Practical Evaluation of Security against Generalized Interpolation Attack

Interpolation attack was presented by Jakobsen and Knudsen at FSE'97. Interpolation attack is effective against ciphers that have a certain algebraic structure like the PURE cipher which is a prototype cipher, but it is difficult to apply the attack to real-world ciphers. This difficulty is due to the difficulty of deriving a low degree polynomial relation between ciphertexts and plaintexts. In other words, it is difficult to evaluate the security against interpolation attack. This paper generalizes the interpolation attack. The generalization makes easier to evaluate the security against interpolation attack. We call the generalized interpolation attack linear sum attack. We present an algorithm that evaluates the security of byte-oriented ciphers against linear sum attack. Moreover, we show the relationship between linear sum attack and higher order differential attack. In addition, we show the security of CRYPTON, E2, and RIJNDAEL against linear sum attack using the algorithm.

安全协议的形式化分析技术与方法

对于安全协议的形式化分析方法从技术特点上做了分类和分析．对于安全协议分析技术的发展历史、目前的状况以及将来的趋势作了总体的介绍和总结．根据作者的体会，从纵向和横向两个角度进行了总结．纵向方面主要是从用于分析安全协议的形式化方法的出现和发展的历史角度加以总结．横向方面主要从所应用的技术手段、技术特点入手，进行总结分析．说明了目前协议形式化分析发展的主要方向．对于目前国际流行的方法和模型进行了例解．

一种基于图聚类的安全态势评估方法

分析并比较现有网络安全态势评估方法,从网络拓扑结构出发,引入图论算法和数据挖掘的聚类方法,提出一种针对分布式系统的安全态势评估方法.利用图聚类算法生成分布式系统网络连通图的聚类结果,计算拓扑完整性参考值,作为衡量分布式系统拓扑完整程度的指标,进行安全态势的量化分析.根据该方法实现低人为干预的安全态势评估原型系统,使用网络仿真工具验证了算法正确性和适用性.

基于UML和模型检测的安全模型验证方法

安全策略的形式化分析与验证随着安全操作系统研究的不断深入已成为当前的研究热点之一.文中在总结前人工作的基础上,首次提出一种基于UML和模型检测器的安全模型验证方法.该方法采用UML将安全策略模型描述为状态机图和类图,然后利用转换工具将UML图转化为模型检测器的输入语言,最后由模型检测器来验证安全模型对于安全需求的满足性.作者使用该方法验证了DBLP和SLCF模型对机密性原则的违反.