Cyber Trust Project

Current Members

Past Members

Introduction

This project is part of the external pageCentre for Cyber Trust, a joint effort of the Information Security, Programming Methodology, and Network Security Group at ETH Zurich, as well as the Usable Security and Privacy Group at University of Bonn.

The core of the internet are interactions between individuals. For most of these interactions, such as shopping, online banking, or communication, we need to trust that the individual on the other end of the connection actually is who we think it is. Currently, the web PKI of TLS certificates aims to establish this trust. However, over the years, serious problems of this architecture have become apparent.

The project for cyber trust aims to close this gap and build systems that help people to establish digital trust relations - not only for interactions over the internet, but also in areas where one currently does not get precise security guarantees, e.g. the postal service (link to mail authentication project). To underpin these systems, we will analyse and verify them with mathematical precision, developing new tools and techniques along the way to cope with this particular application domain.

Sub-Projects

Publications

David Basin, Andreas Lochbihler, Seyed Reza Sefidgar. CryptHOL: Game-Based Proofs in Higher-Order Logic. Journal of Cryptology volume 33, pages 494–566 (2020)
[external pageDOI | Downloadpdf (PDF, 1.3 MB)]
Guillaume Girol, Lucca Hirschi, Ralf Sasse, Dennis Jackson, Cas Cremers, David Basin. A Spectral Analysis of Noise: A Comprehensive, Automated, Formal Analysis of Diffie-Hellman Protocols. USENIX 2020.
[external pageDOI | Downloadpdf (PDF, 631 KB)]
Laurent Chuat, Abdel Rahman Abdou, Ralf Sasse, Christoph Sprenger, David Basin, Adrian Perrig. SoK: Delegation and Revocation,the Missing Links in the Web’s Chain of Trust. arXiv
[external pageDOI | Downloadpdf (PDF, 432 KB)]