Protocol engineering for protection against denial-of-service attacks

Denial-of-service attacks (DoS) and distributed denial-of-service attacks (DDoS) attempt to temporarily disrupt users or computer resources to cause service un- availability to legitimate users in the internetworking system. The most common type of DoS attack occurs when adversaries °ood a large amount of bogus data to interfere or disrupt the service on the server. The attack can be either a single-source attack, which originates at only one host, or a multi-source attack, in which multiple hosts coordinate to °ood a large number of packets to the server. Cryptographic mechanisms in authentication schemes are an example ap- proach to help the server to validate malicious tra±c. Since authentication in key establishment protocols requires the veri¯er to spend some resources before successfully detecting the bogus messages, adversaries might be able to exploit this °aw to mount an attack to overwhelm the server resources. The attacker is able to perform this kind of attack because many key establishment protocols incorporate strong authentication at the beginning phase before they can iden- tify the attacks. This is an example of DoS threats in most key establishment protocols because they have been implemented to support con¯dentiality and data integrity, but do not carefully consider other security objectives, such as availability. The main objective of this research is to design denial-of-service resistant mechanisms in key establishment protocols. In particular, we focus on the design of cryptographic protocols related to key establishment protocols that implement client puzzles to protect the server against resource exhaustion attacks. Another objective is to extend formal analysis techniques to include DoS- resistance. Basically, the formal analysis approach is used not only to analyse and verify the security of a cryptographic scheme carefully but also to help in the design stage of new protocols with a high level of security guarantee. In this research, we focus on an analysis technique of Meadows' cost-based framework, and we implement DoS-resistant model using Coloured Petri Nets. Meadows' cost-based framework is directly proposed to assess denial-of-service vulnerabil- ities in the cryptographic protocols using mathematical proof, while Coloured Petri Nets is used to model and verify the communication protocols using inter- active simulations. In addition, Coloured Petri Nets are able to help the protocol designer to clarify and reduce some inconsistency of the protocol speci¯cation. Therefore, the second objective of this research is to explore vulnerabilities in existing DoS-resistant protocols, as well as extend a formal analysis approach to our new framework for improving DoS-resistance and evaluating the performance of the new proposed mechanism. In summary, the speci¯c outcomes of this research include following results; 1. A taxonomy of denial-of-service resistant strategies and techniques used in key establishment protocols; 2. A critical analysis of existing DoS-resistant key exchange and key estab- lishment protocols; 3. An implementation of Meadows's cost-based framework using Coloured Petri Nets for modelling and evaluating DoS-resistant protocols; and 4. A development of new e±cient and practical DoS-resistant mechanisms to improve the resistance to denial-of-service attacks in key establishment protocols.

AITPM Email Newsletter Volume 0902, February 2009: Presidents Message

President’s Report Hello fellow AITPM members, Welcome to the first edition of the AITPM National Newsletter for 2009! I trust we all had a relaxing break and managed to lose track of all things transport for just a little while. I know I had trouble doing so when hunting for a car space at the shopping centre, and experiencing new projects such as the Tugun Bypass – the new gateway between New South Wales and Queensland. Byron Bay is now as close as Noosa for those high profile beach goers of Brisbane. There was also my experience of the reduced posted speed of 90km/h on the Bruce Highway around the troublesome Gympie stretch, when returning from a short Fraser Coast holiday. I expect that this relatively inexpensive safety improvement will pay substantial dividends in terms of crash reduction. The Newsletter took its annual leave last month and is refreshed and ready for a new year to keep us all informed of the latest in traffic and transport engineering, planning and management. I would like to take this opportunity to acknowledge the ongoing significant contributions of many volunteers in the Newsletter’s production. Mr Andrew Hulse, AITPM’s Immediate Past National President, serves as the Editorial Coordinator on behalf of the Institute. Each Branch Committee also includes a Newsletter Coordinator and committee members frequently contribute as well. And the ongoing contributions of readers enable us to offer the Newsletter as a vehicle for dialogue and debate around our sector. If you would like to contribute please email AITPM’s administration officer Josephine Mitton at aitpm@aitpm.com or through your local Branch Committee. I would also like to welcome back on deck our Editor, Mr David Brown of Driven Media, who creates a fantastic package for us each month. Lastly, members would have received the Call for Papers for the AITPM 2009 National Conference, Traffic Beyond Tomorrow, to be held at the Adelaide Convention Centre between 5 – 7 August. Abstracts will be accepted up to 20 February 2009. We look forward to seeing everyone at this, our flagship event for the year. To all a good year ahead, Jon Bunker Post Script: We all will have seen through the media the enormous scale and nature of the two natural disasters Australia is experiencing at present. AITPM’s thoughts are with all of those members, family and friends who may be experiencing hardship as a result of the Victorian bushfires and North Queensland floods. AITPM is a not for profit organisation however the National Executive has taken the decision to donate in measure to the Red Cross Victorian Bushfire Disaster Relief fund and the Queensland Premier’s Disaster Relief fund as a gesture to support our fellow Australians in their time of need. Details about these funds can be found via the Victorian and Queensland Governments’ websites.

