Kemtls

Kemtls

A tale of two models: formal verification of KEMTLS in Tamarin

We prove the security of KEMTLS in two Tamarin models. One mode is based on the Cremers et al. model of TLS 1.3; the other closely resembles our pen-and-paper proofs. These models …

Sofía Celi
Read more
Kemtls

KEMTLS with Delayed Forward Identity Protection in (Almost) a Single Round

The recent KEMTLS protocol (Schwabe, Stebila and Wiggers,CCS’20) is a promising design for a quantum-safe TLS handshake protocol. Focused on the web setting, wherein clients learn …

felix-gunther
Read more
Invited Lecture: TLS and Post-Quantum (Applied Cryptography, Radboud University) featured image
Research

Invited Lecture: TLS and Post-Quantum (Applied Cryptography, Radboud University)

Invited lecture about TLS, its history and making TLS post quantum. I also discuss KEMTLS.

avatar
Thom Wiggers
Read more
Cryptography

More efficient post-quantum KEMTLS with pre-distributed public keys

We make KEMTLS more efficient in scenarios where the client already has the server's long-term public key, for example through caching or because it's pre-installed.

Peter Schwabe
Read more
Research

Implementing and Measuring KEMTLS

KEMTLS (CCS 2020) is a novel alternative to the Transport Layer Security (TLS) handshake that integrates post-quantum algorithms. It uses a key encapsulation mechanism (KEM) for …

Sofía Celi
Read more
KEMTLS: securing TLS connections from quantum adversaries featured image
Kemtls

KEMTLS: securing TLS connections from quantum adversaries

Talk about KEMTLS on Cloudflare TV

avatar
Thom Wiggers
Read more
Post-Quantum TLS without handshake signatures at RWC 2021 featured image
Kemtls

Post-Quantum TLS without handshake signatures at RWC 2021

Talk about Post-Quantum TLS without Handshake Signatures at RWC 2021 (virtual).

avatar
Thom Wiggers
Read more
Post-Quantum TLS without handshake signatures featured image
Kemtls

Post-Quantum TLS without handshake signatures

Conference talk about Post-Quantum TLS without Handshake Signatures at ACM CCS (virtual).

avatar
Thom Wiggers
Read more
Post-Quantum TLS without handshake signatures featured image
Kemtls

Post-Quantum TLS without handshake signatures

Talk about Post-Quantum TLS without Handshake Signatures at the Lorentz Workshop (virtual)

avatar
Thom Wiggers
Read more
Lunch talk: Post-Quantum TLS without handshake signatures featured image
Kemtls

Lunch talk: Post-Quantum TLS without handshake signatures

Department Lunch Talk about KEMTLS

avatar
Thom Wiggers
Read more