A formal analysis of the signal messaging protocol

Cohn-Gordon, K; Cremers, C; Dowling, B; Garratt, L; Stebila, D

Conference item

A formal analysis of the signal messaging protocol

Abstract:: Signal is a new security protocol that provides end-to-end encryption for instant messaging. It has recently been adopted by WhatsApp, Facebook Messenger and Google Allo among many others; the first two of these have at least 1 billion active users. Signal includes several uncommon security properties (such as "future secrecy" or "post-compromise security"), enabled by a novel technique called *ratcheting* in which session keys are updated with every message sent. Despite its importance and novelty, there has been little to no academic analysis of the Signal protocol. We conduct the first security analysis of Signal's Key Agreement and Double Ratchet as a multi-stage key exchange protocol. We extract from the implementation a formal description of the abstract protocol, define a security model which can capture the "ratcheting" key update structure, and prove the security of Signal's core in our model. Our presentation and results can serve as a starting point for other analyses of this widely adopted protocol.

Publication status:: Published

Peer review status:: Peer reviewed

Actions

Email

Email this record

Send the bibliographic details of this record to your email address.

Your Email
Please enter the email address that the record information will be sent to.

-
Your message (optional)
Please add any additional information to be included within the email.
Cite

Cite this record

APA Style

Cohn-Gordon, K., Cremers, C., Dowling, B., Garratt, L., & Stebila, D. (2017). A formal analysis of the signal messaging protocol. 2017 IEEE European Symposium on Security and Privacy (EuroS&P), 451–466.

MLA Style

Cohn-Gordon, K., et al. “A Formal Analysis of the Signal Messaging Protocol.” 2017 IEEE European Symposium on Security and Privacy (EuroS&P), IEEE, 2017, pp. 451–66.

Chicago Style

Cohn-Gordon, K, C Cremers, B Dowling, L Garratt, and D Stebila. 2017. “A Formal Analysis of the Signal Messaging Protocol.” In 2017 IEEE European Symposium on Security and Privacy (EuroS&P), 451–66. IEEE.
Share
Print

Access Document

Files:: signal-v1.pdf

(Preview, Accepted manuscript, pdf, 552.2KB, Terms of use)

Publisher copy:: 10.1109/EuroSP.2017.27

Authors

+ Cohn-Gordon, K More by this author

Institution:: University of Oxford
Division:: MPLS
Department:: Computer Science
Role:: Author

+ Cremers, C More by this author

Institution:: University of Oxford
Division:: MPLS
Department:: Computer Science
Role:: Author

+ Dowling, B More by this author

Role:: Author

+ Garratt, L More by this author

Role:: Author

+ Stebila, D More by this author

Role:: Author

Publisher:: IEEE
Host title:: 2017 IEEE European Symposium on Security and Privacy (EuroS&P)
Pages:: 451-466
Publication date:: 2017-07-03
Acceptance date:: 2016-10-17
Event location:: Paris
DOI:: 10.1109/EuroSP.2017.27
ISBN:: 9781509057634

Pubs id:: pubs:654953
UUID:: uuid:b32f4e17-ceae-4c53-a54c-edeca815d827
Local pid:: pubs:654953
Source identifiers:: 654953
Deposit date:: 2016-10-25

Terms of use

Copyright holder:: Cohn-Gordon et al
Notes:: Copyright © 2017 Cohn-Gordon et al. Under license to IEEE. This is the accepted manuscript version of the article. The final version is available online from IEEE at: https://doi.org/10.1109/EuroSP.2017.27

Licence:: Terms and Conditions of Use for Oxford University Research Archive

Views and Downloads

About views and downloads

If you are the owner of this record, you can report an update to it here: Report update to this record

Conference item

A formal analysis of the signal messaging protocol

Actions

Access Document

Authors

Terms of use

Views and Downloads

Altmetrics

Dimensions

Conference item

A formal analysis of the signal messaging protocol

Actions

Access Document

Authors

Bibliographic Details

Item Description

Terms of use

Metrics

Views and Downloads

Altmetrics

Dimensions