DocumentCode :
2417009
Title :
Formal verification of type flaw attacks in security protocols
Author :
Long, Benjamin W.
Author_Institution :
Sch. of Inf. Technol. & Electr. Eng., The Univ. of Queensland, Brisbane, Qld., Australia
fYear :
2003
fDate :
10-12 Dec. 2003
Firstpage :
415
Lastpage :
424
Abstract :
Security protocols are often modelled at a high level of abstraction, potentially overlooking implementation-dependent vulnerabilities. Here we use the Z specification language´s rich set of data structures to formally model potentially ambiguous messages that may be exploited in a ´type flaw´ attack. We then show how to formally verify whether or not such an attack is actually possible in a particular protocol using Z´s schema calculus.
Keywords :
cryptography; data structures; formal verification; message authentication; protocols; specification languages; Z schema calculus; Z specification language; data structures; formal verification; security protocols; type flaw attacks; Australia; Calculus; Cryptography; Data security; Data structures; Formal verification; Information security; Information technology; Protocols; Software systems;
fLanguage :
English
Publisher :
ieee
Conference_Titel :
Software Engineering Conference, 2003. Tenth Asia-Pacific
Print_ISBN :
0-7695-2011-1
Type :
conf
DOI :
10.1109/APSEC.2003.1254397
Filename :
1254397
Link To Document :
https://search.ricest.ac.ir/dl/search/defaultta.aspx?DTC=49&DC=2417009
بازگشت