A Method for Examining Cryptographic Protocols

A Method for Examining Cryptographic Protocols (1997)

by Brett Tjaden

Results 1 - 3 of 3

An Environment for Security Protocol Intrusion Detection

by Alec Yasinsac, A James Jay Love Building - Journal of Computer Security , 2001

"... Secure electronic communication relies on cryptography. Even with perfect encryption, communication may be compromised without effective security protocols for key exchange, authentication, etc. We are now seeing proliferation of large secure environments characterized by high volume, encrypted tr ..."

Abstract - Cited by 6 (1 self) - Add to MetaCart

Secure electronic communication relies on cryptography. Even with perfect encryption, communication may be compromised without effective security protocols for key exchange, authentication, etc. We are now seeing proliferation of large secure environments characterized by high volume, encrypted traffic between principals, facilitated by Public Key Infrastructures (PKI). PKIs are dependent on security protocols. Unfortunately, security protocols are susceptible to subtle errors. To date, we have relied on formal methods to tell us if security protocols are effective. These methods do not provide complete or measurable protocol security. Security protocols are also subject to the same implementation and administrative vulnerabilities as communication protocols. As a result, we will continue to operate security protocols that have flaws. In this paper, we describe a method and architecture to detect intrusions in security protocol environments such as Public Key Infrastructures. Our method is based on classic intrusion detection techniques of knowledge-based and behavior-based techniques detection. 2 Section 1.

Dynamic Cryptographic Context Management (DCCM) -- Architecture and System Design

by David M. Balenson, Dennis K. Branstad, David A. McGrew, Alan T. Sherman , 1998

"... ..."

Abstract - Cited by 3 (1 self) - Add to MetaCart

Abstract not found

A Framework For A Cryptographic Protocol Evaluation Workbench

by Alec Yasinsac, William A. Wulf , 1999

"... Tools to evaluate Cryptographic Protocols (CPs) exploded into the literature after development of BAN Logic [BAN88,BAN90]. Many of these were created to repair weaknesses in BAN Logic. Unfortunately, these tools are all complex and difficult to implement individually, with little or no effort availa ..."

Abstract - Cited by 1 (0 self) - Add to MetaCart

Tools to evaluate Cryptographic Protocols (CPs) exploded into the literature after development of BAN Logic [BAN88,BAN90]. Many of these were created to repair weaknesses in BAN Logic. Unfortunately, these tools are all complex and difficult to implement individually, with little or no effort available to implement multiple tools in a workbench environment. We propose a framework that allows a protocol analyst to exercise multple CP evaluation tools in a single environment. Moreover, this environment exhibits characteristics that will enhance the effectiveness of the CP evaluation methods themselves. Page 2 A FRAMEWORK FOR A CRYPTOGRAPHIC PROTOCOL EVALUATION WORKBENCH Section 1. Introduction. There is no known method to prove that a cryptographic protocol meets its intended goals. In this paper we give and illustrate a framework for a cryptographic protocol evaluation workbench. The Cryptographic Protocol Analysis Language Evaluation System (CPAL-ES) [YW96] is based on a technique ...