Security protocols : 8th International Workshop, Cambridge, UK, April 3-5, 2000 : revised papers

The Cambridge International Workshop on Security Protocols has now run for eight years. Each year we set a theme, focusing upon a speci?c aspect of security protocols, and invite position papers. Anybody is welcome to send us a position paper (yes, you are invited) and we don't insist they relate to the current theme in an obvious way. In our experience, the emergence of the theme as a unifying threadtakesplaceduringthediscussionsattheworkshopitself.Theonlyground rule is that position papers should formulate an approach to some unresolved issues, rather than being a description of a ?nished piece of work. Whentheparticipantsmeet,wetrytofocusthediscussionsupontheconc- tual issues which emerge. Security protocols link naturally to many other areas of Computer Science, and deep water can be reached very quickly. Afterwards, we invite participants to re-draft their position papers in a way which exposes the emergent issues but leaves open the way to their further development. We also prepare written transcripts of the recorded discussions. These are edited (in some cases very heavily) to illustrate the way in which the di?erent arguments and perspectives have interacted. We publish these proceedings as an invitation to the research community. Although many interesting results ?rst see the light of day in a volume of our proceedings, laying claim to these is not our primary purpose of publication. Rather, we bring our discussions and insights to a wider audience in order to suggest new lines of investigation which the community may fruitfully pursue.

Keynote Address: Security Protocols and the Swiss Army Knife.- Mergers and Principals.- Mergers and Principals.- Authentication and Naming.- Users and Trust in Cyberspace.- Users and Trust in Cyberspace.- Interactive Identification Protocols.- Open Questions.- Looking on the Bright Side of Black-Box Cryptography.- Government Access to Keys - Panel Discussion.- Making Sense of Specifications: The Formalization of SET.- Making Sense of Specifications: The Formalization of SET.- Lack of Explicitness Strikes Back.- Lack of Explicitness Strikes Back.- Review and Revocation of Access Privileges Distributed with PKI Certificates.- Review and Revocation of Access Privileges Distributed with PKI Certificates.- The Correctness of Crypto Transaction Sets.- The Correctness of Crypto Transaction Sets.- Micro-management of Risk in a Trust-Based Billing System.- Broadening the Scope of Fault Tolerance within Secure Services.- Broadening the Scope of Fault Tolerance within Secure Services.- DOS-Resistant Authentication with Client Puzzles.- DOS-Resistant Authentication with Client Puzzles.- Public-Key Crypto-systems Using Symmetric-Key Crypto-algorithms.- Public-Key Crypto-systems Using Symmetric-Key Crypto-algorithms.- Denial of Service - Panel Discussion.- The Resurrecting Duckling - What Next?.- The Resurrecting Duckling - What Next?.- An Anonymous Auction Protocol Using "Money Escrow".- Short Certification of Secure RSA Modulus.- Authenticating Web-Based Virtual Shops Using Signature-Embedded Marks - A Practical Analysis -.- Authentication Web-Based Virtual Shops Using Signature-Embedded Marks - A Practical Analysis -.- I Cannot Tell a Lie.- Afterward.