• Programme
• Writing talks and theses
• Theses topics
• Teaching
• Special events
  • Schüler-Krypto 2017
  • crypt@b-it 2016
  • Christian Rechberger: Analysis and design of symmetric crypto systems
  • Markulf Kohlweiss: Internet and cloud. About TLS, outsourcing and reductions
  • Max Gebhardt: The Enigma Machine
  • 24th Crypto-Day / 24. Kryptotag
  • Schüler-Krypto 2016
  • B-IT Professor von zur Gathen's Farewell Lecture
  • Schüler-Krypto 2015
  • crypt@b-it 2014
  • Schüler-Krypto 2014
  • Joint MPIM and B-IT workshop on Number Theory and Cryptography
  • Gödel Prize Winner Antoine Joux speaks at B-IT
  • crypt@b-it 2013
  • Schüler-Krypto 2013
  • crypt@b-it 2012
  • Schüler-Krypto 2012
  • cosec at Deutschlandfest 2011
  • Schüler-Krypto 2011
  • crypt@b-it 2010
  • Jo60
  • Schüler-Krypto 2010
  • crypt@b-it 2009
  • Kinderuni: Geheim...
  • Schüler-Krypto 2009
  • crypt@b-it 2008
  • cosec in Wissenschaftszelt 2008 `Kopf oder Zahl'
  • Schüler-Krypto 2008
  • 7. Kryptotag
  • CASC 2007
  • crypt@b-it 2007
  • Schüler-Krypto 2007
  • crypt@b-it 2006
  • Schüler-Krypto 2006
• crypt@b-it
• Schüler-Krypto

crypt@b-it 2016

Markulf Kohlweiss

Internet and cloud. About TLS, outsourcing and reductions

Abstract

In the lectures we look at public-key and modern cryptography from the perspective of real-world applications. Using SSL/TLS and the Cloud as examples we investigate what makes these techniques useful, how they work, and why they often fail. Getting complex crypto right is hard, just as getting software right is hard. Formal specifications and modularization are essential for both. In cryptography these techniques are expressed as formal security definitions and reductions.

SSL/TLS: Definitions and Reductions

Encryption Modes: Cipher Block Chaining (CBC), Chosen Plaintext Attacks, Authenticated Encryption

Public-key Encryption: RSA, Diffie-Hellman, and Key Encapsulation Mechanisms

Digital Signatures and Certificate Authorities

Authenticated Key Exchange

Cloud: Zero-knowledge, MPC and Verifiable Computation

Trusted Hardware: Intel's Software Guard Extensions (SGX), Oblivious RAM

Zero-knowledge Proofs, SNARKS

Multi-party Computation

Applications

Note that you may view additional material only if you are logged in.

You can log in by clicking on the key symbol in the left upper corner of this webpage.