Please use this identifier to cite or link to this item: http://repositorio.inesctec.pt/handle/123456789/11228
Title: A Machine-Checked Proof of Security for AWS Key Management Service
Authors: José Bacelar Almeida
Tasiran,S
Strub,PY
Portela,B
Pereira,V
Gregoire,B
Cohen,E
Campagna,M
Barthe,G
Manuel Barbosa
Issue Date: 2019
Abstract: We present a machine-checked proof of security for the domain management protocol of Amazon Web Services' KMS (Key Management Service) a critical security service used throughout AWS and by AWS customers. Domain management is at the core of AWS KMS; it governs the top-level keys that anchor the security of encryption services at AWS. We show that the protocol securely implements an ideal distributed encryption mechanism under standard cryptographic assumptions. The proof is machine-checked in the EasyCrypt proof assistant and is the largest EasyCrypt development to date.
URI: http://repositorio.inesctec.pt/handle/123456789/11228
http://dx.doi.org/10.1145/3319535.3354228
metadata.dc.type: conferenceObject
Publication
Appears in Collections:HASLab - Articles in International Conferences

Files in This Item:
File Description SizeFormat 
P-00R-F7N.pdf1.79 MBAdobe PDFThumbnail
View/Open


Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.