Publication: Research - peer-review › Conference article – Annual report year: 2012
Most methods for protocol analysis classify protocols as “broken” if they are vulnerable to attacks from a strong attacker, e.g., assuming the Dolev-Yao attacker model. In many cases, however, exploitation of existing vulnerabilities may not be practical and, moreover, not all applications may suffer because of the identified vulnerabilities. Therefore, we may need to analyze a protocol for weaker notions of security. In this paper, we present a security model that supports such weaker notions. In this model, the overall goals of an authentication protocol are broken into a finer granularity; for each fine level authentication goal, we determine the “least strongest-attacker” for which the authentication goal can be satisfied. We demonstrate that this model can be used to reason about the security of supposedly insecure protocols. Such adaptability is particularly useful in those applications where one may need to trade-off security relaxations against resource requirements.
|Book series||Lecture Notes in Computer Science|
|State||Published - 2011|
|Event||International Symposium on Engineering Secure Software and Systems - Madrid, Spain|
|Conference||International Symposium on Engineering Secure Software and Systems|
|Period||09/02/2011 → 10/02/2011|
|Citations||Web of Science® Times Cited: No match on DOI|