Matt Blaze

[13] Marshall Berman, All That is Solid Melts Into Air, (2008)

Traces of filesystem activity have proven to be useful for a wide variety of purposes, ranging from quantitative analysis of system behavior to trace-driven simulation of filesystem algorithms. Such...

Patrick Ball, Paul Kobrak, Herbert F. Spirer, Henry Campbell Black, Joseph R. Nolan, ...

people/pagre/rre.html}

AFormal Treatment of Remotely Keyed Encryption? (2008)

Matt Blaze, Joan Feigenbaum, Moni Naor

Abstract. Remotely keyed encryption schemes (RKESs), introduced by Blaze [6], support high-bandwidth cryptographic applications (such as encrypted video conferences) in which long-lived secrets (such...

Security Protocols with Isotropic Channels (2008)

Madhukar Anand Eric, Eric Cronin, Micah Sherr, Matt Blaze, Sampath Kannan

We investigate the security properties of isotropic channels, broadcast media in which a receiver cannot reliably determine whether a message originated from any particular sender and a sender cannot...

AT&T Laboratories (2007)

Cryptography Policy and the Information Economy (2007)

We describe a simple, efficient, security primitive based on the Luby-Rackoff (Feistel) construction with small random functions. We show that recovering the internal state of the primitive is...

A Formal Treatment of Remotely Keyed Encryption (2007)

This paper is a high-level technical overview of the impact of cryptography on the computing and communications industries, with emphasis on the implications of the Administration's recent...

Exte Nd Ed, Matt Blaze, Joan Feigenbaum, Moni Naor

) ? Matt Blaze, 1 Joan Feigenbaum, 1 Moni Naor 2 1 AT&T Labs -- Research 180 Park Avenue Florham Park, NJ 07932 USA fmab,jfg@research.att.com 2 Dept. Applied Math. and Computer Science Weizmann...

ACryptographic File System for Unix (2007)

A Formal Treatment of Remotely Keyed Encryption (2007)

Although cryptographic techniques areplaying an increasingly important role in modern computing system security,userlevel tools for encrypting file data arecumbersome and suffer from a number of...

Extend Ed, Matt Blaze, Joan Feigenbaum, Moni Naor

) ? Matt Blaze, 1 Joan Feigenbaum, 1 Moni Naor 2 1 AT&T Labs -- Research 180 Park Avenue Florham Park, NJ 07932 USA fmab,jfg@research.att.com 2 Dept. Applied Math. and Computer Science Weizmann...

Master-Key Cryptosystems (2007)

By Matt, Matt Blaze, Joan Feigenbaum, F. T. Leighton

We initiate the study of a new class of secret-key cryptosystems, called master-key cryptosystems, in which an authorized third party possesses a "master key" that allows efficient recovery...

Cryptography Policy and the Information Economy (2007)

AT&T Labs-- Research (2007)

This paper is a high-level technical overview of the impact of cryptography on the computing and communications industries, with emphasis on the implications of the Administration's recent...

Cryptology and Physical Security: Rights Amplification in (2007)

This paper describes new attacks for amplifying rights in mechanical pin tumbler locks. Given access to a single master-keyed lock and its associated change key, an procedure is given that allows...

Keyboards and covert channels (2006)

This paper examines mechanical lock security from the perspective of computer science and cryptology.

Gaurav Shah, Andres Molina, Matt Blaze

This paper introduces JitterBugs, a class of inline interception mechanisms that covertly transmit data by perturbing the timing of input events likely to affect externally observable network...

Keyboards and covert channels (2006)

Gaurav Shah, Andres Molina, Matt Blaze

This paper introduces JitterBugs, a class of inline interception mechanisms that covertly transmit data by perturbing the timing of input events likely to affect externally observable network...

The eavesdropper’s dilemma (2005)

Eric Cronin, Micah Sherr, Matt Blaze

This paper examines the problem of surreptitious Internet interception from the eavesdropper’s point of view. We introduce the notion of ‘fidelity ” in digital eavesdropping. In particular, we...

Signaling vulnerabilities in wiretapping systems ∗ (2005)

Micah Sherr, Eric Cronin, Y Clark, Matt Blaze

Telephone wiretap and dialed number recording systems are used by law enforcement and national security agencies to collect investigative intelligence and legal evidence. In this paper, we show that...

Safecracking for the computer scientist (2004)

Toward a broader view of security protocols (2004)

This document contains medium resolution photographs and should be printed in color. This paper is a general survey of safe and vault security from a computer science perspective, with emphasis on...

Toward a broader view of security protocols (2004)

Computer and network security researchers usually focus on the security of computers and networks. Although it might seem as if there is more than enough insecurity here to keep all of us fully...

Just Fast Keying: Key Agreement in a Hostile Internet (2004)

Computer and network security researchers usually focus on the security of computers and networks. Although it might seem as if there is more than enough insecurity here to keep all of us fully...

