Academic Commons

Articles

Efficient, DoS-Resistant, Secure Key Exchange for Internet Protocols

Aiello, William; Bellovin, Steven Michael; Blaze, Matt; Canetti, Ran; Ioannidis, John; Keromytis, Angelos D.; Reingold, Omer

We describe JFK, a new key exchange protocol, primarily designed for use in the IP Security Architecture. It is simple, efficient, and secure; we sketch a proof of the latter property. JFK also has a number of novel engineering parameters that permit a variety of trade-offs, most notably the ability to balance the need for perfect forward secrecy against susceptibility to denial-of-service attacks.

Subjects

Files

More About This Work

Academic Units
Computer Science
Published Here
June 25, 2010

Notes

Proceedings of the 9th ACM Conference on Computer and Communications Security: CCS 2002: November 18-22, 2002, Washington, DC, USA (New York: ACM Press, 2002), pp. 48-58.