AITPM Email Newsletter Volume 0903, March 2009: Presidents Message

President’s Report Hello fellow AITPM members, First I would like on behalf of all AITPM members to send our condolences to all who have been affected by February’s tragic bushfires in regional Victoria, and deliver our best wishes to all of those involved in the rebuilding efforts. Over time I expect that the Victorian Government’s Royal Commission will analyse the circumstances and put forward a range of measures which will improve fire safety in vulnerable areas. As transport professionals it will be important for us to consider the findings and look to undertaking any recommendations that relate to the work we do. Not only in Victoria, but nationwide. In particular, the importance of logistics was highlighted following the fire events. Donors across Australia were this time requested to donate money rather than goods, presumably due in part to problems associated with the transport system coping with additional uncoordinated freight load, whilst being needed to support emergency management vehicle and managed freight movements. Notwithstanding, it was wonderful to see otherwise difficult to obtain goods, such as animal feed, being donated from far afield and transported in kind by trucking operators. As stated in last month’s Newsletter, AITPM made a direct cash donation to the Red Cross Bushfire Appeal immediately following the events, and a further donation to the Queensland Premier’s Disaster Relief Fund to support recovery after the North Queensland floods, which claimed seven lives. Again, we will need to monitor how the rebuilding effort unfolds particularly in regional Victoria and centres including Ingham in North Queensland, but I would urge all AITPM members who are in a position to support the restoration of the affected communities to play a part, particularly over time once the initial shock subsides and the steady job of rebuilding is underway. Onto lighter matters, AITPM’s flagship event, the 2009 AITPM National Conference, Traffic Beyond Tomorrow, being held in Adelaide from 5 to 7 August, is fast approaching. www.aitpm.com has all of the details about how to register, sponsor a booth, and so forth. We are looking forward to catching up with our conference “regulars” and meeting with new folks to AITPM, and Australian traffic and transport planning and management. Adelaide is one of my favourite places to visit and I’m looking forward to riding the light rail line extension through town and checking out progress on the road system development. Best regards all, Jon Bunker

AITPM Email Newsletter Volume 0904, April 2009: Presidents Message

President’s Report Hello fellow AITPM members, A few weeks ago we saw another example of all levels of Government pulling together in real time to try to deal with a major transport incident, this time it was container loads of ammonium nitrate falling off the Pacific Adventurer during Cyclone Hamish and the associated major oil spill due to piercing of its hull off Moreton Bay in southern Queensland. The oil spill was extensive, affecting beaches and estuaries from Moreton Island north to the Sunshine Coast; a coastal stretch of at least 60km. We saw the Queensland Government, Brisbane, Moreton Bay and Sunshine Coast Regional Council crews deployed quickly once the gravity of the situation was realised to clean up toxic oil on beaches and prevent extensive upstream contamination. Environmental agencies public and private were quick to respond to help affected wildlife. The Navy’s HMAS Yarra and another minesweeper were deployed to search for the containers in the coastal area in an effort to have them salvaged before all ammonium nitrate could leach into and harm marine habitat, which would have a substantial impact not only on that environment but also the fishing industry. all of this during the final fortnight before a State election.) While this could be branded as a maritime problem, the road transport and logistics system was crucial to the cleanup. The private vehicular ferries were enlisted to transport plant and equipment from Brisbane to Moreton Island. The plant themselves, such as graders, were drawn from road building and maintenance inventory. Hundreds of Councils’ staff were released from other activities to undertake the cleanup. While it will take some time for us to know the long term impacts of this incident, it seems difficult to fault “grassroots” government crews and their private counterparts, such as Island tourism staff, in the initial cleanup effort. From a traffic planning and management perspective, we should also remember that this sort of incident has happened on road and rail corridors in the past, albeit on lesser scales. It underlines that we do need to continue to protect communities, commercial interests, and the environment through rigorous heavy vehicle management, planning and management of dangerous goods routesincluding rail corridors through urban areas), and carefully considered incident and disaster recovery plans and protocols. I’d like to close in reminding everyone again that AITPM’s flagship event, the 2009 AITPM National Conference, Traffic Beyond Tomorrow, is being held in Adelaide from 5 to 7 August. SA Branch President Paul Morris informs me that we have had over 50 paper submissions to date, from which a very balanced and informative programme of sessions has been prepared. www.aitpm.com has all of the details about how to register, sponsor a booth, session, etc. Best regards all, Jon Bunker

