Formal Methods Analysis of the Secure Remote Password Protocol

Sherman, Alan T.; Lanus, Erin; Liskov, Moses; Zieglar, Edward; Chang, Richard; Golaszewski, Enis; Wnuk-Fink, Ryan; Bonyadi, Cyrus J.; Yaksetig, Mario; Blumenfeld, Ian

doi:10.1007/978-3-030-62077-6_9

Cited by 8 publications

(4 citation statements)

References 33 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…To avoid dictionary attacks, Qerberos includes an alternative authentication method in which the Secure Remote Password (SRP) [4], [16], [17] algorithm is used. With SRP, clients can authenticate themselves without ever revealing their password to the authentication server.…”

Section: B Srpmentioning

confidence: 99%

Qerberos: A Protocol for Secure Distribution of QRNG Keys

Soler,

Dafonte,

Nóvoa

et al. 2023

2023 IEEE International Conference on Cyber Security and Resilience (CSR)

View full text Add to dashboard Cite

A communication protocol for the distribution of cryptographic keys generated by a quantum random number generator (QRNG) has been developed by introducing a minor modification to Kerberos and using SRP as the authentication mechanism. The protocol, named Qerberos, allows two users to acquire the same symmetric key generated by a trusted third party with access to a QRNG, whose keys have higher entropy than a classical generator. An implementation that employs two different QRNGs has been tested for different parameters achieving good performance and short request times.

show abstract

Section: B Srpmentioning

confidence: 99%

Qerberos: A Protocol for Secure Distribution of QRNG Keys

Soler,

Dafonte,

Nóvoa

et al. 2023

2023 IEEE International Conference on Cyber Security and Resilience (CSR)

View full text Add to dashboard Cite

show abstract

“…The SRP-6a protocol does not have a proof model for security. Recently, a formal analysis of SRP was introduced in [ 63 ]. The authors analyzed SRP-3 using a cryptographic protocol shape analyzer (CPSA).…”

Section: Security Analysis Of Srpmentioning

confidence: 99%

Securing Session Initiation Protocol

Younes

Albalawi

2022

Sensors

View full text Add to dashboard Cite

The session initiation protocol (SIP) is widely used for multimedia communication as a signaling protocol for managing, establishing, maintaining, and terminating multimedia sessions among participants. However, SIP is exposed to a variety of security threats. To overcome the security flaws of SIP, it needs to support a number of security services: authentication, confidentiality, and integrity. Few solutions have been introduced in the literature to secure SIP, which can support these security services. Most of them are based on internet security standards and have many drawbacks. This work introduces a new protocol for securing SIP called secure-SIP (S-SIP). S-SIP consists of two protocols: the SIP authentication (A-SIP) protocol and the key management and protection (KP-SIP) protocol. A-SIP is a novel mutual authentication protocol. KP-SIP is used to secure SIP signaling messages and exchange session keys among entities. It provides different security services for SIP: integrity, confidentiality, and key management. A-SIP is based on the secure remote password (SRP) protocol, which is one of standard password-based authentication protocols supported by the transport layer security (TLS) standard. However, A-SIP is more secure and efficient than SRP because it covers its security flaws and weaknesses, which are illustrated and proven in this work. Through comprehensive informal and formal security analyses, we demonstrate that S-SIP is secure and can address SIP vulnerabilities. In addition, the proposed protocols were compared with many related protocols in terms of security and performance. It was found that the proposed protocols are more secure and have better performance.

show abstract

“…Open problems include: (1) Formally state and prove the security properties of AOT, and (2) perform a formal-methods analysis of the AOT protocol using a protocol-analysis tool such as CPSA [62].…”

Section: Open Problemsmentioning

confidence: 99%

AOT: Anonymization by Oblivious Transfer

Javani,

Sherman

2021

Preprint

Self Cite

View full text Add to dashboard Cite

We introduce AOT, an anonymous communication system based on mix network architecture that uses oblivious transfer (OT) to deliver messages. Using OT to deliver messages helps AOT resist blending (n−1) attacks and helps AOT preserve receiver anonymity, even if a covert adversary controls all nodes in AOT. AOT comprises three levels of nodes, where nodes at each level perform a different function and can scale horizontally. The sender encrypts their payload and a tag-derived from a secret shared between the sender and receiver-with the public key of a Level-2 node and sends them to a Level-1 node. On a public bulletin board, Level-3 nodes publish tags associated with messages ready to be retrieved. Each receiver checks the bulletin board, identifies tags, and receives the associated messages using OT. A receiver can receive their messages even if the receiver is offline when messages are ready. Through what we call a "handshake" process, communicants can use the AOT protocol to establish shared secrets anonymously. Users play an active role in contributing to the unlinkability of messages: periodically, users initiate requests to AOT to receive dummy messages, such that an adversary cannot distinguish real and dummy requests.

show abstract

Formal Methods Analysis of the Secure Remote Password Protocol

Cited by 8 publications

References 33 publications

Qerberos: A Protocol for Secure Distribution of QRNG Keys

Qerberos: A Protocol for Secure Distribution of QRNG Keys

Securing Session Initiation Protocol

AOT: Anonymization by Oblivious Transfer

Contact Info

Product

Resources

About