Adaptable Authentication Model: Exploring Security with Weaker Attacker Models

Naveed Ahmed; Christian D. Jensen

doi:10.1007/978-3-642-19125-1_18

Adaptable Authentication Model: Exploring Security with Weaker Attacker Models

Naveed Ahmed
, Christian D. Jensen

Research output: Contribution to journal › Conference article › Research › peer-review

Abstract

Most methods for protocol analysis classify protocols as “broken” if they are vulnerable to attacks from a strong attacker, e.g., assuming the Dolev-Yao attacker model. In many cases, however, exploitation of existing vulnerabilities may not be practical and, moreover, not all applications may suffer because of the identified vulnerabilities. Therefore, we may need to analyze a protocol for weaker notions of security. In this paper, we present a security model that supports such weaker notions. In this model, the overall goals of an authentication protocol are broken into a finer granularity; for each fine level authentication goal, we determine the “least strongest-attacker” for which the authentication goal can be satisfied. We demonstrate that this model can be used to reason about the security of supposedly insecure protocols. Such adaptability is particularly useful in those applications where one may need to trade-off security relaxations against resource requirements.

Original language	English
Book series	Lecture Notes in Computer Science
Volume	6542
Pages (from-to)	234-247
ISSN	0302-9743
DOIs	https://doi.org/10.1007/978-3-642-19125-1_18
Publication status	Published - 2011
Event	International Symposium on Engineering Secure Software and Systems - Madrid, Spain Duration: 9 Feb 2011 → 10 Feb 2011 http://distrinet.cs.kuleuven.be/events/essos/2011/

Conference

Conference	International Symposium on Engineering Secure Software and Systems
Country/Territory	Spain
City	Madrid
Period	09/02/2011 → 10/02/2011
Internet address	http://distrinet.cs.kuleuven.be/events/essos/2011/

Access to Document

10.1007/978-3-642-19125-1_18

OpenUrl availability

Check availability in DTU Findit

Cite this

@inproceedings{e74213d0cef9483d9e83736ae69cf78b,

title = "Adaptable Authentication Model: Exploring Security with Weaker Attacker Models",

abstract = "Most methods for protocol analysis classify protocols as “broken” if they are vulnerable to attacks from a strong attacker, e.g., assuming the Dolev-Yao attacker model. In many cases, however, exploitation of existing vulnerabilities may not be practical and, moreover, not all applications may suffer because of the identified vulnerabilities. Therefore, we may need to analyze a protocol for weaker notions of security. In this paper, we present a security model that supports such weaker notions. In this model, the overall goals of an authentication protocol are broken into a finer granularity; for each fine level authentication goal, we determine the “least strongest-attacker” for which the authentication goal can be satisfied. We demonstrate that this model can be used to reason about the security of supposedly insecure protocols. Such adaptability is particularly useful in those applications where one may need to trade-off security relaxations against resource requirements. ",

author = "Naveed Ahmed and Jensen, \{Christian D.\}",

year = "2011",

doi = "10.1007/978-3-642-19125-1\_18",

language = "English",

volume = "6542",

pages = "234--247",

journal = "Lecture Notes in Computer Science",

issn = "0302-9743",

publisher = "Springer Science and Business Media Deutschland GmbH",

note = "International Symposium on Engineering Secure Software and Systems ; Conference date: 09-02-2011 Through 10-02-2011",

url = "http://distrinet.cs.kuleuven.be/events/essos/2011/",

}

TY - GEN

T1 - Adaptable Authentication Model: Exploring Security with Weaker Attacker Models

AU - Ahmed, Naveed

AU - Jensen, Christian D.

PY - 2011

Y1 - 2011

N2 - Most methods for protocol analysis classify protocols as “broken” if they are vulnerable to attacks from a strong attacker, e.g., assuming the Dolev-Yao attacker model. In many cases, however, exploitation of existing vulnerabilities may not be practical and, moreover, not all applications may suffer because of the identified vulnerabilities. Therefore, we may need to analyze a protocol for weaker notions of security. In this paper, we present a security model that supports such weaker notions. In this model, the overall goals of an authentication protocol are broken into a finer granularity; for each fine level authentication goal, we determine the “least strongest-attacker” for which the authentication goal can be satisfied. We demonstrate that this model can be used to reason about the security of supposedly insecure protocols. Such adaptability is particularly useful in those applications where one may need to trade-off security relaxations against resource requirements.

AB - Most methods for protocol analysis classify protocols as “broken” if they are vulnerable to attacks from a strong attacker, e.g., assuming the Dolev-Yao attacker model. In many cases, however, exploitation of existing vulnerabilities may not be practical and, moreover, not all applications may suffer because of the identified vulnerabilities. Therefore, we may need to analyze a protocol for weaker notions of security. In this paper, we present a security model that supports such weaker notions. In this model, the overall goals of an authentication protocol are broken into a finer granularity; for each fine level authentication goal, we determine the “least strongest-attacker” for which the authentication goal can be satisfied. We demonstrate that this model can be used to reason about the security of supposedly insecure protocols. Such adaptability is particularly useful in those applications where one may need to trade-off security relaxations against resource requirements.

U2 - 10.1007/978-3-642-19125-1_18

DO - 10.1007/978-3-642-19125-1_18

M3 - Conference article

SN - 0302-9743

VL - 6542

SP - 234

EP - 247

JO - Lecture Notes in Computer Science

JF - Lecture Notes in Computer Science

T2 - International Symposium on Engineering Secure Software and Systems

Y2 - 9 February 2011 through 10 February 2011

ER -

Adaptable Authentication Model: Exploring Security with Weaker Attacker Models

Abstract

Conference

Access to Document

OpenUrl availability

Fingerprint

Cite this