William Aiello, Steven M. Bellovin, Matt Blaze, Ran Canetti, John Ioannidis, Angelos D. Keromytis, ...

this paper appeared as [Aiello et al. 2003]

Policy Impact Assessments: Considering the Public Interest in Internet Standards Development (2003)

John Morris, Alan Davidson, Matt Blaze, Scott Bradner, Carl Cargill, Lorrie Cranor, ...

It is now widely understood that technical design decisions about the Internet can have

TAPI: Transactions for Accessing Public Infrastructure (2003)

Matt Blaze, John Ioannidis, Sotiris Ioannidis, Angelos D. Keromytis, Pekka Nik, Vassilis Prevelakis

Abstract. This paper describes TAPI, an offline scheme intended for general Internet-based micropayments. TAPI, which extends and combines concepts from the KeyNote Microchecks and OTPCoins...

Cryptology and physical security: Rights amplification in master-keyed mechanical locks (2003)

Cryptology and physical security: Rights amplification in master-keyed mechanical locks (2003)

This paper examines mechanical lock security from the perspective of computer science and cryptology. We focus on new and practical attacks for amplifying rights in mechanical pin tumbler locks....

Cryptology and Physical Security: Rights Amplification in (2003)

This paper examines mechanical lock security from the perspective of computer science and cryptology. We focus on new and practical attacks for amplifying rights in mechanical pin tumbler locks....

Offline Micropayments without Trusted Hardware (2001)

This paper describes new attacks for amplifying rights in mechanical pin tumbler locks. Given access to a single master-keyed lock and its associated change key, a procedure is given that allows...

Joint Work (2001)

Steven M. Bellovin, Vern Paxson, Matt Blaze, Bill Cheswick, ...

Graphs from simulations done by Mahajan. Based on ideas from informal DDoS research group (Steven M.

Cryptographic Modes of Operation (2001)

We introduce a new micropayment scheme, suitable for certain kinds of transactions, that requires neither online transactions nor trusted hardware for either the payer or payee. Each payer is...

For The Internet, Steven M. Bellovin, Matt Blaze

Introduction Modes that may be appropriate and secure in one application or environment sometimes fail badly in others. This is especially true of stream modes where, e.g., re-use of the same segment...

Trust Management and Network Layer Security Protocols (1999)

KeyNote: Trust Management for Public-Key (1999)

Matt Blaze, Joan Feigenbaum, Angelos D. Keromytis

Abstract. This paper discusses the rationale for designing a simple trust-management system for public-key infrastructures, called KeyNote. The motivating principles are expressiveness, simplicity,...

Trust Management and Network Layer Security Protocols (1999)

Trust Management and Network Layer Security Protocols (1999)

Introduction Network-layer security among mutually trusting hosts is a relatively straightforward problem to solve. The standard protocol technique, employed in IPSEC [KA98], involves...

The role of trust management in distributed systems security (1999)

Introduction Network-layer security among mutually trusting hosts is a relatively straightforward problem to solve. The standard protocol technique, employed in IPSEC [KA98], involves...

Matt Blaze, Joan Feigenbaum, John Ioannidis, Angelos D. Keromytis

Abstract. Existing authorization mechanisms fail to provide powerful and robust tools for handling security at the scale necessary for today’s Internet. These mechanisms are coming under increasing...

Minimal Key Lengths for Symmetric Ciphers to Provide Adequate Commercial Security. A Report by an Ad Hoc Group of Cryptographers and Computer Scientists (1998)

Blaze, Matt, Diffie, Whitfield, Rivest, Ronald L., Schneier, Bruce, Shimomura, Tsutomu

Encryption plays an essential role in protecting the privacy of electronic information against threats from a variety of potential attackers. In so doing, modern cryptography employs a combination of...

KeyNote: Trust Management for Public-Key Infrastructures (1998)

Matt Blaze, Joan Feigenbaum, Angelos Keromytis

. This paper discusses the rationale for designing a simple trust-management system for public-key infrastructures, called KeyNote. The motivating principles are expressiveness, simplicity, and...

Atomic Proxy Cryptography (1998)

Matt Blaze, Martin Strauss

This paper introduces atomic proxy cryptography, in which an atomic proxy function, in conjunction with a public proxy key, converts ciphertext (messages in a public key encryption scheme or...

Compliance Checking in the PolicyMaker Trust Management System (1998)

Compliance Checking in the PolicyMaker Trust Management System (1998)

. Emerging electronic commerce services that use public-key cryptography on a mass-market scale require sophisticated mechanisms for managing trust. For example, any service that receives a signed...

Atomic Proxy Cryptography (1998)

. Emerging electronic commerce services that use public-key cryptography on a mass-market scale require sophisticated mechanisms for managing trust. For example, any service that receives a signed...

Matt Blaze, Martin Strauss

This paper introduces atomic proxy cryptography, in which an atomic proxy function, in conjunction with a public proxy key, converts ciphertext (messages in a public key encryption scheme or...

