Timed Analysis of Security Protocols

R.J. Corin, Sandro Etalle, Pieter H. Hartel, Angelika H. Mader

    Research output: Book/ReportReportProfessional

    94 Downloads (Pure)

    Abstract

    We propose a method for engineering security protocols that are aware of timing aspects. We study a simplified version of the well-known Needham Schroeder protocol and the complete Yahalom protocol, where timing information allows the study of different attack scenarios. We model check the protocols using UPPAAL. Further, a taxonomy is obtained by studying and categorising protocols from the well known Clark Jacob library and the Security Protocol Open Repository (SPORE) library. Finally, we present some new challenges and threats that arise when considering time in the analysis, by providing a novel protocol that uses time challenges and exposing a timing attack over an implementation of an existing security protocol.
    Original languageUndefined
    Place of PublicationEnschede
    PublisherDistributed and Embedded Security (DIES)
    Number of pages30
    Publication statusPublished - Mar 2005

    Publication series

    NameCTIT Technical Report Series
    PublisherUniversity of Twente, Centre for Telematics and Information Technology (CTIT)
    No.TR-CTIT-05-14
    ISSN (Print)1381-3625

    Keywords

    • SCS-Cybersecurity
    • METIS-248113
    • EWI-5744
    • IR-57017

    Cite this

    Corin, R. J., Etalle, S., Hartel, P. H., & Mader, A. H. (2005). Timed Analysis of Security Protocols. (CTIT Technical Report Series; No. TR-CTIT-05-14). Enschede: Distributed and Embedded Security (DIES).