Cryptology ePrint Archive: Report 2007/399

Ceremony Design and Analysis

Carl Ellison

Abstract: The concept of ceremony is introduced as an extension of the concept of network protocol, with human nodes alongside computer nodes and with communication links that include UI, human-to-human communication and transfers of physical objects that carry data. What is out-of-band to a protocol is in-band to a ceremony, and therefore subject to design and analysis using variants of the same mature techniques used for the design and analysis of protocols. Ceremonies include all protocols, as well as all applications with a user interface, all workflow and all provisioning scenarios. A secure ceremony is secure against both normal attacks and social engineering. However, some secure protocols imply ceremonies that cannot be made secure.

Category / Keywords: cryptographic protocols / implementation, key management, social engineering, human-computer interface

Publication Info: (none)

Date: received 14 Oct 2007, last revised 17 Oct 2007

Contact author: cme at microsoft com

Available format(s): PDF | BibTeX Citation

Note: added a section and fixed some typos, in response to feedback from a reviewer.

Version: 20071021:182434 (All versions of this report)

Short URL:

[ Cryptology ePrint archive ]