Demarcation of Security in Authentication Protocols

Publication: Research - peer-reviewArticle in proceedings – Annual report year: 2011

Standard

Demarcation of Security in Authentication Protocols. / Ahmed, Naveed; Jensen, Christian D.

2011 First SysSec Workshop (SysSec). IEEE, 2011. p. 43-50.

Publication: Research - peer-reviewArticle in proceedings – Annual report year: 2011

Harvard

Ahmed, N & Jensen, CD 2011, 'Demarcation of Security in Authentication Protocols'. in 2011 First SysSec Workshop (SysSec). IEEE, pp. 43-50., 10.1109/SysSec.2011.13

APA

Ahmed, N., & Jensen, C. D. (2011). Demarcation of Security in Authentication Protocols. In 2011 First SysSec Workshop (SysSec). (pp. 43-50). IEEE. 10.1109/SysSec.2011.13

CBE

Ahmed N, Jensen CD. 2011. Demarcation of Security in Authentication Protocols. In 2011 First SysSec Workshop (SysSec). IEEE. pp. 43-50. Available from: 10.1109/SysSec.2011.13

MLA

Vancouver

Ahmed N, Jensen CD. Demarcation of Security in Authentication Protocols. In 2011 First SysSec Workshop (SysSec). IEEE. 2011. p. 43-50. Available from: 10.1109/SysSec.2011.13

Author

Ahmed, Naveed; Jensen, Christian D. / Demarcation of Security in Authentication Protocols.

2011 First SysSec Workshop (SysSec). IEEE, 2011. p. 43-50.

Publication: Research - peer-reviewArticle in proceedings – Annual report year: 2011

Bibtex

@inbook{091d579dc9ec47fa915c7dfe322ef44a,
title = "Demarcation of Security in Authentication Protocols",
publisher = "IEEE",
author = "Naveed Ahmed and Jensen, {Christian D.}",
year = "2011",
doi = "10.1109/SysSec.2011.13",
isbn = "978-1-4577-1528-0",
pages = "43-50",
booktitle = "2011 First SysSec Workshop (SysSec)",

}

RIS

TY - GEN

T1 - Demarcation of Security in Authentication Protocols

A1 - Ahmed,Naveed

A1 - Jensen,Christian D.

AU - Ahmed,Naveed

AU - Jensen,Christian D.

PB - IEEE

PY - 2011

Y1 - 2011

N2 - Security analysis of communication protocols is a slippery business; many “secure” protocols later turn out to be insecure. Among many, two complains are more frequent: inadequate definition of security and unstated assumptions in the security model. In our experience, one principal cause for such state of affairs is an apparent overlap of security and correctness, which may lead to many sloppy security definitions and security models. Although there is no inherent need to separate security and correctness requirements, practically, such separation is significant. It makes security analysis easier, and enables us to define security goals with a fine granularity. We present one such separation, by introducing the notion of binding sequence as a security primitive. A binding sequence, roughly speaking, is the only required security property of an authentication protocol. All other authentication goals, the correctness requirements, can be derived from the binding sequence.

AB - Security analysis of communication protocols is a slippery business; many “secure” protocols later turn out to be insecure. Among many, two complains are more frequent: inadequate definition of security and unstated assumptions in the security model. In our experience, one principal cause for such state of affairs is an apparent overlap of security and correctness, which may lead to many sloppy security definitions and security models. Although there is no inherent need to separate security and correctness requirements, practically, such separation is significant. It makes security analysis easier, and enables us to define security goals with a fine granularity. We present one such separation, by introducing the notion of binding sequence as a security primitive. A binding sequence, roughly speaking, is the only required security property of an authentication protocol. All other authentication goals, the correctness requirements, can be derived from the binding sequence.

UR - http://www.syssec-project.eu/events/1st-syssec-workshop/

U2 - 10.1109/SysSec.2011.13

DO - 10.1109/SysSec.2011.13

SN - 978-1-4577-1528-0

BT - 2011 First SysSec Workshop (SysSec)

T2 - 2011 First SysSec Workshop (SysSec)

SP - 43

EP - 50

ER -