Chosen-name attacks: An overlooked class of type-flaw attacks

Ceelen, Pieter; Mauw, Sjouke; Radomirovic, Sasa

doi:10.1016/j.entcs.2007.12.015

Download

Article (Scientific journals)

Chosen-name attacks: An overlooked class of type-flaw attacks

Ceelen, Pieter; Mauw, Sjouke; Radomirovic, Sasa

2008 • In Electronic Notes in Theoretical Computer Science, 197 (2), p. 31-43

Peer reviewed

Permalink
https://hdl.handle.net/10993/25871

DOI
10.1016/j.entcs.2007.12.015

Files (1)Send to Details Statistics Bibliography Similar publications

Files

Full Text

CMR07.pdf

Publisher postprint (172.57 kB)

Download

All documents in ORBilu are protected by a user license.

Send to

RIS BibTex APA Chicago Permalink X Linkedin

Details

Keywords :

security protocols; automatic verification; type-flaw attacks; semantics

Abstract :

[en] In the context of Dolev-Yao style analysis of security protocols, we consider the capability of an intruder to dynamically choose and assign names to agents. This capability has been overlooked in all significant protocol verification frameworks based on formal methods. We identify and classify new type-flaw attacks arising from this capability. Several examples of protocols that are vulnerable to this type of attack are given, including Lowe’s modification of KSL. The consequences for automatic verification tools are discussed.

Disciplines :

Computer science

Identifiers :

UNILU:UL-ARTICLE-2008-246

Author, co-author :

Ceelen, Pieter ; University of Luxembourg > Faculty of Science, Technology and Communication (FSTC) > Computer Science and Communications Research Unit (CSC)

Mauw, Sjouke ; University of Luxembourg > Faculty of Science, Technology and Communication (FSTC) > Computer Science and Communications Research Unit (CSC)

Radomirovic, Sasa ; University of Luxembourg > Faculty of Science, Technology and Communication (FSTC) > Computer Science and Communications Research Unit (CSC)

External co-authors :

yes

Language :

English

Title :

Chosen-name attacks: An overlooked class of type-flaw attacks

Publication date :

2008

Journal title :

Electronic Notes in Theoretical Computer Science

ISSN :

1571-0661

Publisher :

Elsevier

Volume :

197

Issue :

Pages :

31-43

Peer reviewed :

Peer reviewed

Available on ORBilu :

since 16 March 2016

Statistics

Number of views

62 (0 by Unilu)

Number of downloads

164 (1 by Unilu)

More statistics

Scopus citations^®

Scopus citations^®
without self-citations

OpenCitations