{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,5,13]],"date-time":"2025-05-13T16:27:11Z","timestamp":1747153631538,"version":"3.40.5"},"publisher-location":"Singapore","reference-count":34,"publisher":"Springer Nature Singapore","isbn-type":[{"type":"print","value":"9789819975624"},{"type":"electronic","value":"9789819975631"}],"license":[{"start":{"date-parts":[[2023,1,1]],"date-time":"2023-01-01T00:00:00Z","timestamp":1672531200000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2023,1,1]],"date-time":"2023-01-01T00:00:00Z","timestamp":1672531200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2023]]},"DOI":"10.1007\/978-981-99-7563-1_12","type":"book-chapter","created":{"date-parts":[[2023,10,30]],"date-time":"2023-10-30T20:01:50Z","timestamp":1698696110000},"page":"251-267","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":0,"title":["Hidden Stream Ciphers and TMTO Attacks on TLS 1.3, DTLS 1.3, QUIC, and Signal"],"prefix":"10.1007","author":[{"ORCID":"https:\/\/orcid.org\/0009-0005-3807-7665","authenticated-orcid":false,"given":"John","family":"Preu\u00df Mattsson","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2023,10,31]]},"reference":[{"key":"12_CR1","unstructured":"Agence nationale de la s\u00e9curit\u00e9 des syst\u00e8mes d\u2019information: Recommendations for securing networks with IPsec (2015). https:\/\/www.ssi.gouv.fr\/uploads\/2015\/09\/NT_IPsec_EN.pdf"},{"key":"12_CR2","unstructured":"APNIC: how to: detect and prevent common data exfiltration attacks. https:\/\/blog.apnic.net\/2022\/03\/31\/how-to-detect-and-prevent-common-data-exfiltration-attacks\/"},{"key":"12_CR3","doi-asserted-by":"publisher","unstructured":"Babbage, S.: Improved \u201cexhaustive search\u201d attacks on stream ciphers. In: 1995 European Convention on Security and Detection, pp. 161\u2013166 (1995). https:\/\/doi.org\/10.1049\/cp:19950490","DOI":"10.1049\/cp:19950490"},{"key":"12_CR4","doi-asserted-by":"publisher","unstructured":"Barnes, R., Beurdouche, B., Robert, R., Millican, J., Omara, E., Cohn-Gordon, K.: The Messaging Layer Security (MLS) Protocol. RFC 9420 (2023). https:\/\/doi.org\/10.17487\/RFC9420","DOI":"10.17487\/RFC9420"},{"key":"12_CR5","doi-asserted-by":"publisher","unstructured":"Barnes, R., et al.: Confidentiality in the face of pervasive surveillance: a threat model and problem statement. RFC 7624 (2015). https:\/\/doi.org\/10.17487\/RFC7624","DOI":"10.17487\/RFC7624"},{"key":"12_CR6","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"247","DOI":"10.1007\/978-3-662-53018-4_10","volume-title":"Advances in Cryptology \u2013 CRYPTO 2016","author":"M Bellare","year":"2016","unstructured":"Bellare, M., Tackmann, B.: The multi-user security of authenticated encryption: AES-GCM in TLS 1.3. In: Robshaw, M., Katz, J. (eds.) CRYPTO 2016. LNCS, vol. 9814, pp. 247\u2013276. Springer, Heidelberg (2016). https:\/\/doi.org\/10.1007\/978-3-662-53018-4_10"},{"key":"12_CR7","doi-asserted-by":"crossref","unstructured":"Bienstock, A., Fairoze, J., Garg, S., Mukherjee, P., Raghuraman, S.: A more complete analysis of the signal double ratchet algorithm. Cryptology ePrint Archive, Report 2022\/355 (2022). https:\/\/eprint.iacr.org\/2022\/355","DOI":"10.1007\/978-3-031-15802-5_27"},{"key":"12_CR8","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1007\/3-540-44448-3_1","volume-title":"Advances in Cryptology \u2014 ASIACRYPT 2000","author":"A Biryukov","year":"2000","unstructured":"Biryukov, A., Shamir, A.: Cryptanalytic time\/memory\/data tradeoffs for stream ciphers. In: Okamoto, T. (ed.) ASIACRYPT 2000. LNCS, vol. 1976, pp. 1\u201313. Springer, Heidelberg (2000). https:\/\/doi.org\/10.1007\/3-540-44448-3_1"},{"key":"12_CR9","unstructured":"Cohn-Gordon, K., Cremers, C., Dowling, B., Garratt, L., Stebila, D.: A formal security analysis of the signal messaging protocol. Cryptology ePrint Archive, Report 2016\/1013 (2016). https:\/\/eprint.iacr.org\/2016\/1013"},{"key":"12_CR10","doi-asserted-by":"crossref","unstructured":"Ekdahl, P., Johansson, T., Maximov, A., Yang, J.: SNOW-Vi: an extreme performance variant of SNOW-V for lower grade CPUs. Cryptology ePrint Archive, Report 2021\/236 (2021). https:\/\/eprint.iacr.org\/2021\/236","DOI":"10.1145\/3448300.3467829"},{"key":"12_CR11","doi-asserted-by":"publisher","unstructured":"Fielding, R.T., Nottingham, M., Reschke, J.: HTTP Semantics. RFC 9110 (2022). https:\/\/doi.org\/10.17487\/RFC9110","DOI":"10.17487\/RFC9110"},{"key":"12_CR12","doi-asserted-by":"crossref","unstructured":"Hellman, M.: