Conference item
Distance hijacking attacks on distance bounding protocols
- Abstract:
- After several years of theoretical research on distance bounding protocols, the first implementations of such protocols have recently started to appear. These protocols are typically analyzed with respect to three types of attacks, which are historically known as Distance Fraud, Mafia Fraud, and Terrorist Fraud. We define and analyze a fourth main type of attack on distance bounding protocols, called Distance Hijacking. This type of attack poses a serious threat in many practical scenarios. We show that many proposed distance bounding protocols are vulnerable to Distance Hijacking, and we propose solutions to make these protocols resilient to this type of attack. We show that verifying distance bounding protocols using existing informal and formal frameworks does not guarantee the absence of Distance Hijacking attacks. We extend a formal framework for reasoning about distance bounding protocols to include overshadowing attacks. We use the resulting framework to prove the absence of all of the found attacks for protocols to which our countermeasures have been applied. © 2012 IEEE.
- Publication status:
- Published
- Peer review status:
- Peer reviewed
Actions
Access Document
- Publisher copy:
- 10.1109/SP.2012.17
Authors
- Publisher:
- IEEE
- Journal:
- Proceedings - IEEE Symposium on Security and Privacy More from this journal
- Pages:
- 113-127
- Publication date:
- 2012-12-01
- Acceptance date:
- 2012-05-23
- Event start date:
- 2012-05-20
- DOI:
- ISSN:
-
1081-6011
- ISBN:
- 9780769546810
- Pubs id:
-
pubs:420933
- UUID:
-
uuid:eb9e4dff-a516-4e27-893d-92a4664c2335
- Local pid:
-
pubs:420933
- Source identifiers:
-
420933
- Deposit date:
-
2013-11-16
- ARK identifier:
Terms of use
- Copyright holder:
- Cremers et al
- Copyright date:
- 2012
- Notes:
- © 2012, Cas Cremers. Under license to IEEE.
If you are the owner of this record, you can report an update to it here: Report update to this record