Journal article
Know Your Enemy
- Abstract:
- We present a symbolic framework, based on a modular operational semantics, for formalizing different notions of compromise relevant for the design and analysis of cryptographic protocols. The framework's rules can be combined to specify different adversary capabilities, capturing different practically-relevant notions of key and state compromise. The resulting adversary models generalize the models currently used in different domains, such as security models for authenticated key exchange. We extend an existing securityprotocol analysis tool, Scyther, with our adversary models. This extension systematically supports notions such as weak perfect forward secrecy, key compromise impersonation, and adversaries capable of statereveal queries. Furthermore, we introduce the concept of a protocol-security hierarchy, which classifies the relative strength of protocols against different adversaries. In case studies, we use Scyther to analyse protocols and automatically construct protocol-security hierarchies in the context of our adversary models. Our analysis confirms known results and uncovers new attacks. Additionally, our hierarchies refine and correct relationships between protocols previously reported in the cryptographic literature.
- Publication status:
- Published
- Peer review status:
- Peer reviewed
Actions
Access Document
- Files:
-
-
(Preview, Accepted manuscript, pdf, 382.0KB, Terms of use)
-
- Publisher copy:
- 10.1145/2658996
Authors
- Publisher:
- Association for Computing Machinery
- Journal:
- ACM Transactions on Information and System Security More from this journal
- Volume:
- 17
- Issue:
- 2
- Pages:
- 1-31
- Publication date:
- 2014-11-17
- DOI:
- EISSN:
-
1557-7406
- ISSN:
-
1094-9224
- Keywords:
- Pubs id:
-
pubs:493186
- UUID:
-
uuid:0159cd0b-964b-47e0-83ba-5993f1034cb4
- Local pid:
-
pubs:493186
- Source identifiers:
-
493186
- Deposit date:
-
2017-01-03
- ARK identifier:
Terms of use
- Copyright holder:
- Basin D et al
- Copyright date:
- 2014
- Notes:
- © ACM, 2014. This is the author's version of the work. It is posted here by permission of ACM for your personal use. Not for redistribution. The definitive version was published in ACM Transactions on Information and System Security VOL 17, ISS 2, Nov. 2014, 10.1145/2658996
If you are the owner of this record, you can report an update to it here: Report update to this record