SIGMA protocol family
E831961
The SIGMA protocol family is a class of cryptographic key exchange protocols designed to provide strong security and authentication properties, widely used as the basis for modern secure communication standards.
All labels observed (1)
| Label | Occurrences |
|---|---|
| SIGMA protocol family canonical | 1 |
Statements (47)
| Predicate | Object |
|---|---|
| instanceOf |
authenticated key exchange protocol
ⓘ
cryptographic key exchange protocol family ⓘ |
| basedOn | Diffie–Hellman key exchange NERFINISHED ⓘ |
| category | two-party key exchange protocol ⓘ |
| counteracts |
key-compromise impersonation attacks
ⓘ
unknown key-share attacks ⓘ |
| designGoal |
efficiency
ⓘ
flexibility ⓘ strong authentication ⓘ strong security ⓘ |
| ensures |
binding between identities and session keys
ⓘ
protection of identities from eavesdroppers ⓘ |
| field |
cryptography
ⓘ
information security ⓘ |
| hasMessageFlow | three-message pattern in common instantiations ⓘ |
| hasProperty |
provides key confirmation
ⓘ
provides mutual authentication ⓘ resists identity misbinding attacks ⓘ resists man-in-the-middle attacks ⓘ supports identity protection ⓘ supports negotiation of cryptographic algorithms ⓘ supports perfect forward secrecy ⓘ |
| hasVariant |
SIGMA with certificates
NERFINISHED
ⓘ
SIGMA with preshared keys NERFINISHED ⓘ SIGMA-I NERFINISHED ⓘ SIGMA-R NERFINISHED ⓘ |
| influenced |
IKEv2 key exchange
ⓘ
TLS authenticated key exchange designs ⓘ |
| isFrameworkFor | designing secure key exchange protocols ⓘ |
| provides |
authenticated key establishment
ⓘ
session key derivation ⓘ |
| securityModel | provable security under standard cryptographic assumptions ⓘ |
| supports |
identity hiding from passive observers
ⓘ
optional identity protection from active attackers ⓘ |
| typicalAssumptions |
hardness of discrete logarithm problem
GENERATED
ⓘ
security of MAC algorithms GENERATED ⓘ security of digital signature schemes GENERATED ⓘ |
| typicalRoleOfInitiator | prove possession of private key and contribute to key material GENERATED ⓘ |
| typicalRoleOfResponder | authenticate to initiator and contribute to key material GENERATED ⓘ |
| usedFor |
bootstrapping VPN security
ⓘ
bootstrapping secure transport protocols ⓘ establishing secure communication channels ⓘ |
| usedIn | Internet Key Exchange version 2 NERFINISHED ⓘ |
| uses |
digital signatures
ⓘ
message authentication codes ⓘ nonces ⓘ public key cryptography ⓘ |
Referenced by (1)
Full triples — surface form annotated when it differs from this entity's canonical label.