KeyNote: Trust Management for Public-Key Infrastructures (1998)

Matt Blaze, Joan Feigenbaum, Angelos D. Keromytis

. This paper discusses the rationale for designing a simple trust-management system for public-key infrastructures, called KeyNote. The motivating principles are expressiveness, simplicity, and...

Compliance Checking in the PolicyMaker Trust Management System (1998)

Compliance Checking in the PolicyMaker Trust Management System (1998)

Emerging electronic commerce services that use public-key cryptography on a mass-market scale require sophisticated mechanisms for managing trust. For example, any service that receives a signed...

Divertible protocols and atomic proxy cryptography (1998)

Abstract. Emerging electronic commerce services that use public-key cryptography on a mass-market scale require sophisticated mechanisms for managing trust. For example, any service that receives a...

Matt Blaze, Gerrit Bleumer, Martin Strauss

Abstract. First, we introduce the notion of divertibility as a protocol property as opposed to the existing notion as a language property (see Okamoto, Ohta [OO90]). We give a definition of protocol...

High-bandwidth encryption with low-bandwidth smartcards (1996)

Transparent internet e-mail security (1996)

This paper describes a simple protocol, the Remotely Keyed Encryption Protocol (RKEP), that enables a secure, but bandwidth-limited, cryptographic smartcard to function as a highbandwidth secret-key...

Raph Levien, Lewis Mccarthy, Matt Blaze

This paper describes the design and prototype implementation of a comprehensive system for securing Internet e-mail transparently, so that the only user intervention required is the initial setup and...

Oblivious key escrow (1996)

Managing Trust in Medical Information Systems (1996)

We propose a simple scheme, based on secret-sharing over large-scale networks, for assuring recoverability of sensitive archived data (e.g., cryptographic keys). In our model anyone can request a...

Matt Blaze, Joan Feigenbaum, Jack Lacy

The development of large-scale health information networks necessitates the use of cryptography to guarantee privacy, authenticity, and integrity of personal medical records. This use of cryptography...

Oblivious Key Escrow (1996)

Efficient Symmetric-Key Ciphers Based on an NP-Complete Subproblem (1996)

We propose a simple scheme, based on secret-sharing over large-scale networks, for assuring recoverability of sensitive archived data (e.g., cryptographic keys). In our model anyone can request a...

Transparent Internet E-mail Security (1996)

) Matt Blaze AT&T Laboratories Murray Hill, NJ 07974 mab@research.att.com PRELIMINARY DRAFT - October 3, 1996 - DO NOT DISTRIBUTE OR CITE Abstract We describe a simple, efficient, security...

Raph Levien, Lewis Mccarthy, Matt Blaze

This paper describes the design and prototype implementation of a comprehensive system for securing Internet e-mail transparently, so that the only user intervention required is the initial setup and...

Decentralized Trust Management (1996)

Matt Blaze, Joan Feigenbaum, Jack Lacy

We identify the trust management problem as a distinct and important component of security in network services. Aspects of the trust management problem include formulating security policies and...

Master-Key Cryptosystems (1996)

By Matt, Matt Blaze, Joan Feigenbaum, F. T. Leighton

We initiate the study of a new class of secret-key cryptosystems, called master-key cryptosystems, in which an authorized third party possesses a "master key" that allows efficient recovery...

Decentralized Trust Management (1996)

Matt Blaze, Joan Feigenbaum, Jack Lacy

We identify the trust management problem as a distinct and important component of security in network services. Aspects of the trust management problem include formulating security policies and...

The MacGuffin Block Cipher Algorithm (1995)

Matt Blaze, Bruce Schneier

. This paper introduces MacGuffin, a 64 bit "codebook" block cipher. Many of its characteristics (block size, application domain, performance and implementation structure) are similar to...

Session-Layer Encryption (1995)

Matt Blaze, Steven M. Bellovin

We describe mechanisms for practical session-layer security for Internet-based terminal sessions. We discuss the tradeoffs of providing security at various layers of abstractions, from the network to...

The MacGuffin Block Cipher Algorithm (1995)

Matt Blaze, Bruce Schneier

. This paper introduces MacGuffin, a 64 bit "codebook" block cipher. Many of its characteristics (block size, application domain, performance and implementation structure) are similar to...

Key Management in an Encrypting File System (1994)

Key Management in an Encrypting File System (1994)

As distributed computing systems grow in size, complexity and variety of application, the problem of protecting sensitive data from unauthorized disclosure and tampering becomes increasingly...

Protocol Failure in the Escrowed Encryption Standard (1994)

As distributed computing systems grow in size, complexity and variety of application, the problem of protecting sensitive data from unauthorized disclosure and tampering becomes increasingly...

A Cryptographic File System for Unix (1993)

The Escrowed Encryption Standard (EES) defines a US Government family of cryptographic processors, popularly known as "Clipper" chips, intended to protect unclassified government and...