AITPM Email Newsletter Volume 0905, June 2009 : President's Message

President’s Message Hello fellow AITPM members, Due to three colliding forces of nature I find myself writing this month’s message from home – today, I am still getting over a persistent virus that seemed to set in just after returning from Singapore a couple of weeks ago, which my diabetes won’t let me get away with too easily (no Kermit the Frog swine flu jokes please). Combine this with a very wet day in Brisbane – in fact the wettest for 20 years (how can we complain, except for flash flooding?). And in Queensland today is a state school teachers’ strike, so one half of our brood is over watching TV. Family snapshots aside, the biggest news for our industry of late is the $8.5 billion announced in the Federal Budget for transport infrastructure projects; many “shovel ready”, but some – and fortunate for our profession – desktop ready. This newsletter provides nationwide coverage on the transport infrastructure aspects of the Federal Budget. We’ll need a bit more time to carefully look at the ensuing State Budgets’ announcements. Regarding the federal budget announcements, I am pleased to see serious attention being paid to upgrading the M1 system – I hope to see a motorway standard facility connecting Adelaide to at least Rockhampton in my lifetime. But some other important roads are of course missing out in this particular budget. Various levels of commitment are being made to urban passenger rail – some project significant while others planning significant. Enhancement of suburban rail is important across the capitals and Australia’s medium sized cities such as the Gold Coast and Newcastle. Not much on road safety initiatives jumped out at me, but I believe it is implied in the large road projects and in some of the detail elsewhere. I do believe it’s about time a ‘Vision Zero’ style policy is adopted at the National level, since any death is unacceptable on the road, just as it is in any other workplace. So, overall some good news on building transport infrastructure to keep the economy purring during this recession, and strongly supporting it during future boom times. The other edge to the sword, of course, is that we tax payers will be paying a considerable amount for borrowings for these projects over a long period of time. I close again in reminding everyone again that AITPM’s flagship event, the 2009 AITPM National Conference, Traffic Beyond Tomorrow, is being held in Adelaide from 5 to 7 August. www.aitpm.com has all of the details about how to register, sponsor a booth, session, etc. Best regards all, Jon Bunker

AITPM Email Newsletter Volume 0907, July 2009 : President's Message

President’s Message AITPM President’s Message, July 2009 Hello fellow AITPM members, It’s now very early July so many Australians are going to experience a range of new, or increases in, fees, charges, and perhaps taxes by State and local governments. For example, Queenslanders are to be hit at the petrol pump, no longer living with the luxury of the State’s previous 8c per litre fuel subsidy, bringing general motorists’ fuel costs into line with the other States. A consolation is that they now don’t have to live with the real or perceived “price gouging” that has appeared in the past to make Queensland prices much closer than 8c to those in other States. Environmental lobbyists argue that this Government’s decision brings public transport costs closer to parity with private transport. However, my sense from sloppy petrol price elasticities is that the State’s motorists will get used to the reversal of what was a reverse tax pretty quickly, an amount which can be less than day-of-the week fluctuation. On the other hand, withholding this State revenue may help in some way the funding of the several major public transport infrastructure projects in progress; not to mention some of the cost of running the Transit Authority’s expanding service commitments. Other policy actions, such as a Federal Government review of taxation on employees’ package vehicles, which might discourage rather than encourage excess kilometres travelled, may have a greater environmental benefit. Of course, a downside is that many vehicles used so are Australian built, and discouraging fleet turnover may damage an industry which faces ever increasing uncertainty, and particularly at the present, is in need of some care and attention. I for one hope to this end that the new 4 cylinder (1.8L petrol or 2L diesel) so called “true Holden” Cruze and Toyota’s pending Camry Hybrid are both roaring successes, and will be taken up in droves as fleet and employee use vehicles. I’m not sure what drive-trains Ford and Holden plan to drop into their next full sized models but even if they’re not Australian sourced, let’s hope they coordinate the requisite performance expected by the “Aussie Battler” with suitable green credentials. I am also encouraged to see that already many Government fleet vehicles are smaller in size, but still fit for purpose. For instance, my local police station uses the Camry based Aurion as a district car. I close again in reminding everyone that AITPM’s flagship event, the 2009 AITPM National Conference, Traffic Beyond Tomorrow, is being held in Adelaide from 5 to 7 August. www.aitpm.com has all of the details about how to register, sponsor a booth, session, etc. Best regards all, Jon Bunker

AITPM Email Newsletter Volume 0908, August 2009: Presidents Message

President’s Message Hello fellow AITPM members, Just a few days to go until the 2009 AITPM National Conference, Traffic Beyond Tomorrow, being held at the Adelaide Convention Centre from 5 to 7 August. We look forward to catching up with all of our familiar faces as well as many new faces at this year’s conference, which the South Australian Branch has been seaming together like a Singer sewing machine. I’m looking forward to meeting you at the conference and I do hope you can join us for the Institute’s National Annual General Meeting during the event. Until then, best regards to all Jon Bunker

