Trustworthy exams without trusted parties

Bella, Giampaolo; Giustolisi, Rosario; Lenzini, Gabriele; Ryan, Peter

doi:10.1016/j.cose.2016.12.005

Request a copy

Article (Scientific journals)

Trustworthy exams without trusted parties

Bella, Giampaolo; Giustolisi, Rosario; Lenzini, Gabriele et al.

2017 • In Computer and Security, 67, p. 291-307

Peer reviewed

Permalink
https://hdl.handle.net/10993/33325

DOI
10.1016/j.cose.2016.12.005

Files (1)Send to Details Statistics Bibliography Similar publications

Files

Full Text

1-s2.0-S0167404816301766-main.pdf

Publisher postprint (1.41 MB)

Request a copy

All documents in ORBilu are protected by a user license.

Send to

RIS BibTex APA Chicago Permalink X Linkedin

Details

Keywords :

Assessment; Proverif; Formal Methods; Security Protocols

Abstract :

[en] Historically, exam security has mainly focused on threats ascribed to candidate cheating. Such threats have been normally mitigated by invigilation and anti-plagiarism methods. However, as recent exam scandals confirm, also invigilators and authorities may pose security threats. The introduction of computers into the different phases of an exam, such as candidate registration, brings new security issues that should be addressed with the care normally devoted to security protocols. This paper proposes a protocol that meets a wide set of security requirements and resists threats that may originate from candidates as well as from exam administrators. By relying on a combination of oblivious transfer and visual cryptography schemes, the protocol does not need to rely on any trusted third party. We analyse the protocol formally in ProVerif and prove that it verifies all the stated security requirements.

Research center :

Interdisciplinary Centre for Security, Reliability and Trust (SnT) > Applied Security and Information Assurance Group (APSIA)

Disciplines :

Computer science

Author, co-author :

Bella, Giampaolo; University of Catania > Mathematics and Informatics

Giustolisi, Rosario; Swedish Institute of Computer Science

Lenzini, Gabriele ; University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT)

Ryan, Peter ; University of Luxembourg > Faculty of Science, Technology and Communication (FSTC) > Computer Science and Communications Research Unit (CSC)

External co-authors :

yes

Language :

English

Title :

Trustworthy exams without trusted parties

Publication date :

01 June 2017

Journal title :

Computer and Security

ISSN :

0167-4048

Volume :

Pages :

291-307

Peer reviewed :

Peer reviewed

Focus Area :

Security, Reliability and Trust

Additional URL :

http://doi.org/10.1016/j.cose.2016.12.005

Available on ORBilu :

since 29 November 2017

Statistics

Number of views

163 (11 by Unilu)

Number of downloads

0 (0 by Unilu)

More statistics

Scopus citations^®

Scopus citations^®
without self-citations

OpenCitations

WoS citations^™