Bayesian Authentication: Quantifying Security of the Hancke-Kuhn Protocol

Dusko Pavlovic; Catherine Meadows

doi:10.1016/j.entcs.2010.08.007

Bayesian Authentication: Quantifying Security of the Hancke-Kuhn Protocol

Dusko Pavlovic, Catherine Meadows

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Academic › peer-review

8 Citations (Scopus)

7 Downloads (Pure)

Abstract

As mobile devices pervade physical space, the familiar authentication patterns are becoming insufficient: besides entity authentication, many applications require, e.g., location authentication. Many interesting protocols have been proposed and implemented to provide such strengthened forms of authentication, but there are very few proofs that such protocols satisfy the required security properties. In some cases, the proofs can be provided in the symbolic model. More often, various physical factors invalidate the perfect cryptography assumption, and the symbolic model does not apply. In such cases, the protocol cannot be secure in an absolute logical sense, but only with a high probability. But while probabilistic reasoning is thus necessary, the analysis in the full computational model may not be warranted, since the protocol security does not depend on any computational assumptions, or on attacker's computational power, but only on some guessing chances. We refine the Dolev-Yao algebraic method for protocol analysis by a probabilistic model of guessing, needed to analyze protocols that mix weak cryptography with physical properties of nonstandard communication channels. Applying this model, we provide a precise security proof for a proximity authentication protocol, due to Hancke and Kuhn, that uses probabilistic reasoning to achieve its goals.

Original language	English
Title of host publication	Proceedings of the 26th Conference on the Mathematical Foundations of Programming Semantics (MFPS 2010)
Editors	M. Mislove, P. Selinger
Place of Publication	Amsterdam
Publisher	Elsevier
Pages	97-122
Number of pages	26
DOIs	https://doi.org/10.1016/j.entcs.2010.08.007
Publication status	Published - Sept 2010
Event	26th Conference on the Mathematical Foundations of Programming Semantics, MFPS 2010 - Ottawa, Canada Duration: 6 May 2010 → 10 May 2010 Conference number: 26

Publication series

Name	Electronic Notes in Theoretical Computer Science
Publisher	Elsevier
Volume	265
ISSN (Print)	1571-0661

Conference

Conference	26th Conference on the Mathematical Foundations of Programming Semantics, MFPS 2010
Abbreviated title	MFPS
Country/Territory	Canada
City	Ottawa
Period	6/05/10 → 10/05/10

Keywords

SCS-Cybersecurity
Security protocol
Pervasive authentication
Symbolic model
Bayesian reasoning
Distance bounding

Access to Document

10.1016/j.entcs.2010.08.007

Cite this

Pavlovic, D., & Meadows, C. (2010). Bayesian Authentication: Quantifying Security of the Hancke-Kuhn Protocol. In M. Mislove, & P. Selinger (Eds.), Proceedings of the 26th Conference on the Mathematical Foundations of Programming Semantics (MFPS 2010) (pp. 97-122). (Electronic Notes in Theoretical Computer Science; Vol. 265). Elsevier. https://doi.org/10.1016/j.entcs.2010.08.007

@inproceedings{22a7ed8a324f4eabaef498c4ac621194,

title = "Bayesian Authentication: Quantifying Security of the Hancke-Kuhn Protocol",

abstract = "As mobile devices pervade physical space, the familiar authentication patterns are becoming insufficient: besides entity authentication, many applications require, e.g., location authentication. Many interesting protocols have been proposed and implemented to provide such strengthened forms of authentication, but there are very few proofs that such protocols satisfy the required security properties. In some cases, the proofs can be provided in the symbolic model. More often, various physical factors invalidate the perfect cryptography assumption, and the symbolic model does not apply. In such cases, the protocol cannot be secure in an absolute logical sense, but only with a high probability. But while probabilistic reasoning is thus necessary, the analysis in the full computational model may not be warranted, since the protocol security does not depend on any computational assumptions, or on attacker's computational power, but only on some guessing chances. We refine the Dolev-Yao algebraic method for protocol analysis by a probabilistic model of guessing, needed to analyze protocols that mix weak cryptography with physical properties of nonstandard communication channels. Applying this model, we provide a precise security proof for a proximity authentication protocol, due to Hancke and Kuhn, that uses probabilistic reasoning to achieve its goals.",

keywords = "SCS-Cybersecurity, Security protocol, Pervasive authentication, Symbolic model, Bayesian reasoning, Distance bounding",

author = "Dusko Pavlovic and Catherine Meadows",

year = "2010",

month = sep,

doi = "10.1016/j.entcs.2010.08.007",

language = "English",

series = "Electronic Notes in Theoretical Computer Science",

publisher = "Elsevier",

pages = "97--122",

editor = "M. Mislove and P. Selinger",

booktitle = "Proceedings of the 26th Conference on the Mathematical Foundations of Programming Semantics (MFPS 2010)",

note = "26th Conference on the Mathematical Foundations of Programming Semantics, MFPS 2010, MFPS ; Conference date: 06-05-2010 Through 10-05-2010",

