UW CSE | Systems Research | Applied Cryptography

CSE Home

About Us

Search

Contact Info

Cryptography is an age-old art revolving around the design of secure communication protocols -- protocols capable of protecting the confidentiality and integrity of communicated messages in the presence of adversaries. Despite such a long history, modern cryptographic protocols are often found to have serious security problems.

Our principal research goal is to provide a rigorous foundation for the security of modern cryptographic protocols, thereby lifting cryptography from an art to a science and helping ensure that future cryptographic protocols do not suffer from subtle and unexpected bugs. Our high-level approach is not unique to us -- indeed, our approach derives from the seminal research in provable security by Goldwasser and Micali and its practice-oriented extension by Bellare and Rogaway. But our perspective is uniquely systems-oriented: we revolve much of our research around the pragmatic constraints of real systems. For example, after discovering a security vulnerability in a portion of the Secure Shell (SSH) protocol, we developed provably secure fixes that are not only compatible with existing artifacts of the SSH protocol, like the internal packet format, but that exploit the presence of these artifacts for security.

We also research new cryptanalytic techniques for assessing the security of cryptographic constructs that are not amenable to our provable security-based analyses. Examples of such research include our introduction of a new method for cryptanalyzing block ciphers and our introduction of a new class of attacks against hash functions.

Selected Papers

• Amplified Boomerang Attacks Against Reduced-round MARS and Serpent [PDF]
  John Kelsey, Tadayoshi Kohno, and Bruce Schneier
  Fast Software Encryption, Apr, 2000
• Breaking and Provably Repairing the SSH Authenticated Encryption Scheme [PDF]
  Mihir Bellare, Tadayoshi Kohno, and Chanathip Namprempre
  9th ACM Conference on Computer and Communications Security, Nov, 2002 [Conference version]
  ACM Transactions on Information and System Security, May, 2004 [Journal version]
• CWC: A High-Performance Conventional Authenticated Encryption Mode [PDF]
  Tadayoshi Kohno, John Viega, and Doug Whiting
  Fast Software Encryption, Feb, 2004
• Attacking and Repairing the WinZip Encryption Scheme [PDF]
  Tadayoshi Kohno
  11th ACM Conference on Computer and Communications Security, Oct, 2004
• Searchable Encryption Revisited: Consistency Properties, Relation to Anonymous IBE, and Extensions [PDF]
  Michel Abdalla, Mihir Bellare, Dario Catalano, Eike Kiltz, Tadayoshi Kohno, Tanja Lange, John Malone-Lee, Gregory Neven, Pascal Paillier, Haixia Shi
  Advances in Cryptology - CRYPTO, Aug, 2005
• Key Regression: Enabling Efficient Key Distribution for Secure Distributed Storage [PDF]
  Kevin Fu, Seny Kamara, and Tadayoshi Kohno
  Network and Distributed System Security Symposium, Feb, 2006.
• Herding Hash Functions and the Nostradamus Attack [PDF]
  John Kelsey and Tadayoshi Kohno
  Advances in Cryptology - EUROCRYPT, May, 2006

	Computer Science & Engineering University of Washington Box 352350 Seattle, WA  98195-2350 (206) 543-1695 voice, (206) 543-2969 FAX [comments to yoshi]