CoCoA: concurrent continuous group key agreement
J Alwen, B Auerbach, MC Noval, K Klein… - … Conference on the …, 2022 - Springer
Messaging platforms like Signal are widely deployed and provide strong security in an
asynchronous setting. It is a challenging problem to construct a protocol with similar security …
asynchronous setting. It is a challenging problem to construct a protocol with similar security …
On the insider security of MLS
J Alwen, D Jost, M Mularczyk - Annual International Cryptology …, 2022 - Springer
Abstract The Messaging Layer Security (MLS) protocol is an open standard for end-to-end
(E2E) secure group messaging being developed by the IETF, poised for deployment to …
(E2E) secure group messaging being developed by the IETF, poised for deployment to …
Security analysis of the MLS key derivation
C Brzuska, E Cornelissen… - 2022 IEEE Symposium on …, 2022 - ieeexplore.ieee.org
Cryptographic communication protocols provide confidentiality, integrity and authentication
properties for end-to-end communication under strong corruption attacks, including, notably …
properties for end-to-end communication under strong corruption attacks, including, notably …
A concrete treatment of efficient continuous group key agreement via multi-recipient PKEs
K Hashimoto, S Katsumata, E Postlethwaite… - Proceedings of the …, 2021 - dl.acm.org
Continuous group key agreements (CGKAs) are a class of protocols that can provide strong
security guarantees to secure group messaging protocols such as Signal and MLS …
security guarantees to secure group messaging protocols such as Signal and MLS …
Cryptographic administration for secure group messaging
Many real-world group messaging systems delegate group administration to the application
level, failing to provide formal guarantees related to group membership. Taking a …
level, failing to provide formal guarantees related to group membership. Taking a …
WhatsUpp with sender keys? Analysis, improvements and security proofs
Developing end-to-end encrypted instant messaging solutions for group conversations is an
ongoing challenge that has garnered significant attention from practitioners and the …
ongoing challenge that has garnered significant attention from practitioners and the …
On the worst-case inefficiency of CGKA
Abstract Continuous Group Key Agreement (CGKA) is the basis of modern Secure Group
Messaging (SGM) protocols. At a high level, a CGKA protocol enables a group of users to …
Messaging (SGM) protocols. At a high level, a CGKA protocol enables a group of users to …
How to hide MetaData in MLS-like secure group messaging: simple, modular, and post-quantum
Secure group messaging (SGM) protocols allow large groups of users to communicate in a
secure and asynchronous manner. In recent years, continuous group key agreements …
secure and asynchronous manner. In recent years, continuous group key agreements …
DeCAF: decentralizable continuous group key agreement with fast healing
J Alwen, B Auerbach, MC Noval, K Klein… - Cryptology ePrint …, 2022 - eprint.iacr.org
Continuous group key agreement (CGKA) allows a group of users to maintain a
continuously updated shared key in an asynchronous setting where parties only come …
continuously updated shared key in an asynchronous setting where parties only come …
The Complexities of Healing in Secure Group Messaging: Why {Cross-Group} Effects Matter
Modern secure messaging protocols can offer strong security guarantees such as Post-
Compromise Security (PCS), which enables participants to heal after compromise. The core …
Compromise Security (PCS), which enables participants to heal after compromise. The core …