Paper 2021/424

Security Analysis of SFrame

Takanori Isobe, Ryoma Ito, and Kazuhiko Minematsu

Abstract

As people become more and more privacy conscious, the need for end-to-end encryption (E2EE) has become widely recognized. We study herein the security of SFrame, an E2EE mechanism recently proposed to the Internet Engineering Task Force for video/audio group communications over the Internet. Despite being a quite recent project, SFrame is going to be adopted by a number of real-world applications. We inspect the original specification of SFrame and find critical issues that will lead to impersonation (forgery) attacks with a practical complexity by a malicious group member. We also investigate the several publicly available SFrame implementations and confirm that this issue is present in these implementations.

Metadata
Available format(s)
PDF
Category
Cryptographic protocols
Publication info
Published elsewhere. Major revision. ESORICS 2021
Contact author(s)
takanori isobe @ ai u-hyogo ac jp
itorym @ nict go jp
k-minematsu @ nec com
History
2022-04-26: last of 2 revisions
2021-04-06: received
See all versions
Short URL
https://ia.cr/2021/424
License
Creative Commons Attribution
CC BY

BibTeX 

@misc{cryptoeprint:2021/424,
      author = {Takanori Isobe and Ryoma Ito and Kazuhiko Minematsu},
      title = {Security Analysis of {SFrame}},
      howpublished = {Cryptology {ePrint} Archive, Paper 2021/424},
      year = {2021},
      url = {https://eprint.iacr.org/2021/424}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.