Abstract
Conventional cryptographic services such as hardware-security modules and
software-based key management systems offer the ability to apply a pseudorandom function (PRF) such as HMAC to inputs of a client's choosing. These services are used, for example, to harden stored password hashes against offline brute-force attacks. We propose a modern PRF service called PYTHIA designed to offer a level of flexibility, security, and ease of deployability lacking in prior approaches.
software-based key management systems offer the ability to apply a pseudorandom function (PRF) such as HMAC to inputs of a client's choosing. These services are used, for example, to harden stored password hashes against offline brute-force attacks. We propose a modern PRF service called PYTHIA designed to offer a level of flexibility, security, and ease of deployability lacking in prior approaches.
| Original language | English |
|---|---|
| Title of host publication | Proceedings of the 24th USENIX Conference on Security Symposium |
| Publisher | USENIX Association |
| Pages | 547 |
| Number of pages | 15 |
| Publication status | Published - Aug 2015 |