Resource and timing aspects of security protocols-Reference-Cited by-同舟云学术

Resource and timing aspects of security protocols

Published:2021-05-07 Issue:3 Volume:29 Page:299-340
ISSN:1875-8924
Container-title:Journal of Computer Security
language:
Short-container-title:JCS

Author:

Aires Urquiza Abraão¹,Alturki Musab A.²³,Ban Kirigin Tajana⁴,Kanovich Max⁵⁶,Nigam Vivek⁷¹,Scedrov Andre⁸⁹,Talcott Carolyn¹⁰

Affiliation:

1. Federal University of Paraíba, João Pessoa, Brazil. E-mail: abraauc@gmail.com

2. KFUPM, Dhahran, Saudi Arabia. E-mail: musab@kfupm.edu.sa

3. Runtime Verification Inc., USA

4. Department of Mathematics, University of Rijeka, Rijeka, Croatia. E-mail: bank@math.uniri.hr

5. University College London, London, UK. E-mail: m.kanovich@ucl.ac.uk

6. National Research University Higher School of Economics, Moscow, Russian Federation

7. fortiss, Germany. E-mail: nigam@fortiss.org

8. University of Pennsylvania, Philadelphia, PA, USA. E-mail: scedrov@math.upenn.edu

9. National Research University Higher School of Economics, Moscow, Russian Federation, until July 2020

10. SRI International, Menlo Park, CA, USA. E-mail: clt@csl.sri.com

Abstract

Protocol security verification is one of the best success stories of formal methods. However, some aspects important to protocol security, such as time and resources, are not covered by many formal models. While timing issues involve e.g., network delays and timeouts, resources such as memory, processing power, or network bandwidth are at the root of Denial of Service (DoS) attacks which have been a serious security concern. It is useful in practice and more challenging for formal protocol verification to determine whether a service is vulnerable not only to powerful intruders, but also to resource-bounded intruders that cannot generate or intercept arbitrarily large volumes of traffic. A refined Dolev–Yao intruder model is proposed, that can only consume at most some specified amount of resources in any given time window. Timed protocol theories that specify service resource usage during protocol execution are also proposed. It is shown that the proposed DoS problem is undecidable in general and is PSPACE-complete for the class of resource-bounded, balanced systems. Additionally, we describe a decidable fragment in the verification of the leakage problem for resource-sensitive timed protocol theories.

Publisher

IOS Press

Subject

Computer Networks and Communications,Hardware and Architecture,Safety, Risk, Reliability and Quality,Software

Reference55 articles.

1. Probabilistic modeling and analysis of DoS protection for the ASV protocol;AlTurki;Electr. Notes Theor. Comput. Sci.,2009

2. A Multiset Rewriting Model for Specifying and Verifying Timing Aspects of Security Protocols

3. Statistical Model Checking of Distance Fraud Attacks on the Hancke-Kuhn Family of Protocols

4. A theory of timed automata;Alur;Theoretical Computer Science,1994

5. A composable cryptographic library with nested operations

Cited by 7 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. A Flexible Framework for Integrating Maude and SMT Solvers Using Python;Lecture Notes in Computer Science;2024

2. Research on vulnerability mining of authentication protocol based on fuzzy simulation;2023 IEEE International Symposium on Broadband Multimedia Systems and Broadcasting (BMSB);2023-06-14

3. Incremental Rewriting Modulo SMT;Automated Deduction – CADE 29;2023

4. Detection and diagnosis of deviations in distributed systems of autonomous agents;Mathematical Structures in Computer Science;2022-09-06

5. On the Security and Complexity of Periodic Systems;SN Computer Science;2022-07-02