NOPE: Strengthening Domain Authentication with Succinct Proofs

Joseph Bonneau

Abstract:

Server authentication assures users that they are communicating with a server that genuinely represents a claimed domain. Today, server authentication relies on certification authorities (CAs), third parties who sign statements binding public keys to domains. CAs remain a weak spot in Internet security, as any faulty CA can issue a certificate for any domain. This paper describes the design, implementation, and experimental evaluation of nope, a new mechanism for server authentication that uses succinct proofs (for example, zeroknowledge proofs) to prove that a DNSSEC chain exists that links a public key to a specified domain. The use of DNSSEC dramatically reduces reliance on CAs, and the small size of the proofs enables compatibility with legacy infrastructure, including TLS servers, certificate formats, and certificate transparency. nope proofs add minimal performance overhead to clients, increasing the size of a typical certificate chain by about 10% and requiring just over 1 ms to verify. nope’s core technical contributions (which generalize beyond nope) include efficient techniques for representing parsing and cryptographic operations within succinct proofs, which reduce proof generation time and memory requirements by nearly an order of magnitude.

Bio:

Joseph Bonneau is an Associate Professor in the Computer Science Department, Courant Institute, New York University. He holds BS and MS degrees from Stanford, and completed his PhD as a Gates Cambridge Scholar in 2012 at the University of Cambridge, supervised by Professor Ross Anderson. He completed posdoctoral fellowships at Princeton, Stanford and the Electronic Frontier Foundation. His research focuses on applied cryptography and security engineering. He has particularly focused on human authentication, secure messaging tools, blockchains and decentralized systems, and public randomness protocols. He is a co-author of the popular textbook "Bitcoin and Cryptocurrency Technologies." Outside of work he is an avid rock climber, traveller and crossword solver.

Time and Place

Monday, January 27, 04:00pm
CoDa W101 & Zoom