Systematic design of a family of attack-resistant authentication protocols

Bird, Ray; Gopal, I.; Herzberg, Amir; Janson, Philippe A.; Kutten, Shay; Molva, Refik; Yung, Moti

doi:10.1109/49.223869

Cited by 121 publications

(40 citation statements)

References 14 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…As an idea for protocol design, it goes back at least to Bird et al [7]. In a key special case, "protocol composition," it dates from the 1990s [41, e.g.].…”

Section: Resultsmentioning

confidence: 99%

Establishing and preserving protocol security goals

Guttman

2014

JCS

View full text Add to dashboard Cite

We take a model-theoretic viewpoint on security goals and how to establish them. The models are (possibly fragmentary) executions. Security goals such as authentication and confidentiality are implications over the geometric fragment of predicate logic, i.e. implications Φ −→ Ψ where Φ and Ψ are built from atomic formulas without negations, implications, or universal quantifiers.Security goals are then essentially statements about homomorphisms where the source is a minimal (fragmentary) model of the antecedent Φ. If every homomorphism to a model representing a non-fragmentary, complete execution factors through a model in which Ψ is satisfied, then the goal is achieved. This idea suggests validating security goals via a process of information enrichment.This idea also clarifies protocol transformation. A protocol transformation preserves security goals when it preserves the form of the information enrichment process. We formalize this idea using simulation relations between labeled transition systems.

show abstract

“…As an idea for protocol design, it goes back at least to Bird et al [7]. In a key special case, "protocol composition," it dates from the 1990s [41, e.g.].…”

Section: Resultsmentioning

confidence: 99%

Establishing and preserving protocol security goals

Guttman

2014

JCS

View full text Add to dashboard Cite

show abstract

“…In several cases, this is due to an intruder launching a mirror attack, simply reflecting an agent's messages back at himself; examples appear in [2]. In other, more subtle attacks, an intruder attacks an agent by using a second run of a protocol with the same agent , so as to use the second run as an oracle; for example the attack on the BAN version of the Yahalom protocol [3] in [24].…”

Section: Definition 21 (Aliveness)mentioning

confidence: 99%

A hierarchy of authentication specifications

Lowe

Proceedings 10th Computer Security Foundations Workshop

447

436

View full text Add to dashboard Cite

show abstract

“…The safe protocol transformation problem is not new. As an idea for protocol design, it goes back at least to Bird et al [5]. In a key special case, "protocol composition," it dates from the 1990s [21, e.g.].…”

Section: Preserving Security Goal Formulasmentioning

confidence: 99%

Security Goals and Protocol Transformations

Guttman

2012

Theory of Security and Applications

View full text Add to dashboard Cite

Abstract. Cryptographic protocol designers work incrementally. Having achieved some goals for confidentiality and authentication in a protocol Π1, they transform it to a richer Π2 to achieve new goals.But do the original goals still hold? More precisely, if a goal formula Γ holds whenever Π1 runs against an adversary, does a translation of Γ hold whenever Π2 runs against it?We prove that a transformation preserves goal formulas if a labeled transition system for analyzing Π1 simulates a portion of an lts for analyzing Π2, while preserving progress in that portion.Thus, we examine the process of analyzing a protocol Π. We use ltss that describe our activity when analyzing Π, not that of the principals executing Π. Each analysis step considers-for an observed message reception-what earlier transmissions would explain it. The lts then contains a transition from a fragmentary execution containing the reception to a richer one containing an explaining transmission. The strand space protocol analysis tool cpsa generates some of the ltss used.

show abstract

Systematic design of a family of attack-resistant authentication protocols

Cited by 121 publications

References 14 publications

Establishing and preserving protocol security goals

Establishing and preserving protocol security goals

A hierarchy of authentication specifications

Security Goals and Protocol Transformations

Contact Info

Product

Resources

About