}

Pavlovic, D & Meadows, C 2010, Bayesian Authentication: Quantifying Security of the Hancke-Kuhn Protocol. in M Mislove & P Selinger (eds), Proceedings of the 26th Conference on the Mathematical Foundations of Programming Semantics (MFPS 2010). Electronic Notes in Theoretical Computer Science, vol. 265, Elsevier, Amsterdam, pp. 97-122, 26th Conference on the Mathematical Foundations of Programming Semantics, MFPS 2010, Ottawa, Ontario, Canada, 6/05/10. https://doi.org/10.1016/j.entcs.2010.08.007

Bayesian Authentication: Quantifying Security of the Hancke-Kuhn Protocol. / Pavlovic, Dusko; Meadows, Catherine.
Proceedings of the 26th Conference on the Mathematical Foundations of Programming Semantics (MFPS 2010). ed. / M. Mislove; P. Selinger. Amsterdam: Elsevier, 2010. p. 97-122 (Electronic Notes in Theoretical Computer Science; Vol. 265).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Academic › peer-review

TY - GEN

T1 - Bayesian Authentication

T2 - 26th Conference on the Mathematical Foundations of Programming Semantics, MFPS 2010

AU - Pavlovic, Dusko

AU - Meadows, Catherine

N1 - Conference code: 26

PY - 2010/9

Y1 - 2010/9

N2 - As mobile devices pervade physical space, the familiar authentication patterns are becoming insufficient: besides entity authentication, many applications require, e.g., location authentication. Many interesting protocols have been proposed and implemented to provide such strengthened forms of authentication, but there are very few proofs that such protocols satisfy the required security properties. In some cases, the proofs can be provided in the symbolic model. More often, various physical factors invalidate the perfect cryptography assumption, and the symbolic model does not apply. In such cases, the protocol cannot be secure in an absolute logical sense, but only with a high probability. But while probabilistic reasoning is thus necessary, the analysis in the full computational model may not be warranted, since the protocol security does not depend on any computational assumptions, or on attacker's computational power, but only on some guessing chances. We refine the Dolev-Yao algebraic method for protocol analysis by a probabilistic model of guessing, needed to analyze protocols that mix weak cryptography with physical properties of nonstandard communication channels. Applying this model, we provide a precise security proof for a proximity authentication protocol, due to Hancke and Kuhn, that uses probabilistic reasoning to achieve its goals.

AB - As mobile devices pervade physical space, the familiar authentication patterns are becoming insufficient: besides entity authentication, many applications require, e.g., location authentication. Many interesting protocols have been proposed and implemented to provide such strengthened forms of authentication, but there are very few proofs that such protocols satisfy the required security properties. In some cases, the proofs can be provided in the symbolic model. More often, various physical factors invalidate the perfect cryptography assumption, and the symbolic model does not apply. In such cases, the protocol cannot be secure in an absolute logical sense, but only with a high probability. But while probabilistic reasoning is thus necessary, the analysis in the full computational model may not be warranted, since the protocol security does not depend on any computational assumptions, or on attacker's computational power, but only on some guessing chances. We refine the Dolev-Yao algebraic method for protocol analysis by a probabilistic model of guessing, needed to analyze protocols that mix weak cryptography with physical properties of nonstandard communication channels. Applying this model, we provide a precise security proof for a proximity authentication protocol, due to Hancke and Kuhn, that uses probabilistic reasoning to achieve its goals.

KW - SCS-Cybersecurity

KW - Security protocol

KW - Pervasive authentication

KW - Symbolic model

KW - Bayesian reasoning

KW - Distance bounding

U2 - 10.1016/j.entcs.2010.08.007

DO - 10.1016/j.entcs.2010.08.007

M3 - Conference contribution

T3 - Electronic Notes in Theoretical Computer Science

SP - 97

EP - 122

BT - Proceedings of the 26th Conference on the Mathematical Foundations of Programming Semantics (MFPS 2010)

A2 - Mislove, M.

A2 - Selinger, P.

PB - Elsevier

CY - Amsterdam

Y2 - 6 May 2010 through 10 May 2010

ER -

Bayesian Authentication: Quantifying Security of the Hancke-Kuhn Protocol

Abstract

Publication series

Conference

Keywords

Access to Document

Fingerprint

Cite this