AITPM Email Newsletter Volume 0910, October 2009 : Presidents Message

President’s Message Hello fellow AITPM members, Well I can’t believe it’s already October! My office is already organising its end of year function and looking to plan for 2010. Our whole School is moving to a different building next year, with the lovely L block eventually making way for a new shiny one. Those of you who have entered the Brisbane CBD from the south side, across the Captain Cook Bridge, would know L block as the big 9 storey brick and concrete Lego block ode to 1970’s functional architecture, which greets you on the right hand side. Onto traffic matters: an issue that has been tossing around in my mind of late is that of speed. I know I am growing older and may be prematurely becoming a “grumpy old man”, but everyone around me locally seems to be accelerating off from the stop line much faster than I was taught to for economical driving, both here and in the United States (yes they made my wife and me resit our written and practical driving tests when we lived there). People here in Australia also seem to be driving right on top of the posted speed limit, on whichever part of the Road Hierarchy, whether urban or rural. I was also taught on both sides of the planet that the posted speed limit is a maximum legal speed, not the recommended driving speed. This message did seem to sink in to the American drivers around me when we lived in Oregon - where people did appear to drive more cautiously. Further, posted speed limits in Oregon were, and I presume still are, set more conservative by about 5mph or 10km/h than Australian limits, for any given part of the Road Hierarchy. Another excellent speed limit treatment used in Oregon was in school zones, where reduced speed limits applied “when children are present” rather than during prescribed hours on school days. This would be especially useful here in Australia, where a lot of extra-curricular activities take place around schools outside of the prescribed speed limit hours. Before and after hours school care is on the increase (with parents dropping and collecting children near dawn and dusk in the winter), and many childcentred land uses are located adjacent to schools, such as Scouts/Guides halls, swimming pools and parks. Consequentially, I believe there needs to be some consideration towards more public campaigning about economical driving and the real purpose of the speed limit = or perhaps even a rethink of the speed limit concept, if people really are driving on top of it and it’s not just me becoming grumpier (our industrial psychology friends at the research centres may be able to assist us here). The Queensland organising committee is now in full swing organising the 2010 AITPM National Conference, What’s New?, so please keep a lookout for related content. Best regards to all, Jon Bunker PS A Cartoonists view of traffic engineers I thought you might enjoy this. http://xkcd.com/277/

AITPM Email Newsletter Volume 0911, November 2009 : President's Message

President’s Report Hello fellow AITPM members, It is interesting to follow the news at present, where transport costs are getting a significant airing. Treasury Secretary Dr Ken Henry has enunciated something Australians may have considered extremely radical just a few years back, but in the present time appears to quite a few to be a realistic alternative. That being a rethink of the way we are charged for using our vehicles. It appears that serious consideration is being given to congestion charging, perhaps in place at least to some extent, of fuel excise. As a transport professional I am pleased that the debate has elevated to the national level, and would look forward that AITPM might contribute appropriately to it. As a motorist though, I naturally have my concerns about being hit in the hip pocket. Not that I actually drive during congested periods very much. I am fortunate to live five minutes either side of two well serviced bus corridors, one of which will eventually become a busway, and work in the central business district, which is hub from all spokes in Brisbane. As such, bus and foot are my preferred commute modes. Ah but I should not gloat, as my smart card fare is about to increase by 20 percent in the New Year! And if the newspapers are to be believed, further substantial increments are proposed over the coming few years. This is reported to recoup some more of the costs of actually providing the quality public transport system that we enjoy in our region. So I expect it will be very interesting to see how transport economics will play out in reality in the coming few years, and how governments cater to Australians who either cannot afford substantial increases in transport costs or have no viable alternatives to those facilities whose costs will increase. The 2010 AITPM National Conference, “What’s New?”, still has the opportunity for authors to submit an abstract for consideration so please consider how you might contribute to the event. Best regards to all, Jon Bunker

Identity-based strong designated verifier signature schemes: Attacks and new construction

A strong designated verifier signature scheme makes it possible for a signer to convince a designated verifier that she has signed a message in such a way that the designated verifier cannot transfer the signature to a third party, and no third party can even verify the validity of a designated verifier signature. We show that anyone who intercepts one signature can verify subsequent signatures in Zhang-Mao ID-based designated verifier signature scheme and Lal-Verma ID-based designated verifier proxy signature scheme. We propose a new and efficient ID-based designated verifier signature scheme that is strong and unforgeable. As a direct corollary, we also get a new efficient ID-based designated verifier proxy signature scheme.