English

How to prevent type-flaw and multi-protocol attacks on cryptographic protocols under Exclusive-OR

Cryptography and Security 2010-06-22 v3 Logic in Computer Science

Abstract

Type-flaw attacks and multi-protocol attacks on security protocols have been frequently reported in the literature. Heather et al. and Guttman et al. have proven that these could be prevented by tagging encrypted components with distinct constants in a standard protocol model with free message algebra and perfect encryption. However, most "real-world" protocols such as SSL 3.0 are designed with the Exclusive-OR (XOR) operator that possesses algebraic properties, breaking the free algebra assumption. These algebraic properties induce equational theories that need to be considered when analyzing protocols that use the operator. This is the problem we consider in this paper: We prove that, under certain assumptions, tagging encrypted components still prevents type-flaw and multi-protocol attacks even in the presence of the XOR operator and its algebraic properties.

Keywords

Cite

@article{arxiv.1004.2522,
  title  = {How to prevent type-flaw and multi-protocol attacks on cryptographic protocols under Exclusive-OR},
  author = {Sreekanth Malladi},
  journal= {arXiv preprint arXiv:1004.2522},
  year   = {2010}
}

Comments

37 pages plus 14 pages in the Appendix

R2 v1 2026-06-21T15:10:33.477Z