titoli, abstracts, parole chiave >>>
Detecting and preventing type flaws: a control flow analysis with tags

Bodei, Chiara and Degano, Pierpaolo and Gao, Han and Brodo, Linda (2007) Detecting and preventing type flaws: a control flow analysis with tags. Electronic Notes in Theoretical Computer Science, Vol. 194 (1), p. 3-22. ISSN 1571-0661. Article.

Full text not available from this repository.

DOI: 10.1016/j.entcs.2007.09.010

Abstract

A type flaw attack on a security protocol is an attack where an honest principal is cheated on interpreting a field in a message as the one with a type other than the intended one. In this paper, we shall present an extension of the LySa calculus with tags attached to each field, indicating the intended types. We developed a control flow analysis for analysing the extended LySa, which over-approximates all the possible behaviour of a protocol and hence is able to capture any type confusion that may happen during the protocol execution. The control flow analysis has been applied to a number of security protocols, either subject to type flaw attacks or not. The results show that it is able to capture type flaw attacks on those security protocols.

Item Type:Article
ID Code:2118
Status:Published
Refereed:Yes
Uncontrolled Keywords:Security protocol, control flow analysis, type flaw attacks
Subjects:Area 01 - Scienze matematiche e informatiche > INF/01 Informatica
Divisions:001 Università di Sassari > 01 Dipartimenti > Scienze dei linguaggi
Publisher:Elsevier
ISSN:1571-0661
Additional Information:Paper presented at: Proceedings of the fifth workshop on security issues in concurrency (SecCo 2007), Lisbon, Portugal, 3 September 2007.
Deposited On:18 Aug 2009 10:06

I documenti depositati in UnissResearch sono protetti dalle leggi che regolano il diritto d'autore

Repository Staff Only: item control page