Get an update on changes of the IACR web-page here. For questions, contact newsletter (at) iacr.org. You can also get this service via
To receive your credentials via mail again, please click here.
You can also access the full news archive.
in presence of tamper-proof hardware tokens. We present a very efficient
protocol for password-based authenticated key exchange based on the weak model of one-time memory tokens, recently introduced by Goldwasser et al. (Crypto~2008). Our protocol only requires four moves, very basic operations, and the sender to send $\\ell$ tokens in the first step for passwords of length $\\ell$. At the same time we achieve information-theoretic security in Canetti\'s universal composition framework (FOCS~2001) against adaptive adversaries (assuming reliable erasure), even if the tokens are not guaranteed to be transferred in an authenticated way, i.e., even if the adversary can read or substitute transmitted tokens (as opposed to many previous efforts).
The University of Luxembourg has two open Ph.D. positions at its
Interdisciplinary Centre for Security, Reliability and Trust (SnT)
(http://wwwen.uni.lu/snt). We are seeking Ph.D. candidates to
participate in the activities of the SaToSS
(http://satoss.uni.lu/) and of the ApSIA (http://apsia.gforge.uni.lu/)
The main objective of the Ph.D. project is to develop a formal
framework supporting modeling and analysis of socio-technical
components of information systems. We aim to develop strategies and
tools to detect and prevent attacks involving human, physical and
digital elements. One of the goals is to extend current methodology
for security protocol analysis, by taking human behavior and
properties of physical objects into account. This goal includes a
necessity of defining appropriate adversary models and identifying the
security properties relevant in a socio-technical context.
* MSc in Computer Science or Mathematics
* A proven interest in security
* Strong background in formal methods or logics
* Good written and oral English skills
Start date: As soon as possible