A cryptanalytic time-memory trade-off. IEEE Trans. Inf. Theory 26(4), 401\u2013406 (1980). https:\/\/ee.stanford.edu\/~hellman\/publications\/36.pdf","DOI":"10.1109\/TIT.1980.1056220"},{"key":"12_CR13","doi-asserted-by":"publisher","unstructured":"Hoang, V.T., Tessaro, S., Thiruvengadam, A.: The multi-user security of GCM, revisited: tight bounds for nonce randomization. In: Lie, D., Mannan, M., Backes, M., Wang, X. (eds.) ACM CCS 2018: 25th Conference on Computer and Communications Security, pp. 1429\u20131440. ACM Press, Toronto, ON, Canada, 15\u201319 October 2018. https:\/\/doi.org\/10.1145\/3243734.3243816","DOI":"10.1145\/3243734.3243816"},{"key":"12_CR14","unstructured":"H\u00f6glund, R., Tiloca, M.: Key update for OSCORE (KUDOS). Internet-Draft draft-ietf-core-oscore-key-update-05, Internet Engineering Task Force (2023). https:\/\/datatracker.ietf.org\/doc\/draft-ietf-core-oscore-key-update\/05\/, work in Progress"},{"key":"12_CR15","unstructured":"Intercept, T.: How spies stole the keys to the encryption castle. https:\/\/theintercept.com\/2015\/02\/19\/great-sim-heist\/"},{"key":"12_CR16","doi-asserted-by":"publisher","unstructured":"Iyengar, J., Thomson, M.: QUIC: a UDP-based multiplexed and secure transport. RFC 9000 (2021). https:\/\/doi.org\/10.17487\/RFC9000","DOI":"10.17487\/RFC9000"},{"key":"12_CR17","doi-asserted-by":"publisher","unstructured":"Krawczyk, D.H., Eronen, P.: HMAC-based extract-and-expand key derivation function (HKDF). RFC 5869 (2010). https:\/\/doi.org\/10.17487\/RFC5869","DOI":"10.17487\/RFC5869"},{"key":"12_CR18","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"400","DOI":"10.1007\/978-3-540-45146-4_24","volume-title":"Advances in Cryptology - CRYPTO 2003","author":"H Krawczyk","year":"2003","unstructured":"Krawczyk, H.: SIGMA: the \u2018SIGn-and-MAc\u2019 approach to authenticated Diffie-Hellman and its use in the IKE protocols. In: Boneh, D. (ed.) CRYPTO 2003. LNCS, vol. 2729, pp. 400\u2013425. Springer, Heidelberg (2003). https:\/\/doi.org\/10.1007\/978-3-540-45146-4_24"},{"key":"12_CR19","unstructured":"Mattsson, J.: Stream cipher design - an evaluation of the eSTREAM candidate Polar Bear. Master\u2019s thesis, Royal Institute of Technology (2006). https:\/\/citeseerx.ist.psu.edu\/viewdoc\/download?doi=10.1.1.108.40"},{"key":"12_CR20","doi-asserted-by":"publisher","unstructured":"McGrew, D., Rescorla, E.: Datagram transport layer security (DTLS) extension to establish keys for the secure real-time transport protocol (SRTP). RFC 5764 (2010). https:\/\/doi.org\/10.17487\/RFC5764","DOI":"10.17487\/RFC5764"},{"key":"12_CR21","doi-asserted-by":"publisher","unstructured":"McKay, K., Cooper, D.: Guidelines for the selection, configuration, and use of transport layer security (TLS) implementations (2019). https:\/\/doi.org\/10.6028\/NIST.SP.800-52r2","DOI":"10.6028\/NIST.SP.800-52r2"},{"key":"12_CR22","unstructured":"National Institute of Standards and Technology: Implementing a zero trust architecture (2023). https:\/\/www.nccoe.nist.gov\/sites\/default\/files\/2023-07\/zta-nist-sp-1800-35b-preliminary-draft-3.pdf"},{"key":"12_CR23","unstructured":"National Security Agency: Embracing a zero trust security model (2021). https:\/\/media.defense.gov\/2021\/Feb\/25\/2002588479\/-1\/-1\/0\/CSI_EMBRACING_ZT_SECURITY_MODEL_UOO115131-21.PDF"},{"key":"12_CR24","doi-asserted-by":"publisher","unstructured":"Nir, Y., Langley, A.: ChaCha20 and Poly1305 for IETF protocols. RFC 8439 (2018). https:\/\/doi.org\/10.17487\/RFC8439","DOI":"10.17487\/RFC8439"},{"key":"12_CR25","doi-asserted-by":"publisher","unstructured":"Preu\u00df Mattsson, J., Sethi, M.: EAP-TLS 1.3: using the extensible authentication protocol with TLS 1.3. RFC 9190 (2022). https:\/\/doi.org\/10.17487\/RFC9190","DOI":"10.17487\/RFC9190"},{"key":"12_CR26","doi-asserted-by":"publisher","unstructured":"Rescorla, E.: The transport layer security (TLS) protocol version 1.3. RFC 8446 (2018). https:\/\/doi.org\/10.17487\/RFC8446","DOI":"10.17487\/RFC8446"},{"key":"12_CR27","unstructured":"Rescorla, E.: The Transport layer security (TLS) protocol version 1.3. Internet-Draft draft-ietf-tls-rfc8446bis-09, Internet Engineering Task Force (2023). https:\/\/datatracker.ietf.org\/doc\/draft-ietf-tls-rfc8446bis\/09\/, work in Progress"},{"key":"12_CR28","doi-asserted-by":"publisher","unstructured":"Rescorla, E., Tschofenig, H., Modadugu, N.: The datagram transport layer security (DTLS) protocol version 1.3. RFC 9147 (2022). https:\/\/doi.org\/10.17487\/RFC9147","DOI":"10.17487\/RFC9147"},{"key":"12_CR29","doi-asserted-by":"crossref","unstructured":"Selander, G., Preu\u00df Mattsson, J., Palombini, F.: Ephemeral Diffie-Hellman over COSE (EDHOC). Internet-Draft draft-ietf-lake-edhoc-22, Internet Engineering Task Force (2023). https:\/\/datatracker.ietf.org\/doc\/draft-ietf-lake-edhoc\/22\/, work in Progress","DOI":"10.17487\/RFC9528"},{"key":"12_CR30","doi-asserted-by":"publisher","unstructured":"Selander, G., Preu\u00df Mattsson, J., Palombini, F., Seitz, L.: Object security for constrained RESTful environments (OSCORE). RFC 8613 (2019). https:\/\/doi.org\/10.17487\/RFC8613","DOI":"10.17487\/RFC8613"},{"key":"12_CR31","unstructured":"Signal: signal technical documentation. https:\/\/signal.org\/docs\/"},{"key":"12_CR32","doi-asserted-by":"publisher","unstructured":"T\u00fcxen, M., Rescorla, E., Seggelmann, R.: Datagram transport layer security (DTLS) for stream control transmission protocol (SCTP). RFC 6083 (2011). https:\/\/doi.org\/10.17487\/RFC6083","DOI":"10.17487\/RFC6083"},{"key":"12_CR33","unstructured":"Westerlund, M., Preu\u00df Mattsson, J., Porfiri, C.: Datagram transport layer security (DTLS) over stream control transmission protocol (SCTP). Internet-Draft draft-ietf-tsvwg-dtls-over-sctp-bis-06, Internet Engineering Task Force (2023). https:\/\/datatracker.ietf.org\/doc\/draft-ietf-tsvwg-dtls-over-sctp-bis\/06\/, work in Progress"},{"key":"12_CR34","unstructured":"Zenner, E.: On the role of the inner state size in stream ciphers. Cryptology ePrint Archive, Report 2004\/003 (2004). https:\/\/eprint.iacr.org\/2004\/003"}],"container-title":["Lecture Notes in Computer Science","Cryptology and Network Security"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-981-99-7563-1_12","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2024,11,1]],"date-time":"2024-11-01T02:17:05Z","timestamp":1730427425000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-981-99-7563-1_12"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2023]]},"ISBN":["9789819975624","9789819975631"],"references-count":34,"URL":"https:\/\/doi.org\/10.1007\/978-981-99-7563-1_12","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2023]]},"assertion":[{"value":"31 October 2023","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"CANS","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"International Conference on Cryptology and Network Security","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Augusta, GA","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"USA","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2023","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"30 October 2023","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"1 November 2023","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"22","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"cans2023","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Double-blind","order":1,"name":"type","label":"Type","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"EasyChair","order":2,"name":"conference_management_system","label":"Conference Management System","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"129","order":3,"name":"number_of_submissions_sent_for_review","label":"Number of Submissions Sent for Review","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"35","order":4,"name":"number_of_full_papers_accepted","label":"Number of Full Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"0","order":5,"name":"number_of_short_papers_accepted","label":"Number of Short Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"27% - The value is computed by the equation \"Number of Full Papers Accepted \/ Number of Submissions Sent for Review * 100\" and then rounded to a whole number.","order":6,"name":"acceptance_rate_of_full_papers","label":"Acceptance Rate of Full Papers","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"3","order":7,"name":"average_number_of_reviews_per_paper","label":"Average Number of Reviews per Paper","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"4.5","order":8,"name":"average_number_of_papers_per_reviewer","label":"Average Number of Papers per Reviewer","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"Yes","order":9,"name":"external_reviewers_involved","label":"External Reviewers Involved","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}}]}}