Modeling and Verifying Physical Properties of Security Protocols for Wireless Networks

Schaller, Patrick; Schmidt, Benedikt; Basin, David; Čapkun, Srđjan

doi:10.1109/csf.2009.6

Cited by 36 publications

(26 citation statements)

References 35 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Recently, several frameworks have been proposed to model wireless communication and/or routing protocols in a more accurate way (e.g. [15,17,10]). However, these models do not take into account several features that seem crucial to model routing protocols (e.g.…”

Section: Introductionmentioning

confidence: 99%

Modeling and Verifying Ad Hoc Routing Protocols

Arnaud

Cortier

Delaune

2010

2010 23rd IEEE Computer Security Foundations Symposium

View full text Add to dashboard Cite

Abstract. Mobile ad hoc networks consist of mobile wireless devices which autonomously organize their infrastructure. In such a network, a central issue, ensured by routing protocols, is to find a route from one device to another. Those protocols use cryptographic mechanisms in order to prevent a malicious node from compromising the discovered route. We present a calculus for modeling and reasoning about security protocols, including in particular secured routing protocols. Our calculus extends standard symbolic models to take into account the characteristics of routing protocols and to model wireless communication in a more accurate way. Then, by using constraint solving techniques, we propose a decision procedure for analyzing routing protocols for a bounded number of sessions and for a fixed network topology. We demonstrate the usage and usefulness of our approach by analyzing the protocol SRP applied to DSR .

show abstract

Section: Introductionmentioning

confidence: 99%

Modeling and Verifying Ad Hoc Routing Protocols

Arnaud

Cortier

Delaune

2010

2010 23rd IEEE Computer Security Foundations Symposium

View full text Add to dashboard Cite

show abstract

“…In the context of wireless systems, message-based attacker models have been adopted in a number of works, e. g., in [11,15,16,22,24,25]. In these works, the attacker is usually assumed to be able to eavesdrop, insert, modify, replay, delay, or delete any signal being transmitted on the wireless channel.…”

Section: Classifying Wireless Attacksmentioning

confidence: 99%

“…On the other hand, the strongest attacker models are often not motivated by practical considerations. For example, Dolev-Yao based models will allow the attacker to transfer information to remote locations instantaneously while this is not realistic [22]. Although designing a system with an overestimation of the attacker capabilities does not harm the security of the system, it may complicate the proposed solutions and create unnecessary overhead on the communication or make the hardware setup more costly.…”

Section: Introductionmentioning

confidence: 99%

Investigation of Signal and Message Manipulations on the Wireless Channel

Pöpper

Tippenhauer

Danev

et al. 2011

Lecture Notes in Computer Science

Self Cite

View full text Add to dashboard Cite

Abstract. We explore the suitability of Dolev-Yao-based attacker models for the security analysis of wireless communication. The Dolev-Yao model is commonly used for wireline and wireless networks. It is defined on abstract messages exchanged between entities and includes arbitrary, real-time modification of messages by the attacker. In this work, we aim at understanding and evaluating the conditions under which these real-time, covert low-energy signal modifications can be successful. In particular, we focus on the following signal and message manipulation techniques: symbol flipping and signal annihilation. We analyze these techniques theoretically, by simulations, and experiments and show their feasibility for particular wireless channels and scenarios.

show abstract

“…Also, [31] shows a formal approach, but against honest provers only and without specifying security goals. Finally, the formal methods approach in [35] thoroughly models distance bounding with formal methods, but treats wireless networks in general, assuming that provers and verifiers have equal capacities (unlike RFID systems, where tags are computationally weaker). Additionally, some physical properties of RF communication, such as the unreliability of tags' backscattering and colliding signals, are unaccounted for.…”

Section: Our Contributionsmentioning

confidence: 99%

A Formal Approach to Distance-Bounding RFID Protocols

Dürholz

Fischlin

Kasper

et al. 2011

Lecture Notes in Computer Science

103

View full text Add to dashboard Cite

Abstract. Distance-Bounding identification protocols aim at impeding man-in-themiddle attacks by measuring response times. There are three kinds of attacks such protocols could address: (1) Mafia attacks where the adversary relays communication between honest prover and honest verifier in different sessions; (2) Terrorist attacks where the adversary gets limited active support from the prover to impersonate. (3) Distance attacks where a malicious prover claims to be closer to the verifier than it actually is. Many protocols in the literature address one or two such threats, but no rigorous cryptographic security models -nor clean security proofs-exist so far. For resource-constrained RFID tags, distance-bounding is more difficult to achieve. Our contribution here is to formally define security against the above-mentioned attacks and to relate the properties. We thus refute previous beliefs about relations between the notions, showing instead that they are independent. Finally we use our new framework to assess the security of the RFID distance-bounding scheme due to Kim and Avoine, and enhance it to include impersonation security and allow for errors due to noisy channel transmissions.

show abstract

Modeling and Verifying Physical Properties of Security Protocols for Wireless Networks

Cited by 36 publications

References 35 publications

Modeling and Verifying Ad Hoc Routing Protocols

Modeling and Verifying Ad Hoc Routing Protocols

Investigation of Signal and Message Manipulations on the Wireless Channel

A Formal Approach to Distance-Bounding RFID Protocols

Contact Info

Product

Resources

About