarantees are lost if the attacker is not. This work offers the first solution for detecting active man-in-the- middle attacks on such protocols by extending authentication beyond the initial public keys and binding it to the entire continuous key agreement. In this, any adversarial fork is identifiable to the protocol participants. We provide a modular construction generic for application with any con- tinuous key agreement protocol, a specific construction for application to Signal, and security analysis. The modularity of our solution enables it to be seamlessly adopted by any continuous key agreement protocol.
