Formal verification of type flaw attacks in security protocols
| Contribuinte(s) |
D. Azada |
|---|---|
| Data(s) |
01/01/2003
|
| Resumo |
Security protocols are often modelled at a high level of abstraction, potentially overlooking implementation-dependent vulnerabilities. Here we use the Z specification language's rich set of data structures to formally model potentially ambiguous messages that may be exploited in a 'type flaw' attack. We then show how to formally verify whether or not such an attack is actually possible in a particular protocol using Z's schema calculus. |
| Identificador | |
| Idioma(s) |
eng |
| Publicador |
IEEE Computer Society |
| Palavras-Chave | #Cryptography #Data structures #Formal verification #Message authentication #Protocols #E1 #280302 Software Engineering #700199 Computer software and services not elsewhere classified |
| Tipo |
Conference Paper |
