Efficient, DoS-Resistant, Secure Key Exchange for Internet Protocols

Aiello, William; Bellovin, Steven Michael; Blaze, Matt; Canetti, Ran; Ioannidis, John; Keromytis, Angelos D.; Reingold, Omer

We describe JFK, a new key exchange protocol, primarily designed for use in the IP Security Architecture. It is simple, efficient, and secure; we sketch a proof of the latter property. JFK also has a number of novel engineering parameters that permit a variety of trade-offs, most notably the ability to balance the need for perfect forward secrecy against susceptibility to denial-of-service attacks.



Also Published In

Proceedings of the 9th ACM Conference on Computer and Communications Security:
CCS 2002: November 18-22, 2002, Washington, DC, USA
ACM Press

More About This Work

Academic Units
Computer Science
Published Here
July 5, 2012