|![[Search]](https://talks.cam.ac.uk/images/search.gif?1209136071)
|![[A-Z Index]](https://talks.cam.ac.uk/images/az.gif?1209136071)
|![[Contact]](https://talks.cam.ac.uk/images/contact.gif?1209136071)
||![[University of Cambridge]](https://talks.cam.ac.uk/images/identifier2.gif?1209136071){kind=small} |
COOKIES: By using this website you agree that we can place Google Analytics Cookies on your device for performance monitoring. | ![[Talks.cam]](https://talks.cam.ac.uk/images/talkslogosmall.gif?1209136071) |
University of Cambridge > Talks.cam > Isaac Newton Institute Seminar Series > A long answer to the simple question, "Is TLS provably secure?"
A long answer to the simple question, "Is TLS provably secure?"Add to your list(s) Download to your calendar using vCal
If you have a question about this talk, please contact Mustapha Amrani. This talk has been canceled/deleted TLS is perhaps the Internet’s most widely used security protocol, and at its heart is a subprotocol for providing data privacy and integrity, called the TLS Record Protocol. Is the TLS Record Protocol provably secure? A series of papers starting in 2000 delivered the answers (roughly): no, not for all possible underlying encryption schemes; yes, for some of the specific encryption schemes that TLS uses, but only under some impractical assumptions; yes, under less restrictive assumptions, but for a definition of “secure” that is hard to understand; yes, as long as your integrity-providing “tag” isn’t too short. We’ll explore this line of papers, as well as some interesting attacks that helped to guide the provable-security results. In the end, we’ll argue that the answer is still “it depends on how you use it” by discussing new results on using secure authenticated encryption (e.g. TLS ) as a tunnel between a user and a proxy, through which webpages are requested and downloaded. We’ll see that it is surprisingly easy to determine which webpage was visited, even in the presence of some sophisticated efforts to fragment and pad the webpage data prior to entering the provably-secure encryption tunnel. This talk is part of the Isaac Newton Institute Seminar Series series. This talk is included in these lists:This talk is not included in any other list Note that ex-directory lists are not shown. |
Other listsCambridge ESRC DTP Annual Lecture ELRIG Inaugural Cambridge Networking Event Caius-Trinity MedSoc Talks - 'The Future of Medicine'Other talksUnbiased Estimation of the Eigenvalues of Large Implicit Matrices Roland the Hero Big and small history in the Genizah: how necessary is the Cairo Genizah to writing the history of the Medieval Mediterranean? Changing understandings of the human fetus over five decades of legal abortion Enhanced Decision Making in Drug Discovery Making Refuge: Flight Structural basis for human mitochondrial DNA replication, repair and antiviral drug toxicity The ‘Easy’ and ‘Hard’ Problems of Consciousness 'Cambridge University, Past and Present' Are hospital admissions for people with palliative care needs avoidable and unwanted? Satellite Observations for Climate Resilience and Sustainability |
Shrimpton, T (Portland State)
Tuesday 31 January 2012, 14:45-15:30