International Association for Cryptologic Research

International Association
for Cryptologic Research


Paper: Forward-Security in Private-Key Cryptography

Mihir Bellare
Bennet Yee
Search ePrint
Search Google
Abstract: This paper provides a comprehensive treatment of forward-security in the context of shared-key based cryptographic primitives, as a practical means to mitigate the damage caused by key-exposure. We provide definitions of security, practical proven-secure constructions, and applications for the main primitives in this area. We identify forward-secure pseudorandom bit generators as the central primitive, providing several constructions and then showing how forward-secure message authentication schemes and symmetric encryption schemes can be built based on standard schemes for these problems coupled with forward-secure pseudorandom bit generators. We then apply forward-secure message authentication schemes to the problem of maintaining secure access logs in the presence of break-ins.
  title={Forward-Security in Private-Key Cryptography},
  booktitle={IACR Eprint archive},
  keywords={pseudorandom number generators, forward security, audit logs},
  note={An extended abstract of this paper appears in the Proceedings of the CT-RSA 2003 conference. This is the full version. 12009 received 5 May 2001, last revised 18 Nov 2002},
  author={Mihir Bellare and Bennet Yee},