Uncovering attacks on security protocols

Wuu Yang

doi:10.1109/ICITA.2005.292

Uncovering attacks on security protocols

Wuu Yang^*

^*此作品的通信作者

資訊工程學系

研究成果: Conference contribution › 同行評審

1 引文斯高帕斯（Scopus）

摘要

Security protocols are indispensable in secure communication. We give an operational semantics of security protocols in terms of a Prolog-like language. With this semantics, we can uncover attacks on a security protocol that are possible with no more than a given number of rounds. Though our approach is exhaustive testing, the majority of fruitless search is cut off by selecting a small number of representative values that could be sent by an attacker. Hence, the number of scenarios is relatively small and our method is quite practical. Furthermore, our method not only reports possible attacks but also describes the attacks in great detail. This description would be very helpful to protocol designers and analyzers.

原文	English
主出版物標題	Proceedings - 3rd International Conference on Information Technology and Applications, ICITA 2005
頁面	572-575
頁數	4
DOIs	https://doi.org/10.1109/ICITA.2005.292
出版狀態	Published - 1 12月 2005
事件	3rd International Conference on Information Technology and Applications, ICITA 2005 - Sydney, 澳大利亞持續時間: 4 7月 2005 → 7 7月 2005

出版系列

名字	Proceedings - 3rd International Conference on Information Technology and Applications, ICITA 2005
卷	II

Conference

Conference	3rd International Conference on Information Technology and Applications, ICITA 2005
國家/地區	澳大利亞
城市	Sydney
期間	4/07/05 → 7/07/05

存取文件

10.1109/ICITA.2005.292

其它文件與鏈接

Link to publication in Scopus

引用此

@inproceedings{ba03a563410741829ba77051d208ee07,

title = "Uncovering attacks on security protocols",

abstract = "Security protocols are indispensable in secure communication. We give an operational semantics of security protocols in terms of a Prolog-like language. With this semantics, we can uncover attacks on a security protocol that are possible with no more than a given number of rounds. Though our approach is exhaustive testing, the majority of fruitless search is cut off by selecting a small number of representative values that could be sent by an attacker. Hence, the number of scenarios is relatively small and our method is quite practical. Furthermore, our method not only reports possible attacks but also describes the attacks in great detail. This description would be very helpful to protocol designers and analyzers.",

author = "Wuu Yang",

year = "2005",

month = dec,

day = "1",

doi = "10.1109/ICITA.2005.292",

language = "English",

isbn = "0769523161",

series = "Proceedings - 3rd International Conference on Information Technology and Applications, ICITA 2005",

pages = "572--575",

booktitle = "Proceedings - 3rd International Conference on Information Technology and Applications, ICITA 2005",

note = "3rd International Conference on Information Technology and Applications, ICITA 2005 ; Conference date: 04-07-2005 Through 07-07-2005",

}

Yang, W 2005, Uncovering attacks on security protocols. 於 Proceedings - 3rd International Conference on Information Technology and Applications, ICITA 2005., 1489026, Proceedings - 3rd International Conference on Information Technology and Applications, ICITA 2005, 卷 II, 頁 572-575, 3rd International Conference on Information Technology and Applications, ICITA 2005, Sydney, 澳大利亞, 4/07/05. https://doi.org/10.1109/ICITA.2005.292

TY - GEN

T1 - Uncovering attacks on security protocols

AU - Yang, Wuu

PY - 2005/12/1

Y1 - 2005/12/1

N2 - Security protocols are indispensable in secure communication. We give an operational semantics of security protocols in terms of a Prolog-like language. With this semantics, we can uncover attacks on a security protocol that are possible with no more than a given number of rounds. Though our approach is exhaustive testing, the majority of fruitless search is cut off by selecting a small number of representative values that could be sent by an attacker. Hence, the number of scenarios is relatively small and our method is quite practical. Furthermore, our method not only reports possible attacks but also describes the attacks in great detail. This description would be very helpful to protocol designers and analyzers.

AB - Security protocols are indispensable in secure communication. We give an operational semantics of security protocols in terms of a Prolog-like language. With this semantics, we can uncover attacks on a security protocol that are possible with no more than a given number of rounds. Though our approach is exhaustive testing, the majority of fruitless search is cut off by selecting a small number of representative values that could be sent by an attacker. Hence, the number of scenarios is relatively small and our method is quite practical. Furthermore, our method not only reports possible attacks but also describes the attacks in great detail. This description would be very helpful to protocol designers and analyzers.

UR - http://www.scopus.com/inward/record.url?scp=33646795345&partnerID=8YFLogxK

U2 - 10.1109/ICITA.2005.292

DO - 10.1109/ICITA.2005.292

M3 - Conference contribution

AN - SCOPUS:33646795345

SN - 0769523161

SN - 9780769523163

T3 - Proceedings - 3rd International Conference on Information Technology and Applications, ICITA 2005

SP - 572

EP - 575

BT - Proceedings - 3rd International Conference on Information Technology and Applications, ICITA 2005

T2 - 3rd International Conference on Information Technology and Applications, ICITA 2005

Y2 - 4 July 2005 through 7 July 2005

ER -

Uncovering attacks on security protocols

摘要

出版系列

Conference

存取文件

其它文件與鏈接

指紋

引用此