CRC Seminar Series - Douglas Stebila

CRC Seminar Series Web banner
Douglas Stebila

Douglas Stebila

University of Waterloo


12th May 2022, 4:00pm - 5:00pm (GST)



Recent results for KEMTLS


In 2020, we proposed KEMTLS, an alternative for the TLS 1.3 handshake that uses implicit authentication via key encapsulation mechanisms, rather than explicit authentication using digital signatures. In the context of post-quantum cryptography, where KEMs typically have smaller communication than digital signature schemes, KEMTLS can save bandwidth, but is a substantial protocol change. In this talk, I'll give an introduction to the KEMTLS protocol, and then discuss recent results around KEMTLS. These include: a version of KEMTLS that can take advantage of pre-distributed / out-of-band server public keys to reduce round trips in the client authentication setting; recent results on formal verification of KEMTLS using the Tamarin prover; and methods for efficiently and non-interactively proving possession of KEM keys to certificate authorities to enable a public key infrastructure for KEM public keys.


Dr. Douglas Stebila is an Associate Professor of cryptography in the Department of Combinatorics & Optimization at the University of Waterloo. His research focuses on improving the security of Internet communications protocols and developing practical quantum-resistant cryptography. He is the leader of the Open Quantum Safe project, an open-source software project for prototyping and evaluating quantum-resistant cryptography. He holds an MSc from the University of Oxford and a PhD from the University of Waterloo.